dnsmasq security and bug fix update

2.79-19 - Correct typo in man page 1947039 2.79-18 - Properly randomize outgoing ports also with bound interface CVE-2021-3448 2.79-17 - Fix sporadic bind-dynamic failures 1887649 2.79-16 - Fix network errors on queries both from ipv4 and ipv6 1921153...

DEBIAN-CVE-2020-23273

Heap-buffer overflow in the randomizeiparp function in editpacket.c. of Tcpreplay v4.3.2 allows attackers to cause a denial of service DOS via a crafted pcap...

UBUNTU-CVE-2020-23273

Heap-buffer overflow in the randomizeiparp function in editpacket.c. of Tcpreplay v4.3.2 allows attackers to cause a denial of service DOS via a crafted pcap...

Appneta Tcpreplay 缓冲区错误漏洞

Tcpreplay is a set of GPLv3 licensed utilities for UNIX operating systems to edit and replay network traffic captured by tools such as tcpdump and Ethereal/Wireshark. randomizeiparp function in editpacket.c in Tcpreplay version 4.3.2 A heap buffer overflow vulnerability exists. An attacker can...

PT-2021-22240 · Rengine · Rengine

Name of the Vulnerable Software and Affected Versions: reNgine versions 0.5 and earlier Description: The issue is related to reNgine relying on a predictable directory name. Recommendations: For versions 0.5 and earlier, consider renaming or randomizing directory names to mitigate the risk of...

Unbreakable Enterprise kernel-container security update

4.14.35-2025.404.1.1.el7 - target: fix XCOPY NAA identifier lookup David Disseldorp Orabug: 32248040 CVE-2020-28374 4.14.35-2025.404.1.el7 - xenbus/xenbusbackend: Disallow pending watch messages SeongJae Park Orabug: 32253412 CVE-2020-29568 - xen/xenbus: Count pending messages for each watch...

wolfssl:fuzzer-wolfssl-server-randomize: Heap-buffer-overflow in fp_to_unsigned_bin_at_pos

Project: https://github.com/wolfssl/wolfssl.git Detailed Report: https://oss-fuzz.com/testcase?key=5123165615030272 Project: wolfssl Fuzzing Engine: afl Fuzz Target: fuzzer-wolfssl-server-randomize Job Type: aflasanwolfssl Platform Id: linux Crash Type: Heap-buffer-overflow WRITE 1 Crash Address:...

ntp security update

4.2.6p5-29.0.1 - Bump release to avoid ULN conflict with Oracle modified errata. 4.2.6p5-29.el78.2 - don't update transmission time on invalid response CVE-2020-11868 - randomize transmit timestamp in client requests CVE-?, 1813787...

UBUNTU-CVE-2017-1000253

Linux distributions that have not patched their long-term kernels with https://git.kernel.org/linus/a87938b2e246b81b4fb713edb371a9fa3c5c3c86 committed on April 14, 2015. This kernel vulnerability was fixed in April 2015 by commit a87938b2e246b81b4fb713edb371a9fa3c5c3c86 backported to Linux 3.10.7...

Linux/x86 - Disable ASLR Shellcode (80 bytes)

Linux/x86 - Disable ASLR Shellcode 80 bytes. Shellcode exploit for Linx86 platform / Linux/x86 setuid-disable-aslr.c by @abatchy17 - abatchy.com Shellcode size: 80 bytes SLAE-885 section .text global start start: ; ; setruid0,0 ; xor ecx,ecx mov ebx,ecx push 0x46 pop eax int 0x80 ; ;...

CVE-2016-3672

The archpickmmaplayout function in arch/x86/mm/mmap.c in the Linux kernel through 4.5.2 does not properly randomize the legacy base address, which makes it easier for local users to defeat the intended restrictions on the ADDRNORANDOMIZE flag, and bypass the ASLR protection mechanism for a setuid...

Oracle: Security Advisory (ELSA-2007-0674)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Oracle: Security Advisory (ELSA-2008-0612)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Linux/x86 - Disable randomize stack addresse - 106 bytes

No description provided by source. / Title: Linux/x86 - Disable randomize stack addresse - 106 bytes Set randomizevaspace to zero Author: Jonathan Salwan submit ! shell-storm.org Web: http://www.shell-storm.org Twitter: http://twitter.com/jonathansalwan !Database of Shellcodes...

Hash table implementations vulnerable to algorithmic complexity attacks

Overview Some programming language implementations do not sufficiently randomize their hash functions or provide means to limit key collision attacks, which can be leveraged by an unauthenticated attacker to cause a denial-of-service DoS condition. Description Many applications, including common...

UDP Service Prober

Detect common UDP services using sequential probes This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'openssl' class MetasploitModule 'UDP Service Prober', 'Description' = 'Detect common UDP services using...

Nmap NSE net: dhcp-discover

Sends a DHCPDISCOVER request to a host on UDP port 67. The response comes back to UDP port 68, and is read using pcap due to the inability for a script to choose its source port at the moment. DHCPDISCOVER is a DHCP request that returns useful information from a DHCP server. The request sends a...

Fedora 12 : gource-0.24-3.fc12 (2010-6766)

Randomize name for files created in /tmp Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL...

Linux/x86 - Disable randomize stack addresse - 106 bytes

Linux/x86 - Disable randomize stack addresse - 106 bytes. Shellcode exploit for linux platform / Title: Linux/x86 - Disable randomize stack addresse - 106 bytes Set randomizevaspace to zero Author: Jonathan Salwan Web: http://www.shell-storm.org Twitter: http://twitter.com/jonathansalwan !Databas...

linux/x86 - Disable randomize stack addresse - 106 bytes

Exploit for linux/x86 platform in category shellcode ======================================================== linux/x86 - Disable randomize stack addresse - 106 bytes ======================================================== / Title: Linux/x86 - Disable randomize stack addresse - 106 bytes Set...