Lucene search
K

24 matches found

SUSE Linux
SUSE Linux
added 2026/06/05 12:12 p.m.10 views

Security update for unbound

This update for unbound fixes the following issues CVE-2026-32792: Packet of death with DNSCrypt bsc1265583. CVE-2026-33278: Possible remote code execution during DNSSEC validation bsc1265587. CVE-2026-40622: "Ghost domain name" variant bsc1265581. CVE-2026-41292: Parsing a long list of incoming...

8.6CVSS6.2AI score0.01272EPSS
Exploits0References44
Debian CVE
Debian CVE
added 2026/05/20 9:17 a.m.7 views

CVE-2026-32792

NLnet Labs Unbound 1.6.2 up to and including version 1.25.0 has a denial of service vulnerability when compiled with DNSCrypt support '--enable-dnscrypt'. A bad DNSCrypt query could underflow Unbound's DNSCrypt packet reading procedure that may lead to heap overflow. A malicious actor can exploit...

8.2CVSS6AI score0.00337EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2026/05/20 12:0 a.m.10 views

CVE-2026-32792

NLnet Labs Unbound 1.6.2 up to and including version 1.25.0 has a denial of service vulnerability when compiled with DNSCrypt support '--enable-dnscrypt'. A bad DNSCrypt query could underflow Unbound's DNSCrypt packet reading procedure that may lead to heap overflow. A malicious actor can exploit...

8.2CVSS6AI score0.00337EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/08/10 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2019-11683

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - udpgroreceivesegment in net/ipv4/udpoffload.c in the Linux kernel 5.x before 5.0.13 allows remote attackers to cause a denial of service slab-out-of-bounds memo...

10CVSS7.3AI score0.07074EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 6:23 p.m.8 views

CVE-2021-24029

A packet of death scenario is possible in mvfst via a specially crafted message during a QUIC session, which causes a crash via a failed assertion. Per QUIC specification, this particular message should be treated as a connection error. This issue affects mvfst versions prior to commit...

7.5CVSS6.8AI score0.01186EPSS
Exploits0References1
Debian
Debian
added 2023/06/19 11:15 a.m.21 views

[SECURITY] [DLA 3457-1] maradns security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-3457-1 [email protected] https://www.debian.org/lts/security/ Bastien Roucariès June 19, 2023 https://wiki.debian.org/LTS -...

7.5CVSS7.8AI score0.01143EPSS
Exploits0
NVD
NVD
added 2021/03/15 10:15 p.m.33 views

CVE-2021-24029

A packet of death scenario is possible in mvfst via a specially crafted message during a QUIC session, which causes a crash via a failed assertion. Per QUIC specification, this particular message should be treated as a connection error. This issue affects mvfst versions prior to commit...

7.5CVSS0.01186EPSS
Exploits0References2
OSV
OSV
added 2021/03/15 10:15 p.m.29 views

CVE-2021-24029

A packet of death scenario is possible in mvfst via a specially crafted message during a QUIC session, which causes a crash via a failed assertion. Per QUIC specification, this particular message should be treated as a connection error. This issue affects mvfst versions prior to commit...

7.5CVSS6.7AI score0.01186EPSS
Exploits0References2
Prion
Prion
added 2021/03/15 10:15 p.m.25 views

Session fixation

A packet of death scenario is possible in mvfst via a specially crafted message during a QUIC session, which causes a crash via a failed assertion. Per QUIC specification, this particular message should be treated as a connection error. This issue affects mvfst versions prior to commit...

5CVSS7.4AI score0.01186EPSS
Exploits0References2Affected Software2
CVE
CVE
added 2021/03/15 9:15 p.m.68 views

CVE-2021-24029

Summary of CVE-2021-24029 (mvfst/proxygen) : A specially crafted QUIC message can trigger a crash via a failed assertion in mvfst, treated as a connection error per QUIC spec. The issue affects mvfst versions prior to commit a67083ff4b8dcbb7ee2839da6338032030d712b0 and proxygen versions prior to ...

7.5CVSS7.4AI score0.01186EPSS
Exploits0References2Affected Software2
Cvelist
Cvelist
added 2021/03/15 9:15 p.m.38 views

CVE-2021-24029

A packet of death scenario is possible in mvfst via a specially crafted message during a QUIC session, which causes a crash via a failed assertion. Per QUIC specification, this particular message should be treated as a connection error. This issue affects mvfst versions prior to commit...

7.6AI score0.01186EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2020/04/05 11:18 a.m.25 views

CVE-2019-11683

udpgroreceivesegment in net/ipv4/udpoffload.c in the Linux kernel 5.x before 5.0.13 allows remote attackers to cause a denial of service slab-out-of-bounds memory corruption or possibly have unspecified other impact via UDP packets with a 0 payload, because of mishandling of padded packets, aka t...

10CVSS7AI score0.07074EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2019/05/02 4:56 p.m.26 views

CVE-2019-11683

udpgroreceivesegment in net/ipv4/udpoffload.c in the Linux kernel 5.x before 5.0.13 allows remote attackers to cause a denial of service slab-out-of-bounds memory corruption or possibly have unspecified other impact via UDP packets with a 0 payload, because of mishandling of padded packets, aka t...

10CVSS7.2AI score0.07074EPSS
Exploits0
OSV
OSV
added 2019/05/02 12:0 a.m.7 views

UBUNTU-CVE-2019-11683

udpgroreceivesegment in net/ipv4/udpoffload.c in the Linux kernel 5.x before 5.0.13 allows remote attackers to cause a denial of service slab-out-of-bounds memory corruption or possibly have unspecified other impact via UDP packets with a 0 payload, because of mishandling of padded packets, aka t...

9.8CVSS7AI score0.07074EPSS
Exploits0References6
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.13 views

FreeRadius < 1.1.8 - Zero-length Tunnel-Password DoS Exploit

No description provided by source. !/usr/bin/env python FreeRadius Packet Of Death Matthew Gillespie 2009-09-11 Requires RadiusAttr http://trac.secdev.org/scapy/attachment/ticket/92/radiuslib.py http://www.braindeadprojects.com/blog/what/freeradius-packet-of-death/ import sys from scapy.all impor...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2014/04/03 12:0 a.m.13 views

Fedora 19 : maradns-2.0.09-1.fc19 (2014-2439)

There has been a long-standing bug in Deadwood ever since 2007 where bounds checking for strings was not correctly done under some circumstances. Because of this, it has been possible to send Deadwood a 'packet of death' which will crash Deadwood. Since the attack causes out-of-bounds memory to b...

5.3AI score
Exploits0References2
The Hacker News
The Hacker News
added 2013/02/08 1:41 p.m.5 views

Flaw in Intel Ethernet controller exposes to 'packet of death' attack

The hardware qualification is a very important issue, recent vulnerabilities discovered in network appliances of various manufacturer have alerted security community once again on the necessity to validate the hardware especially for large consume product. The last news is related to a...

6.8AI score
Exploits0
The Hacker News
The Hacker News
added 2013/02/08 2:41 a.m.8 views

Flaw in Intel Ethernet controller exposes to 'packet of death' attack

The hardware qualification is a very important issue, recent vulnerabilities discovered in network appliances of various manufacturer have alerted security community once again on the necessity to validate the hardware especially for large consume product. The last news is related to a...

6.8AI score
Exploits0
CheckPoint Security
CheckPoint Security
added 2013/02/06 10:0 p.m.12 views

Check Point response to Intel Packet of Death

...

2.2AI score
Exploits0Affected Software7
FreeBSD
FreeBSD
added 2011/01/23 12:0 a.m.19 views

maradns -- denial of service when resolving a long DNS hostname

MaraDNS developer Sam Trenholme reports: ... a mistake in allocating an array of integers, allocating it in bytes instead of sizeofint units. This resulted in a buffer being too small, allowing it to be overwritten. The impact of this programming error is that MaraDNS can be crashed by sending...

7.5CVSS3AI score0.05169EPSS
Exploits0References1
Rows per page
Query Builder