875 matches found
BSA-2017-284
Security Advisory ID : BSA-2017-284 Component : Apache Brooklyn 0.9.0 and all prior versions Revision : 1.0: Interim No information. Affected Products Brocade is investigating its product lines to determine which products may be affected by this vulnerability and the impact on each affected produ...
BSA-2017-291
Security Advisory ID : BSA-2017-291 Component : NTP Revision : 1.0: Interim NTP before 4.2.8p10 and 4.3.x before 4.3.94, when using PPSAPI, allows local users to gain privileges via a DLL in the PPSAPIDLLS environment variable. Affected Products Brocade is investigating its product lines to...
BSA-2017-285
Security Advisory ID : BSA-2017-285 Component : Linux Kernel Revision : 1.0: Interim A race condition flaw was found in the NHLDC Linux kernel driver when accessingnhdlc.tbuflist that can lead to double free. A local, unprivileged user able to set the HDLC line discipline on thettydevice could us...
BSA-2017-279
Security Advisory ID : BSA-2017-279 Component : JBOSS Revision : 2.0: Interim The Management Console in Red Hat Enterprise Application Platform before 6.4.4 andWildFlyformerlyJBossApplication Server does not send an X-Frame-Options HTTP header, which makes it easier for remote attackers to conduc...
BSA-2017-250
Security Advisory ID : BSA-2017-250 Component : SSL TLS Revision : 1.0: Interim It was found using the OSS-FUZZfuzzerinfrastructure that decoding a specially craftedOpenPGPcertificate could lead to heap and stack overflows. This issue was fixed inGnuTLS3.3.26 and 3.5.8. Affected Products Brocade ...
BSA-2017-249
Security Advisory ID : BSA-2017-249 Component : SSL TLS Revision : 1.0: Interim It was found using the OSS-FUZZfuzzerinfrastructure that decoding a specially crafted X.509 certificate with Proxy Certificate Information extension present could lead to a double free. This issue was fixed...
BSA-2017-239
Security Advisory ID : BSA-2017-239 Component : SNMP Revision : 1.0: Interim The Simple Network Management Protocol SNMP is a commonly used network service. Its primary function is to provide network administrators with information about all kinds of network connected devices. SNMP can be used to...
BSA-2017-224
Security Advisory ID : BSA-2017-224 Component : ntp Revision : 1.0: Interim Ifntpdis configured to allowmrulistquery requests from a server that sends a crafted malicious packet,ntpdwill crash on receipt of that crafted maliciousmrulistquery packet. Affected Products Brocade is investigating its...
BSA-2017-235
Security Advisory ID : BSA-2017-235 Component : Oracle Web Services Revision : 1.0: Interim Unspecified vulnerability in the Oracle Web Services component in Oracle Fusion Middleware 11.1.1.7.0, 11.1.1.9.0, 12.1.3.0.0, and 12.2.1.0.0 allows remote attackers to affect confidentiality, integrity, a...
BSA-2017-213
Security Advisory ID : BSA-2017-213 Component : libidn Revision : 2.0: Final idninlibidnbefore 1.33 might allow remote attackers to obtain sensitive memory information by reading a zero byte as input, which triggers an out-of-bounds read, a different vulnerability than CVE-2015-8948...
BSA-2017-212
Security Advisory ID : BSA-2017-212 Component : libidn Revision : 2.0: Final The stringpreputf8nfkcnormalize function in lib/nfkc.cinlibidnbefore 1.33 allows context-dependent attackers to cause a denial of service out-of-bounds read and crash via crafted UTF-8 data...
BSA-2017-105
Security Advisory ID : BSA-2017-105 Component : Apache HTTPD Revision : 2.0: Final The Apache HTTP Server 2.4.18 through 2.4.20, when modhttp2 and modssl are enabled, does not properly recognize the "SSLVerifyClient require" directive for HTTP/2 request authorization, which allows remote attacker...
BSA-2016-015
Security Advisory ID : BSA-2016-015 Component : OpenSSH Revision : 3.0: Final The dosetupenv function in session.c in sshd in OpenSSH through 7.2p2, when the UseLogin feature is enabled and PAM is configured to read .pamenvironment files in user home directories, allows local users to gain...
BSA-2016-1052
Security Advisory ID : BSA-2016-1052 Component : TCP Sequence Number Revision : 4.0: Final A vulnerability was discovered in the Transmission Control Protocol TCP specification RFC 873. TCP, when using a large Window Size, makes it easier for remote attackers to guess sequence numbers and cause a...
BSA-2016-003
Summary Security Advisory ID : BSA-2016-003 Component : glibc Revision : 1.0 N/A...
BSA-2016-002
Summary Security Advisory ID : BSA-2016-002 Component : Web Server Expect Header XSS Revision : 3.0 N/A...
BSA-2015-009
Summary Security Advisory ID : BSA-2015-009 Component : Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40 Revision : 2.0 N/A...
BSA-2015-008
Summary Security Advisory ID : BSA-2015-008 Component : OpenSSL Revision : 4.0 N/A...
BSA-2015-006
Summary Security Advisory ID : BSA-2015-006 Component : OpenSSL Revision : 8.0 N/A...
Multiple CURL vulnerabilities in Brocade SANnav OVA deployments before SANnav 2.3.1b
Multiple CURL vulnerabilities Curl 7.44.0 8.7.0 vulnerabilities CVE-2024-2398, CVE-2024-2466, CVE-2024-2004 & CVE-2024-0853 Curl 7.44.0 8.7.0 HTTP/2 Push Headers Memory-leak CVE-2024-2398 Curl 7.85.0 8.7.0 Input Misinterpretation CVE-2024-2004 Curl 7.85.0 8.7.0 Input Misinterpretation CVE-2024-20...
PostgreSQL Vulnerable to Denial-of-Service (DoS) in 'pg_signal_backend()'
PostgreSQL contains a denial-of-service DoS vulnerability. An attacker with superuser permissions could exploit this issue to cause the database to crash...
OpenSSL Security Advisory [28th March 2023] (CVE-2023-0465, CVE-2023-0466)
Multiple OpenSSL Vulnerabilities released on28th March 2023 Invalid certificate policies in leaf certificates are silently ignored CVE-2023-0465 ========================================================= Applications that use a non-default option when verifying certificates may be vulnerable to an...
flaw in the RPM package in the read functionality
A flaw was found in the RPM package in the read functionality. This flaw allows an attacker who can convince a victim to install a seemingly verifiable package or compromise an RPM repository, to cause RPM database corruption. The highest threat from this vulnerability is to data integrity...
CVE-2022-2601 & CVE-2022-3775: Multiple GRUB2 vulnerabilities
Security Advisory ID : BSA-2022-2139 Component : GRUB2 Revision : 1.0 Brocade PSIRT has become aware of two grub vulnerabilities. CVE-2022-2601 grub2: A buffer overflow in grubfontconstructglyph can lead to out-of-bound write and possible secure boot by-pass A buffer overflow was found in...
CVE-2021-23841: Null pointer deref in X509_issuer_and_serial_hash()
Security Advisory ID : BSA-2022-1303 Component : OpenSSL Revision : 1.0 The OpenSSL public API function X509issuerandserialhash attempts to create a unique hash value based on the issuer and serial number data contained within an X509 certificate. However it fails to correctly handle any errors...
CVE-2021-39275. ap_escape_quotes buffer overflow
Security Advisory ID : BSA-2022-1599 Component : Apache httpd Revision : 1.1 An out-of-bounds write in function apescapequotes of httpd allows an unauthenticated, remote attacker to crash the server or potentially execute code on the system with the privileges of the httpd user, by providing...
CVE-2022-0155: Exposure of Private Personal Information to an Unauthorized Actor
Security Advisory ID : BSA-2022-1676 Component : Follow-Redirects Revision : 2.0 follow-redirects is vulnerable to Exposure of Private Personal Information to an Unauthorized Actor. Notes: Brocade Fabric OS does not use cookies; however, Brocade Fabric OS versions after v9.0.0 and before v9.1.1 d...
CVE-2018-6485: An integer overflow in the implementation of the posix_memalign
Security Advisory ID : BSA-2022-623 Component : GNU C Library Revision : 1.0 An integer overflow in the implementation of the posixmemalign in memalign functions in the GNU C Library aka glibc or libc6 2.26 and earlier could cause these functions to return a pointer to a heap area that is too...
CVE-2015-4041: Denial of service (heap-based buffer overflow and application crash) in GNU Coreutils
Security Advisory ID : BSA-2022-1407 Component : GNU Coreutils Revision : 1.0 The keycomparemb function in sort.c in sort in GNU Coreutils through 8.23 on 64-bit platforms performs a size calculation without considering the number of bytes occupied by multibyte characters, which allows attackers ...
(CVE-2022-1292) - The c_rehash script allows command injection. (BSA-2022-1846)
Security Advisory ID: BSA-2022-1846 Component: OpenSSL Revision: 2.0 The crehash script does not properly sanitise shell metacharacters to prevent command injection. This script is distributed by some operating systems in a manner where it is automatically executed. On such operating systems, an...
BSA-2022-765
Security Advisory ID : BSA-2022-765 Component : OpenSSL Revision : 1.0 If an application encounters a fatal protocol error and then calls SSLshutdown twice once to send a closenotify, and once to receive one then OpenSSL can respond differently to the calling application if a 0-byte record is...
BSA-2022-1832
Security Advisory ID : BSA-2022-1832 Component : NGINX Revision : 1.0 Brocade PSIRT has become aware of thesecurity vulnerabilities in the NGINX LDAP reference implementation publicly shared on09 April 2022. More information is available at "Addressing Security Weaknesses in the NGINX LDAP...
BSA-2020-972
Security Advisory ID : BSA-2020-972 Component : jQuery Revision : 1.0 In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods i.e. .html, .append, and others may execute untruste...
BSA-2020-1174
Security Advisory ID : BSA-2020-1174 Component : Theft of FireEye Red Team Tools Revision : 1.0 Brocade Security is aware of the news reporting the Theft of FireEye Red Team Tools by a highly sophisticated threat actor. More information atTheft of FireEye Red Team Tools...
BSA-2020-1043
Security Advisory ID : BSA-2020-1043 Component : Apache Tomcat Revision : 1.0: Final When using a VirtualDirContext with Apache Tomcat 7.0.0 to 7.0.80 it was possible to bypass security constraints and/or view the source code of JSPs for resources served by the VirtualDirContext using a specially...
BSA-2020-918
Security Advisory ID : BSA-2020-918 Component : Linux Kernel Revision : 1.0: Final The Linux kernel before 2.4.36-rc1 has a race condition. It was possibleto bypass systrace policies by flooding the ptraced process with SIGCONTsignals, which can can wake up a PTRACED process...
BSA-2020-893
Security Advisory ID : BSA-2020-893 Component : OpenSSL Revision : 2.0: Final There is an overflow bug in the x6464 Montgomery squaring procedure used in exponentiation with 512-bit moduli. No EC algorithms are affected. Analysis suggests that attacks against 2-prime RSA1024, 3-prime RSA1536, and...
BSA-2019-888
Security Advisory ID : BSA-2019-888 Component : Eclipse OpenJ9 Revision : 1.0: Final From Eclipse OpenJ9 0.15 to 0.16, access to diagnostic operations such as causing a GC or creating a diagnostic file are permitted without any privilege checks...
BSA-2019-867
Security Advisory ID : BSA-2019-867 Component : SANnav Revision : 1.0 Password-based encryption PBE algorithm, of Brocade SANnav versions before v2.0, has a weakness in generating cryptographic keys that may allow an attacker to decrypt passwords used with several services Radius, TACAS, etc...
BSA-2019-843
Security Advisory ID : BSA-2019-843 Component : Kernel Revision : 1.0: Final Bitdefender researchers have identified and demonstrated a new side-channel attack.This newly disclosed attack bypasses all known mitigation mechanisms implemented in response to Spectre and Meltdown. More information at...
BSA-2019-828
Security Advisory ID : BSA-2019-828 Component : TCP SACK Revision : 2.0 An excessive resource consumption flaw was found in the way the Linux kernel's networking subsystem processed TCP Selective Acknowledgment SACK segments. While processing SACK segments, the Linux kernel's socket buffer SKB da...
BSA-2019-785
Security Advisory ID : BSA-2019-785 Component : BMC/IPMI Revision : 1.0: Initial The ASPEED ast2400 and ast2500 Baseband Management Controller BMC hardware and firmware implement Advanced High-performance Bus AHB bridges, which allow arbitrary read and write access to the BMC's physical address...
BSA-2018-606
Security Advisory ID : BSA-2018-606 Component : bzip2recover Revision : 2.0 The GNU C Library aka glibc or libc6 before 2.27 contains an off-by-one error leading to a heap-based buffer overflow in the glob function in glob.c, related to the processing of home directories using the operator follow...
BSA-2018-740
Security Advisory ID : BSA-2018-740 Component : CPU featuring SMT Revision : 1.0: Initial A group a researchers has discover a new vulnerability being called PortSmash, impacting all CPUs that use a Simultaneous Multithreading SMT architecture. SMT is a technology that allows multiple computing...
BSA-2018-736
Security Advisory ID : BSA-2018-736 Component : Fabric OS WebGui Revision : 1.0: Initial The Web management interface of Brocade Fabric OS doesn’t send cookies with secure flag.This could allow attackers to intercept or manipulate a victim user's session ID. Affected Products Brocade Fabric OS...
BSA-2018-728
Security Advisory ID : BSA-2018-728 Component : Fabric OS CLI : secryptocfg export command Revision : 1.0: Initial A vulnerability in the secryptocfg export command of Brocade Fabric OS could allow a local attacker to bypass the export file access restrictions and initiate a file copy from the...
BSA-2018-710
Security Advisory ID : BSA-2018-710 Component : Apache HTTPD Revision : 1.0: Final In Apache HTTP Server 2.4.17 to 2.4.34, by sending continuous, large SETTINGS frames a client can occupy a connection, server thread and CPU time without any connection timeout coming to effect. This affects only...
BSA-2018-708
Security Advisory ID : BSA-2018-708 Component : Ghostscript Revision : 1.0: Final Ghostscript contains an optional -dSAFER option, which is supposed to prevent unsafe PostScript operations. Multiple PostScript operations bypass the protections provided by -dSAFER, which can allow an attacker to...
BSA-2018-690
Security Advisory ID : BSA-2018-690 Component : Kernel Revision : 1.0: Final The Linux kernel, versions 3.9+, is vulnerable to a denial of service attack with low rates of specially modified packets targeting IP fragment re-assembly. An attacker may cause a denial of service condition by sending...
BSA-2018-687
Security Advisory ID : BSA-2018-687 Component : Kernel Revision : 1.0: Final Security researchers have identified a speculative execution side-channel method called L1 Terminal Fault L1TF also known as Foreshadow. This method impacts select microprocessor products supporting Intel® Software Guard...