Lucene search
K

11 matches found

Tenable Nessus
Tenable Nessus
added 2020/07/09 12:0 a.m.278 views

Arista Networks CloudVision Portal Linux Kernel TCP Multiple DoS (SA0041)

The version of Arista Networks CloudVision Portal running on the remote device is affected by the following denial of service DoS vulnerabilities related to TCP networking in the Linux kernel, which can be exploited by a remote, unauthenticated attacker: - SACK Panic. The TCPSKBCBskb-tcpgsosegs...

7.8CVSS6.8AI score0.98745EPSS
Exploits4References4
Tenable Nessus
Tenable Nessus
added 2020/03/06 12:0 a.m.108 views

Arista Networks EOS Linux Kernel TCP Multiple DoS (SA0041)

The version of Arista Networks EOS running on the remote device is affected by the following denial of service DoS vulnerabilities related to TCP networking in the Linux kernel, which can be exploited by a remote, unauthenticated attacker: - SACK Panic. The TCPSKBCBskb-tcpgsosegs value is subject...

7.8CVSS6.7AI score0.98745EPSS
Exploits4References4
Tenable Nessus
Tenable Nessus
added 2019/09/11 12:0 a.m.47 views

NewStart CGSL MAIN 4.06 : kernel Multiple Vulnerabilities (NS-SA-2019-0177)

The remote NewStart CGSL host, running version MAIN 4.06, has kernel packages installed that are affected by multiple vulnerabilities: - The Salsa20 encryption algorithm in the Linux kernel before 4.14.8 does not correctly handle zero-length inputs, allowing a local attacker able to use the...

7.8CVSS7.4AI score0.98745EPSS
Exploits9References9
BDU FSTEC
BDU FSTEC
added 2019/06/21 12:0 a.m.8 views

The vulnerability of the TCP Selective Acknowledgment mechanism in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the TCP Selective Acknowledgment mechanism in the Linux operating system arises due to a segmentation error in the retransmission queue. Exploiting this vulnerability allows an attacker to cause a service failure by sending a specially crafted sequence of SACK packets...

7.8CVSS6.9AI score0.94686EPSS
Exploits1References51Affected Software16
NVD
NVD
added 2019/06/19 12:15 a.m.21 views

CVE-2019-11478

Jonathan Looney discovered that the TCP retransmission queue implementation in tcpfragment in the Linux kernel could be fragmented when handling certain TCP Selective Acknowledgment SACK sequences. A remote attacker could use this to cause a denial of service. This has been fixed in stable kernel...

7.5CVSS6AI score0.94686EPSS
Exploits1References29
OSV
OSV
added 2019/06/19 12:15 a.m.7 views

CVE-2019-11478

Jonathan Looney discovered that the TCP retransmission queue implementation in tcpfragment in the Linux kernel could be fragmented when handling certain TCP Selective Acknowledgment SACK sequences. A remote attacker could use this to cause a denial of service. This has been fixed in stable kernel...

7.5CVSS7.2AI score
Exploits0References29
Tenable Nessus
Tenable Nessus
added 2019/06/19 12:0 a.m.251 views

openSUSE Security Update : the Linux Kernel (openSUSE-2019-1570) (SACK Panic) (SACK Slowness)

Example: The openSUSE Leap 42.3 kernel was updated to 4.4.180 to receive various security and bugfixes. The following security bugs were fixed : - CVE-2019-11477: A sequence of SACKs may have been crafted by a remote attacker such that one can trigger an integer overflow, leading to a kernel pani...

8.8CVSS7.3AI score0.98745EPSS
Exploits11References93
Tenable Nessus
Tenable Nessus
added 2019/06/19 12:0 a.m.49 views

Oracle Linux 6 : kernel (ELSA-2019-1488)

The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2019-1488 advisory. - net tcp: enforce tcpminsndmss in tcpmtuprobing Florian Westphal 1719614 CVE-2019-11479 - net tcp: add tcpminsndmss sysctl Florian Westphal 1719614...

7.8CVSS7.2AI score0.98745EPSS
Exploits4References5
Tenable Nessus
Tenable Nessus
added 2019/06/18 12:0 a.m.55 views

Debian DLA-1823-1 : linux security update (SACK Panic) (SACK Slowness)

Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks. CVE-2019-3846, CVE-2019-10126 huangwen reported multiple buffer overflows in the Marvell wifi mwifiex driver, which a local user could use to cause...

9.8CVSS7.1AI score0.98745EPSS
Exploits6References11
Tenable Nessus
Tenable Nessus
added 2019/06/18 12:0 a.m.42 views

Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2019-4689)

The remote Oracle Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2019-4689 advisory. - tcp: enforce tcpminsndmss in tcpmtuprobing Eric Dumazet Orabug: 29886601 CVE-2019-11477 - tcp: add tcpminsndmss sysctl Eric Dumazet Orabug:...

7.8CVSS6.9AI score0.98745EPSS
Exploits4References4
Debian
Debian
added 2019/06/17 11:42 p.m.202 views

[SECURITY] [DLA 1823-1] linux security update

Package : linux Version : 3.16.68-2 CVE ID : CVE-2019-3846 CVE-2019-5489 CVE-2019-10126 CVE-2019-11477 CVE-2019-11478 CVE-2019-11479 CVE-2019-11810 CVE-2019-11833 CVE-2019-11884 Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of...

9.8CVSS7.2AI score0.98745EPSS
Exploits6
Rows per page
Query Builder