CVE-2022-23486

CVE-2022-23486 affects the Rust implementation of libp2p (libp2p-rust) in versions before 0.45.1. An attacker node can induce a victim to allocate a large number of small memory chunks, exhausting the victim process memory and potentially causing OOM/killing, enabling a denial-of-service, especia...

MGASA-2018-0337 Updated kernel packages fix security vulnerabilities

This kernel update is based on the upstream 4.14.62 and fixes at least the following security issues: Security researchers from FICORA have identified a remote denial of service attack against the Linux kernel caused by inefficient implementation of TCP segment reassembly, named "SegmentSmack". A...

CVE-2017-5066

Insufficient consistency checks in signature handling in the networking stack in Google Chrome prior to 58.0.3029.81 for Mac, Windows, and Linux, and 58.0.3029.83 for Android, allowed a remote attacker to incorrectly accept a badly formed X.509 certificate via a crafted HTML page...

CVE-2017-5066

Removed by vendor...

CVE-2017-5066

CVE-2017-5066 : Google Chrome (Mac/Windows/Linux) affected up to 58.0.3029.81 and Android up to 58.0.3029.83. The root cause is insufficient consistency checks in the networking stack’s signature handling, allowing a remote attacker to incorrectly accept a badly formed X.509 certificate via a cra...

CVE-2017-5066

Insufficient consistency checks in signature handling in the networking stack in Google Chrome prior to 58.0.3029.81 for Mac, Windows, and Linux, and 58.0.3029.83 for Android, allowed a remote attacker to incorrectly accept a badly formed X.509 certificate via a crafted HTML page...

UBUNTU-CVE-2017-6347

The ipcmsgrecvchecksum function in net/ipv4/ipsockglue.c in the Linux kernel before 4.10.1 has incorrect expectations about skb data layout, which allows local users to cause a denial of service buffer over-read or possibly have unspecified other impact via crafted system calls, as demonstrated b...

USN-2586-1: Linux kernel (OMAP4) vulnerability

It was discovered that the Linux kernel's IPv6 networking stack has a flaw that allows using route advertisement RA messages to set the 'hoplimit' to values that are too low. An unprivileged attacker on a local network could exploit this flaw to cause a denial of service IPv6 messages dropped...

USN-1995-1: Linux kernel (Raring HWE) vulnerabilities

An information leak was discovered in the Linux kernel when reading broadcast messages from the notifypolicy interface of the IPSec keysocket. A local user could exploit this flaw to examine potentially sensitive information in kernel memory. CVE-2013-2237 Kees Cook discovered flaw in the Human...

Ubuntu 13.04 : linux vulnerabilities (USN-1998-1)

An information leak was discovered in the Linux kernel when reading broadcast messages from the notifypolicy interface of the IPSec keysocket. A local user could exploit this flaw to examine potentially sensitive information in kernel memory. CVE-2013-2237 Kees Cook discovered flaw in the Human...

VMware ESXi/ESX patches resolve multiple security issues (VMSA-2010-0007)

The remote ESXi is missing one or more security related Updates from VMSA-2010-0007. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

VMware Products 'vmware-vmx' Information Disclosure Vulnerability (VMSA-2010-0007) - Linux

VMware products are prone to an information disclosure vulnerability. Copyright C 2010 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...

Stack overflow

The virtual networking stack in VMware Workstation 7.0 before 7.0.1 build 227600, VMware Workstation 6.5.x before 6.5.4 build 246459 on Windows, VMware Player 3.0 before 3.0.1 build 227600, VMware Player 2.5.x before 2.5.4 build 246459 on Windows, VMware ACE 2.6 before 2.6.1 build 227600 and 2.5....