System fails back to a host copy instead of an array copy or storages go down after LUN reset in Windows Server 2012 R2

System fails back to a host copy instead of an array copy or storages go down after LUN reset in Windows Server 2012 R2 This article describes issues in which a storage system fails back to a host copy instead of an array copy or storage systems go down after a LUN reset in Windows Server 2012 R2...

Manage Origin Offload and Egress Fees for Live and On-Demand

Origin offload has received more attention in the past few years as more customers have moved their origins to the cloud. As such, the cost to access data has become an important issue. To support this move, Akamai has developed Cloud Wrapper to provide customers with a way to securely connect to...

CVE-2019-14098

Possible buffer overflow in data offload handler due to lack of check of keydata length when copying data in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon...

Buffer overflow

Possible buffer overflow in data offload handler due to lack of check of keydata length when copying data in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon...

CVE-2019-14098

CVE-2019-14098 describes a buffer overflow in Qualcomm Snapdragon data offload handling due to an missing check of keydata length during data copying, affecting Snapdragon Auto, Compute, Connectivity, and related Snapdragon platforms (numerous SoCs). Root cause: lack of validation of keydata leng...

Scale-out Backup Repository offload job to Quantum DXI used as S3 storage fails with "Failed to retrieve SSL certificate. Underlying error: PRNG not seeded" error

Challenge Veeam Backup & Replication fails to perform an S3 offload task if targeted to Quantum DXI storage. The error retrieved in UI says: "Failed to retrieve SSL certificate. Underlying error: PRNG not seeded" 06.01.2020 13:38:21 Info PublicCloudCertificateLoader Loading certificate for...

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2019-1475)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

kernel: Exploitable memory corruption due to UFO to non-UFO path switch

An exploitable memory corruption flaw was found in the Linux kernel. The append path can be erroneously switched from UFO to non-UFO in ipufoappenddata when building an UFO packet with MSGMORE option. If unprivileged user namespaces are available, this flaw can be exploited to gain root privilege...

FreeBSD : FreeBSD -- Insufficient validation of guest-supplied data (e1000 device) (499b22a3-f680-11e9-a87f-a4badb2f4699)

The e1000 network adapters permit a variety of modifications to an Ethernet packet when it is being transmitted. These include the insertion of IP and TCP checksums, insertion of an Ethernet VLAN header, and TCP segmentation offload 'TSO'. The e1000 device model uses an on-stack buffer to generat...

CVE-2019-5609

In FreeBSD 12.0-STABLE before r350619, 12.0-RELEASE before 12.0-RELEASE-p9, 11.3-STABLE before r350619, 11.3-RELEASE before 11.3-RELEASE-p2, and 11.2-RELEASE before 11.2-RELEASE-p13, the bhyve e1000 device emulation used a guest-provided value to determine the size of the on-stack buffer without...

FreeBSD -- Insufficient validation of guest-supplied data (e1000 device)

Problem Description: The e1000 network adapters permit a variety of modifications to an Ethernet packet when it is being transmitted. These include the insertion of IP and TCP checksums, insertion of an Ethernet VLAN header, and TCP segmentation offload "TSO". The e1000 device model uses an...

PT-2019-17778 · Freebsd · Freebsd

Name of the Vulnerable Software and Affected Versions: FreeBSD versions 11.2-RELEASE through 11.2-RELEASE-p12 FreeBSD versions 11.3-RELEASE through 11.3-RELEASE-p1 FreeBSD versions 12.0-RELEASE through 12.0-RELEASE-p8 Description: The issue arises from the bhyve e1000 device emulation, which uses...

EulerOS Virtualization 3.0.1.0 : kernel (EulerOS-SA-2019-1475)

According to the versions of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - The skbflowdissect function in net/core/flowdissector.c in the Linux kernel through 3.12 allows remote attackers to cause a denia...

EulerOS Virtualization 3.0.1.0 : kernel (EulerOS-SA-2019-1485)

According to the versions of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A flaw was found in the way the Linux kernel's Crypto subsystem handled automatic loading of kernel modules. A local user could u...

CVE-2019-11683

udpgroreceivesegment in net/ipv4/udpoffload.c in the Linux kernel 5.x before 5.0.13 allows remote attackers to cause a denial of service slab-out-of-bounds memory corruption or possibly have unspecified other impact via UDP packets with a 0 payload, because of mishandling of padded packets, aka t...

Heap-based Out-Of-Bounds Write

The kernel-rt packages contain the Linux kernel, the core of any Linux operating system. A flaw was found in the way IP packets with an Internet Header Length ihl of zero were processed in the skbflowdissect function in the Linux kernel. A remote attacker could use this flaw to trigger an infinit...

UBUNTU-CVE-2019-11683

udpgroreceivesegment in net/ipv4/udpoffload.c in the Linux kernel 5.x before 5.0.13 allows remote attackers to cause a denial of service slab-out-of-bounds memory corruption or possibly have unspecified other impact via UDP packets with a 0 payload, because of mishandling of padded packets, aka t...

PT-2019-12479 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 5.0.13 Description: The issue allows remote attackers to cause a denial of service or possibly have other impacts via UDP packets with a 0 payload, due to mishandling of padded packets. This is related to the ud...

Scientific Linux Security Update : kernel on SL7.x x86_64 (20190423)

Security Fixes : - Kernel: KVM: potential use-after-free via kvmioctlcreatedevice CVE-2019-6974 - Kernel: KVM: nVMX: use-after-free of the hrtimer for emulation of the preemption timer CVE-2019-7221 Bug Fixes : - rbd: avoid corruption on partially completed bios rhel-7.6.z - xfsvmwritepages deadl...

openSUSE Security Update : dpdk (openSUSE-2018-1484)

This update for dpdk to version 16.11.8 provides the following security fix : - CVE-2018-1059: restrict untrusted guest to misuse virtio to corrupt host application ovs-dpdk memory which could have lead all VM to lose connectivity bsc1089638 and following non-security fixes : - Enable the broadco...