Cisco Firepower Threat Defense Software DoS (cisco-sa-asaftd-dos-QFcNEPfx)

According to its self-reported version, the TCP packet processing of Cisco Firepower Threat Defense FTD Software is affected by denial of service vulnerability due to a memory exhaustion condition. An unauthenticated, remote attacker can exploit this by sending a high rate of crafted TCP traffic...

CVE-2021-0262

Through routine static code analysis of the Juniper Networks Junos OS software codebase, the Secure Development Life Cycle team identified a Use After Free vulnerability in PFE packet processing on the QFX10002-60C switching platform. Exploitation of this vulnerability may allow a logically...

CVE-2021-0263 Junos OS: PTX Series: Denial of Service in packet processing due to heavy route churn when J-Flow sampling is enabled

A Data Processing vulnerability in the Multi-Service process multi-svcs on the FPC of Juniper Networks Junos OS on the PTX Series routers may lead to the process becoming unresponsive, ultimately affecting traffic forwarding, allowing an attacker to cause a Denial of Service DoS condition . The...

CVE-2021-0262 Junos OS: QFX10002-60C: Use after free vulnerability found during static code analysis

Through routine static code analysis of the Juniper Networks Junos OS software codebase, the Secure Development Life Cycle team identified a Use After Free vulnerability in PFE packet processing on the QFX10002-60C switching platform. Exploitation of this vulnerability may allow a logically...

SUSE-SU-2021:1305-1 Security update for qemu

This update for qemu fixes the following issues: - Fix OOB access in sm501 device emulation CVE-2020-12829, bsc1172385 - Fix OOB access possibility in MegaRAID SAS 8708EM2 emulation CVE-2020-13362 bsc1172383 - Fix use-after-free in usb xhci packet handling CVE-2020-25723, bsc1178934 - Fix...

Important: Red Hat Security Advisory: dpdk security update

An update for dpdk is now available for Red Hat Enterprise Linux 8.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for ea...

SUSE SLES12 Security Update : qemu (SUSE-SU-2021:1241-1)

This update for qemu fixes the following issues : Fix OOB access in sm501 device emulation CVE-2020-12829, bsc1172385 Fix OOB access possibility in MegaRAID SAS 8708EM2 emulation CVE-2020-13362, bsc1172383 Fix use-after-free in usb xhci packet handling CVE-2020-25723, bsc1178934 Fix use-after-fre...

SUSE: Security Advisory (SUSE-SU-2021:1241-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLES12 Security Update : qemu (SUSE-SU-2021:1240-1)

This update for qemu fixes the following issues : Fix OOB access in sm501 device emulation CVE-2020-12829, bsc1172385 Fix OOB access possibility in MegaRAID SAS 8708EM2 emulation CVE-2020-13362 bsc1172383 Fix use-after-free in usb xhci packet handling CVE-2020-25723, bsc1178934 Fix use-after-free...

SUSE-SU-2021:1244-1 Security update for qemu

This update for qemu fixes the following issues: - Fix OOB access in sm501 device emulation CVE-2020-12829, bsc1172385 - Fix OOB access possibility in MegaRAID SAS 8708EM2 emulation CVE-2020-13362 bsc1172383 - Fix use-after-free in usb xhci packet handling CVE-2020-25723, bsc1178934 - Fix...

Cisco IOx Application Denial of Service Vulnerability

Cisco Iox is the U.S. Cisco Cisco a combination of Cisco IOS and Linux OS for secure network connectivity and the development of IOT applications for secure development environment. The Cisco IOx Application Framework's Cisco 809 Industrial Integrated Services Routers Industrial ISRs, Cisco 829...

Design/Logic Flaw

A vulnerability in the Cisco IOx Application Framework of Cisco 809 Industrial Integrated Services Routers Industrial ISRs, Cisco 829 Industrial ISRs, Cisco CGR 1000 Compute Module, and Cisco IC3000 Industrial Compute Gateway could allow an unauthenticated, remote attacker to cause a denial of...

Amazon Linux AMI : qemu-kvm (ALAS-2021-1488)

The version of qemu-kvm installed on the remote host is prior to 1.5.3-156.26. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2021-1488 advisory. An out-of-bound write access flaw was found in the way QEMU loads ROM contents at boot time. This flaw occurs in the...

The vulnerability of the implementation of the IPv6 protocol in the Trace TCP/IP stack allows a attacker to cause a service failure.

The vulnerability of the IPv6 implementation in the Trace TCP/IP stack is related to insufficient validation of input data during packet processing. Exploiting this vulnerability can allow a malicious actor to cause service failures...

Fedora: Security Advisory for dpdk (FEDORA-2021-fba11d37ee)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

[SECURITY] Fedora 33 Update: dpdk-20.11-1.fc33

The Data Plane Development Kit is a set of libraries and drivers for fast packet processing in the user space...

The vulnerability of the enf_broker process in the system for processing incoming packets on Cisco IOS XR allows a hacker to trigger a service failure.

The vulnerability of the enfbroker process in the Cisco IOS XR operating system’s incoming packet processing function is related to resource management errors. Exploiting this vulnerability can allow a malicious actor to cause service failures...

The vulnerability of the enf_broker process in the system for processing incoming packets on Cisco IOS XR allows a hacker to trigger a service failure.

The vulnerability of the enfbroker process in the Cisco IOS XR operating system’s incoming packet processing function is related to resource management errors. Exploiting this vulnerability can allow a malicious actor to cause service failures...

The vulnerability of the IPSec tunnel of Cisco SD-WAN vBond Orchestrator, Cisco SD-WAN vEdge Cloud Routers, Cisco SD-WAN vEdge Routers, Cisco SD-WAN vSmart Controller, and the centralized network management system Cisco SD-WAN vManage allows a attacker to cause service interruptions.

The vulnerability of the IPSec tunnel of Cisco SD-WAN vBond Orchestrator, Cisco SD-WAN vEdge Cloud Routers, Cisco SD-WAN vEdge Routers, Cisco SD-WAN vSmart Controller, and the centralized network management system Cisco SD-WAN vManage is related to errors in processing IP packets passing through...

CVE-2021-1313

Multiple vulnerabilities in the ingress packet processing function of Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. For more information about these vulnerabilities, see the Details section of this advisory...