EUVD-2017-12882

Malware in sbrugna...

Security Bulletin: IBM RackSwitch firmware products are affected by vulnerabilities in Libxml2

Summary The following vulnerabilites in Libxml2 have been addressed by IBM RackSwitch firmware products. Vulnerability Details CVEID: CVE-2021-3517 DESCRIPTION: GNOME libxml2 is vulnerable to a heap-based buffer overflow, caused by improper bounds checking by xmlEncodeEntitiesInternal in...

Security Bulletin: IBM RackSwitch firmware products are affected by a vulnerability in glibc (CVE-2021-35942)

Summary The following vulnerability in glibc has been addressed by IBM RackSwitch firmware products. Vulnerability Details CVEID: CVE-2021-35942 DESCRIPTION: GNU C Library aka glibc could allow a local attacker to obtain sensitive information, caused by a flaw when called with an untrusted, craft...

Security Bulletin: IBM RackSwitch firmware products are affected by vulnerabilities in OpenSSL

Summary The following vulnerabilites in OpenSSL have been addressed by IBM RackSwitch firmware products. Vulnerability Details CVEID: CVE-2020-1971 DESCRIPTION: OpenSSL is vulnerable to a denial of service, caused by a NULL pointer dereference. If the GENERALNAMEcmp function contain an...

Security Bulletin: IBM RackSwitch firmware products are affected by a vulnerability in libcurl (CVE-2019-5436)

Summary IBM RackSwitch firmware products have addressed the following vulnerability in libcurl. Vulnerability Details CVEID: CVE-2019-5436 DESCRIPTION: cURL libcurl is vulnerable to a heap-based buffer overflow, caused by improper bounds checking by the tftpreceivepacket function. By sending over...

Security Bulletin: IBM RackSwitch firmware products are affected by a vulnerability in the Kernel (CVE-2020-12464)

Summary IBM RackSwitch firmware products have addressed the following Kernel vulnerability. Vulnerability Details CVEID: CVE-2020-12464 DESCRIPTION: Linux Kernel could allow a local attacker to execute arbitrary code on the system, caused by a use-after-free flaw in the usbsgcancel function in...

Security Bulletin: IBM RackSwitch firmware products are affected by vulnerabilities in the Kernel

Summary IBM RackSwitch firmware products have addressed the following Kernel vulnerabilities. Vulnerability Details CVEID: CVE-2020-13974 DESCRIPTION: Linux Kernel could allow a local attacker to execute arbitrary code on the system, caused by an integer overflow in the drivers/tty/vt/keyboard.c...

Security Bulletin: IBM RackSwitch firmware products are affected by vulnerabilities in Libxml2

Summary IBM RackSwitch firmware products have addressed the following vulnerabilities in Libxml2. Vulnerability Details CVEID: CVE-2020-24977 DESCRIPTION: GNOME libxml2 is vulnerable to a buffer overflow, caused by improper bounds checking by the xmlEncodeEntitiesInternal function in...

Security Bulletin: Vulnerability in Enterprise Network Operating System (ENOS) affects IBM BladeCenter Switch Products (CVE-2017-3765)

Summary IBM BladeCenter Switch Products have addressed the following vulnerability in Enterprise Network Operating System ENOS. Vulnerability Details Summary IBM BladeCenter Switch Products have addressed the following vulnerability in Enterprise Network Operating System ENOS. Vulnerability Detai...

Security Bulletin: IBM RackSwitch firmware products are affected by the following OpenSLL vulnerability

Summary IBM RackSwitch firmware products are affected by the following OpenSLL vulnerability Vulnerability Details CVEID: CVE-2019-1559 DESCRIPTION: OpenSSL could allow a remote attacker to obtain sensitive information, caused by the failure to immediately close the TCP connection after the hosts...

Security Bulletin: IBM RackSwitch firmware products are affected by TCP denial of service vulnarabilities

Summary The IBM RackSwitch firmware products listed below have addressed the following TCP denial of service vulnerabilities. Vulnerability Details CVEID: CVE-2019-11478 DESCRIPTION: Jonathan Looney discovered that the TCP retransmission queue implementation in tcpfragment in the Linux kernel cou...

Security Bulletin: IBM RackSwitch firmware products are affected by vulnerability in OpenSSL (CVE-2018-0734)

Summary IBM RackSwitch firmware products listed below have addressed the following vulnerability in OpenSSL. Vulnerability Details CVEID: CVE-2018-0734 DESCRIPTION: OpenSSL could allow a remote attacker to obtain sensitive information, caused by a timing side channel attack in the DSA signature...

Security Bulletin: IBM RackSwitch firmware products are affected by vulnerabilities in Python

Summary Vulnerabilities in Python have been addressed by IBM RackSwitch firmware products listed below. Vulnerability Details CVEID: CVE-2018-1060 DESCRIPTION: Python is vulnerable to a denial of service, caused by catastrophic backtracking in the pop3lib''s apop method. A remote attacker could...

Security Bulletin: IBM RackSwitch firmware products are affected by vulnerability in OpenSSL (CVE-2018-0732)

Summary IBM RackSwitch firmware products listed below have addressed the following vulnerability in OpenSSL. Vulnerability Details CVEID: CVE-2018-0732 DESCRIPTION: OpenSSL is vulnerable to a denial of service, caused by the sending of a very large prime value to the client by a malicious server...

Security Bulletin: IBM RackSwitch firmware products are affected by vulnerability in Python (CVE-2017-1000158)

Summary Vulnerability in Python has been addressed by IBM RackSwitch firmware products listed below. Vulnerability Details CVEID: CVE-2017-1000158 DESCRIPTION: CPython is vulnerable to a heap-based buffer overflow, caused by an integer overflow in the PyStringDecodeEscape function in...

Security Bulletin: Vulnerability in Enterprise Networking Operating System (ENOS) affects IBM RackSwitch Products (CVE-2017-3765)

Summary IBM RackSwitch Products have addressed the following vulnerability in Enterprise Networking Operating System ENOS. Vulnerability Details Summary IBM RackSwitch Products have addressed the following vulnerability in Enterprise Networking Operating System ENOS. Vulnerability Details CVEID:...

Security Bulletin: Vulnerability in sblim-sfcb affects IBM RackSwitch G8264CS (CVE-2015-5185)

Summary IBM System Networking RackSwitch G8264CS has addressed the following vulnerability in sblim-sfcb. Vulnerability Details Summary IBM System Networking RackSwitch G8264CS has addressed the following vulnerability in sblim-sfcb. Vulnerability Details CVE-ID: CVE-2015-5185 Description:...

Security Bulletin: Vulnerability libxml2 affects IBM System Networking RackSwitch products (CVE-2015-8710)

Summary IBM System Networking RackSwitch products have addressed the following vulnerability in libxml2. Vulnerability Details Summary IBM System Networking RackSwitch products have addressed the following vulnerability in libxml2. Vulnerability Details CVE-ID: CVE-2015-8710 Description: Libxml2 ...

Security Bulletin: Vulnerability in libxml2 affects IBM RackSwitch Products (CVE-2017-8872)

Summary IBM RackSwitch Products have addressed the following vulnerability in libxml2. Vulnerability Details Summary IBM RackSwitch Products have addressed the following vulnerability in libxml2. Vulnerability Details: CVEID: CVE-2017-8872 Description: libxml2 is vulnerable to a buffer overflow,...

Security Bulletin: Vulnerability in OpenSSL affects IBM System Networking RackSwitch products (CVE-2016-2183)

Summary OpenSSL vulnerabilities were disclosed on September 22 and 26, 2016 by the OpenSSL Project. OpenSSL is used by IBM System Networking RackSwitch products. IBM System Networking RackSwitch products have addressed the applicable CVE. Vulnerability Details Summary OpenSSL vulnerabilities were...