Large cookie Max-Age values can cause a denial of service

Affected versions of this crate use the time crate and the method Duration::seconds to parse the Max-Age duration cookie setting. This method will panic if the value is greater than 2^64/1000 and less than or equal to 2^64, which can result in denial of service for a client or server. This flaw w...

RUSTSEC-2017-0005 Large cookie Max-Age values can cause a denial of service

Affected versions of this crate use the time crate and the method Duration::seconds to parse the Max-Age duration cookie setting. This method will panic if the value is greater than 2^64/1000 and less than or equal to 2^64, which can result in denial of service for a client or server. This flaw w...

Security update for the Linux Kernel (important)

The openSUSE Leap 42.2 kernel was updated to 4.4.62 to receive various security and bugfixes. The following security bugs were fixed: - CVE-2017-7618: crypto/ahash.c in the Linux kernel allowed attackers to cause a denial of service API operation calling its own callback, and infinite recursion b...

F5 Networks BIG-IP : Linux kernel vulnerability (K20022580)

Use-after-free vulnerability in net/unix/afunix.c in the Linux kernel before 4.3.3 allows local users to bypass intended AFUNIX socket permissions or cause a denial of service panic via crafted epollctl calls. CVE-2013-7446 C Tenable Network Security, Inc. The descriptive text and package checks ...

Denial Of Service (DoS)

github.com/kubernetes/kubernetes is vulnerable to denial of service attacks. These attacks can be triggered by invalid JSON data. The invalid JSON data causes github.com/kubernetes/kubernetes to panic and cause a nil pointer dereference causing the master process to crash. This is related to...

FreeBSD-SA-17:04.ipfilter

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-17:04.ipfilter Security Advisory The FreeBSD Project Topic: ipfilter4 fragment handling panic Category: contrib Module: ipfilter Announced: 2017-04-27 Credits:...

FreeBSD -- ipfilter(4) fragment handling panic

Problem Description: ipfilter4, capable of stateful packet inspection, using the "keep state" or "keep frags" rule options, will not only maintain the state of connections, such as TCP streams or UDP communication, it also maintains the state of fragmented packets. When a packet fragments are...

Linux kernel 'udp. c' remote code execution vulnerability(CVE-2016-10229)

The Linux kernel allows remote attackers to execute arbitrary code via UDP traffic that triggers an unsafe second checksum calculation during execution of a recv system call with the MSGPEEK flag. This may create a kernel panic or memory corruption leading to privilege escalation...

The vulnerability of the OpenBSD operating system, which allows a hacker to trigger a service failure

The vulnerability of the mmap extension’s MAPNOFAULT flag in the OpenBSD operating system exists due to insufficient checks on input data. Exploiting this vulnerability allows a local attacker to cause a kernel panic by using a large value...

The vulnerability of the OpenBSD operating system, which allows a hacker to trigger a service failure

The vulnerability of the thrsleep function in the kernel/kernsynch.c file of the OpenBSD operating system exists due to insufficient checking of input data. Exploiting this vulnerability could allow a local attacker to cause a kernel panic by using a specially crafted value as the tsp parameter i...

kernel: Null pointer dereference via keyctl

A flaw was found in the Linux kernel key management subsystem in which a local attacker could crash the kernel or corrupt the stack and additional memory denial of service by supplying a specially crafted RSA key. This flaw panics the machine during the verification of the RSA key...

Moderate: Red Hat Security Advisory: kernel security and enhancement update

An update for kernel is now available for Red Hat Enterprise Linux 6.7 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

Police Arrest Man Potentially Linked to Group Threatening to Wipe Millions Of iPhones

The British authority has reportedly arrested a 20-years-old young man – potentially one of the member of a cyber criminal gang 'Turkish Crime Family' who threatened Apple last week to remotely wipe data from millions of iOS devices unless Apple pays a ransom of $75,000. The UK's National Crime...

Vm86 - Syscall Task Switch Kernel Panic / Privilege Escalation Vulnerability

Exploit for linux platform in category local exploits Source: http://www.halfdog.net/Security/2013/Vm86SyscallTaskSwitchKernelPanic/ Introduction Problem description: The initial observation was, that the linux vm86 syscall, which allows to use the virtual-8086 mode from userspace for emulating o...

CVE-2017-7261

In was found that in the Linux kernel, in vmwsurfacedefineioctl function in 'drivers/gpu/drm/vmwgfx/vmwgfxsurface.c' file, a 'numsizes' parameter is assigned a user-controlled value which is not checked if it is zero. This is used in a call to kmalloc and later leads to dereferencing ZEROSIZEPTR,...

kernel: Stack corruption while reading /proc/keys when gcc stack protector is enabled

It was found that when the gcc stack protector was enabled, reading the /proc/keys file could cause a panic in the Linux kernel due to stack corruption. This happened because an incorrect buffer size was used to hold a 64-bit timeout value rendered as weeks...

RHEL 7 : kernel (RHSA-2017:0501)

An update for kernel is now available for Red Hat Enterprise Linux 7.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

CVE-2016-6522

Integer overflow in the uvmmapisavail function in uvm/uvmmap.c in OpenBSD 5.9 allows local users to cause a denial of service kernel panic via a crafted mmap call, which triggers the new mapping to overlap with an existing mapping...

Code injection

thrsleep in kern/kernsynch.c in OpenBSD 5.8 and 5.9 allows local users to cause a denial of service kernel panic via a crafted value in the tsp parameter of the thrsleep system call...

Open redirect

OpenBSD 5.8 and 5.9 allows certain local users to cause a denial of service kernel panic by unmounting a filesystem with an open vnode on the mntvnodelist...