OPENSUSE-SU-2024:0382-1 Security update for cobbler

This update for cobbler fixes the following issues: Update to 3.3.7: Security: Fix issue that allowed anyone to connect to the API as admin CVE-2024-47533, boo1231332 bind - Fix bug that prevents cname entries from being generated successfully Fix build on RHEL9 based distributions fence-agents-a...

RHEL 5 : java-1.4.2-ibm-sap (RHSA-2011:1265)

The remote Redhat Enterprise Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2011:1265 advisory. - IBM JDK Class file parsing denial-of-service CVE-2011-0311 - Oracle/IBM JDK: unspecified vulnerabilities fixed in 6u26 Sound CVE-2011-0802...

OSV-2023-1381 Heap-buffer-overflow in NetworkInterface::processPacket

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=65428 Crash type: Heap-buffer-overflow READ 10 Crash state: NetworkInterface::processPacket NetworkInterface::dissectPacket fuzzdissectpacket.cpp...

PT-2023-35679 · Git +1 · Ntopng

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a heap-buffer-overflow read, which occurs in the IEC104Stats::processPacket function, called by Flow::processIEC60870Packet and...

OSV-2023-1360 Heap-buffer-overflow in NetworkInterface::dissectPacket

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=65332 Crash type: Heap-buffer-overflow READ 2 Crash state: NetworkInterface::dissectPacket fuzzdissectpacket.cpp...

OSV-2023-1352 Heap-buffer-overflow in Flow::dissectMDNS

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=65271 Crash type: Heap-buffer-overflow READ Crash state: Flow::dissectMDNS NetworkInterface::processPacket NetworkInterface::dissectPacket...

OSV-2023-1214 Heap-buffer-overflow in NetworkInterface::dissectPacket

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=64454 Crash type: Heap-buffer-overflow READ 2 Crash state: NetworkInterface::dissectPacket fuzzdissectpacket.cpp...

OSV-2023-1160 Heap-buffer-overflow in IEC104Stats::processPacket

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=64147 Crash type: Heap-buffer-overflow READ 1 Crash state: IEC104Stats::processPacket Flow::processIEC60870Packet NetworkInterface::processPacket...

OSV-2023-976 Heap-buffer-overflow in Flow::dissectMDNS

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=63060 Crash type: Heap-buffer-overflow READ 2 Crash state: Flow::dissectMDNS NetworkInterface::processPacket NetworkInterface::dissectPacket...

PT-2023-36060 · Git +1 · Ntopng

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a heap-buffer-overflow read error. The crash occurs in the Flow::dissectMDNS function, which is called by...

OSV-2023-761 Heap-buffer-overflow in ICMPinfo::dissectICMP

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=61836 Crash type: Heap-buffer-overflow READ 4 Crash state: ICMPinfo::dissectICMP NetworkInterface::processPacket NetworkInterface::dissectPacket...

OSV-2023-741 Heap-buffer-overflow in Flow::dissectBittorrent

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=61737 Crash type: Heap-buffer-overflow READ 1 Crash state: Flow::dissectBittorrent NetworkInterface::processPacket NetworkInterface::dissectPacket...

PT-2023-35973 · Git +1 · Ntopng

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: A heap-buffer-overflow READ 1 crash has been reported. The crash occurs in the following functions: dissectBittorrent, processPacket, and dissectPacket,...

OSV-2023-726 Heap-buffer-overflow in Flow::dissectNetBIOS

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=61648 Crash type: Heap-buffer-overflow READ 1 Crash state: Flow::dissectNetBIOS NetworkInterface::processPacket NetworkInterface::dissectPacket...

OSV-2023-710 Heap-buffer-overflow in Flow::dissectMDNS

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=61538 Crash type: Heap-buffer-overflow READ 10 Crash state: Flow::dissectMDNS NetworkInterface::processPacket NetworkInterface::dissectPacket...

PT-2023-35958 · Git +1 · Ntopng

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a heap-buffer-overflow read error. The crash occurs in the Flow::dissectMDNS function, which is called by...

OSV-2023-697 Heap-buffer-overflow in IEC104Stats::processPacket

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=61443 Crash type: Heap-buffer-overflow READ 1 Crash state: IEC104Stats::processPacket Flow::processIEC60870Packet NetworkInterface::processPacket...

OSV-2023-480 Heap-buffer-overflow in NetworkInterface::dissectPacket

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=59745 Crash type: Heap-buffer-overflow READ 2 Crash state: NetworkInterface::dissectPacket fuzzdissectpacket.cpp...

OSV-2023-425 Heap-buffer-overflow in ICMPinfo::dissectICMP

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=59217 Crash type: Heap-buffer-overflow READ 1 Crash state: ICMPinfo::dissectICMP NetworkInterface::processPacket NetworkInterface::dissectPacket...

OSV-2023-423 Heap-buffer-overflow in NetworkInterface::dissectPacket

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=59216 Crash type: Heap-buffer-overflow READ 4 Crash state: NetworkInterface::dissectPacket fuzzdissectpacket.cpp...