17 matches found
Linux kernel 安全漏洞
The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the mctp i2c component. When midev-allowrx is set to false, the newly allocated skb packets are n...
EUVD-2021-21370
Malware in sbrugna...
EUVD-2024-18019
Malicious code in bioql PyPI...
Cisco IOS XR Software UDP Packet Memory Exhaustion (cisco-sa-pak-mem-exhst-3ke9FeFy)
According to its self-reported version, Cisco IOS XR is affected by a vulnerability. - A vulnerability in the multicast traceroute version 2 Mtrace2 feature of Cisco IOS XR Software could allow an unauthenticated, remote attacker to exhaust the UDP packet memory of an affected device. This...
CVE-2024-20304
A vulnerability in the multicast traceroute version 2 Mtrace2 feature of Cisco IOS XR Software could allow an unauthenticated, remote attacker to exhaust the UDP packet memory of an affected device. This vulnerability exists because the Mtrace2 code does not properly handle packet memory. An...
CVE-2024-20304 Cisco IOS XR Software Packet Memory Exhaustion Vulnerability
A vulnerability in the multicast traceroute version 2 Mtrace2 feature of Cisco IOS XR Software could allow an unauthenticated, remote attacker to exhaust the UDP packet memory of an affected device. This vulnerability exists because the Mtrace2 code does not properly handle packet memory. An...
CVE-2024-20304
CVE-2024-20304 affects Cisco IOS XR Software where the Mtrace2 feature mishandles packet memory, allowing an unauthenticated, remote attacker to exhaust incoming UDP packet memory and potentially cause DoS. Impact is network-based with availability loss; exploit can be performed over IPv4 or IPv6...
DENX Software Engineering Das U-Boot 安全漏洞
DENX Software Engineering Das U-Boot is a Universal Bootloader from DENX Software Engineering, Germany. A security vulnerability exists in DENX Software Engineering Das U-Boot. An attacker exploiting this vulnerability could leak between 4 and 32 bytes of memory stored behind packets to the netwo...
SUSE CVE-2012-1596
The mp2tprocessfragmentedpayload function in epan/dissectors/packet-mp2t.c in the MP2T dissector in Wireshark 1.4.x before 1.4.12 and 1.6.x before 1.6.6 allows remote attackers to cause a denial of service application crash via a packet containing an invalid pointer value that triggers an incorre...
CVE-2021-34720
A vulnerability in the IP Service Level Agreements IP SLA responder and Two-Way Active Measurement Protocol TWAMP features of Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause device packet memory to become exhausted or cause the IP SLA process to crash, resulting in ...
Race condition
A vulnerability in the IP Service Level Agreements IP SLA responder and Two-Way Active Measurement Protocol TWAMP features of Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause device packet memory to become exhausted or cause the IP SLA process to crash, resulting in ...
CVE-2021-34720 Cisco IOS XR Software IP Service Level Agreements and Two-Way Active Measurement Protocol Denial of Service Vulnerability
A vulnerability in the IP Service Level Agreements IP SLA responder and Two-Way Active Measurement Protocol TWAMP features of Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause device packet memory to become exhausted or cause the IP SLA process to crash, resulting in ...
Cisco IOS XR Software Denial of Service Vulnerability (CNVD-2021-102366)
Cisco IOS XR Software is an operating system developed by Cisco for its network devices.A denial-of-service vulnerability exists in Cisco IOS XR Software, which could be exploited by an attacker to cause the device to run out of packet memory or cause the IP SLA process to crash...
CVE-2019-15134
RIOT through 2019.07 contains a memory leak in the TCP implementation gnrctcp, allowing an attacker to consume all memory available for network packets and thus effectively stopping all network threads from working. This is related to receive in sys/net/gnrc/transportlayer/tcp/gnrctcpeventloop.c...
kernel: sit memory leak
Memory leak in the ipip6rcv function in net/ipv6/sit.c in the Linux kernel 2.4 before 2.4.36.5 and 2.6 before 2.6.25.3 allows remote attackers to cause a denial of service memory consumption via network traffic to a Simple Internet Transition SIT tunnel interface, related to the pskbmaypull and...
CVE-2004-0403
Removed by vendor...
CVE-2002-0353
The ASN.1 parser in Ethereal 0.9.2 and earlier allows remote attackers to cause a denial of service crash via a certain malformed packet, which causes Ethereal to allocate memory incorrectly, possibly due to zero-length fields...