879 matches found
BSA-2019-828
Security Advisory ID : BSA-2019-828 Component : TCP SACK Revision : 2.0 An excessive resource consumption flaw was found in the way the Linux kernel's networking subsystem processed TCP Selective Acknowledgment SACK segments. While processing SACK segments, the Linux kernel's socket buffer SKB da...
BSA-2019-755
Security Advisory ID : BSA-2019-755 Component : Apache Revision : 1.0: Final Apache 2.4 vulnerabilities in Brocade Fibre Channel Products from Broadcom Multiple Brocade Fibre Channel technology products from Broadcom incorporate Apache httpd 2.4 librairies. Apache released in January 2019, a list...
BSA-2018-740
Security Advisory ID : BSA-2018-740 Component : CPU featuring SMT Revision : 1.0: Initial A group a researchers has discover a new vulnerability being called PortSmash, impacting all CPUs that use a Simultaneous Multithreading SMT architecture. SMT is a technology that allows multiple computing...
BSA-2018-708
Security Advisory ID : BSA-2018-708 Component : Ghostscript Revision : 1.0: Final Ghostscript contains an optional -dSAFER option, which is supposed to prevent unsafe PostScript operations. Multiple PostScript operations bypass the protections provided by -dSAFER, which can allow an attacker to...
BSA-2018-690
Security Advisory ID : BSA-2018-690 Component : Kernel Revision : 1.0: Final The Linux kernel, versions 3.9+, is vulnerable to a denial of service attack with low rates of specially modified packets targeting IP fragment re-assembly. An attacker may cause a denial of service condition by sending...
BSA-2018-686
Security Advisory ID : BSA-2018-686 Component : Kernel Revision : 1.0: Final Linux kernel versions 4.9+ can be forced to make very expensive calls to tcpcollapseofoqueue and tcppruneofoqueue for every incoming packet which can lead to a denial of service. An attacker can induce a denial of servic...
BSA-2018-601
Security Advisory ID : BSA-2018-601 Component : Kernel Revision : 1.0: Final In some circumstances, some operating systems or hypervisors may not expect or properly handle an Intel architecture hardware debug exception. The error appears to be due to developer interpretation of existing...
BSA-2018-557
Security Advisory ID : BSA-2018-557 Component : Apache HTTPD Revision : 2.0: Final In Apache httpd, modauthnzldap, if configured with AuthLDAPCharsetConfig, uses the Accept-Language header value to lookup the right charset encoding when verifying the user's credentials. If the header value is not...
BSA-2018-559
Security Advisory ID : BSA-2018-559 Component : Apache HTTPD Revision : 2.0: Final Apache HTTP Server httpd modsession modulehas an improper input validation flaw in the way it handles HTTP session headers in some configurations. A remote attacker may influence their content by using a "Session"...
BSA-2018-552
Security Advisory ID : BSA-2018-552 Component : Apache HTTPD Revision : 2.0: Final A specially crafted HTTP request header could have crashed the Apache HTTP Server prior to version 2.4.33 due to an out of bound read while preparing data to be cached in shared memory. It could be used as a Denial...
CVE-2017-3737 - Read, write after SSL object in error state. (BSA-2018-527).
Security Advisory ID: BSA-2018-527 Component: OpenSSL Revision : 3.0: Final OpenSSL 1.0.2 starting from version 1.0.2b introduced an "error state" mechanism. The intent was that if a fatal error occurred during a handshake, then OpenSSL would move into the error state and would immediately fail i...
BSA-2017-453
Security Advisory ID : BSA-2017-453 Component : EDNS0 Revision : 2.0: Final A memory exhaustion flaw was found in dnsmasq in the EDNS0 code. An attacker could send crafted DNS packets which would trigger memory allocations which would never be freed, leading to unbounded memory consumption and...
BSA-2017-431
Security Advisory ID : BSA-2017-431 Component : Kernel Revision : 3.0: Interim A stack buffer overflow flaw was found in the way the Bluetooth subsystem of the Linux kernel processed pending L2CAP configuration responses from a client. On systems with the stack protection feature enabled in the...
BSA-2017-408
Security Advisory ID : BSA-2017-408 Component : Java Revision : 2.0: Interim Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: Security. Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131; JRockit:...
BSA-2017-398
Security Advisory ID : BSA-2017-398 Component : Java Revision : 2.0: Interim Vulnerability in the Java SE component of Oracle Java SE subcomponent: Deployment. Supported versions that are affected are Java SE: 7u141 and 8u131. Difficult to exploit vulnerability allows physical access to compromis...
BSA-2017-418
Security Advisory ID : BSA-2017-418 Component : Java Revision : 2.0: Interim Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: 2D. Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131; JRockit: R28.3.14...
BSA-2017-421
Security Advisory ID : BSA-2017-421 Component : Java Revision : 2.0: Interim Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: JCE. Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131; JRockit: R28.3.14...
BSA-2017-415
Security Advisory ID : BSA-2017-415 Component : Java Revision : 2.0: Interim Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: Security. Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131. Difficult to exploit...
BSA-2017-416
Security Advisory ID : BSA-2017-416 Component : Java Revision : 2.0: Interim Vulnerability in the Java SE component of Oracle Java SE subcomponent: Deployment. Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131. Easily exploitable vulnerability allows unauthenticated attacke...
BSA-2017-419
Security Advisory ID : BSA-2017-419 Component : Java Revision : 2.0: Interim Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: Serialization. Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131; JRockit:...
BSA-2017-353
Security Advisory ID : BSA-2017-353 Component : Linux Kernel Revision : 3.0: Interim The IPv6 DCCP implementation in the Linux kernel mishandles inheritance, which allows local users to cause a denial of service or possibly have unspecified other impact via crafted system calls, a related issue t...
BSA-2017-402
Security Advisory ID : BSA-2017-402 Component : Java Revision : 2.0: Interim Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: Security. Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131; JRockit:...
BSA-2017-380
Security Advisory ID : BSA-2017-380 Component : OpenVPN Revision : 1.0: Interim OpenVPN versions before 2.4.3 and before 2.3.17 are vulnerable to remote denial-of-service due to memory exhaustion caused by memory leaks and double-free issue in extractx509extension. Affected Products Brocade is...
BSA-2017-378
Security Advisory ID : BSA-2017-378 Component : OpenVPN Revision : 1.0: Interim OpenVPN versions before 2.4.3 and before 2.3.17 are vulnerable to remote denial-of-service when receiving malformed IPv6 packet. Affected Products Brocade is investigating its product lines to determine which products...
BSA-2017-376
Security Advisory ID : BSA-2017-376 Component : Apache HTTPD Revision : 3.0: Final When under stress, closing many connections, the HTTP/2 handling code in Apache httpd 2.4.26 would sometimes access memory after it has been freed, resulting in potentially erratic behavior...
BSA-2017-384
Security Advisory ID : BSA-2017-384 Component : HEIMDAL/ KERBEROS 5 Revision : 2.0: Interim OHeimdal before 7.4 allows remote attackers to impersonate services with Orpheus' Lyre attacks because it obtains service-principal names in a way that violates the Kerberos 5 protocol specification. In...
BSA-2017-399
Security Advisory ID : BSA-2017-399 Component : Java Revision : 2.0: Interim Vulnerability in the Java SE component of Oracle Java SE subcomponent: Security. Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131. Difficult to exploit vulnerability allows unauthenticated attacke...
BSA-2017-343
Security Advisory ID : BSA-2017-343 Component : Kernel Revision : 3.0: Final The ip6appenddata function in net/ipv6/ip6output.c in the Linux kernel through 4.11.3 is too late in checking whether an overwrite ofanskbdata structure may occur, which allows local users to cause a denial of service...
BSA-2017-313
Security Advisory ID : BSA-2017-313 Component : modcgid module in the Apache HTTP Server before 2.4.10 Revision : 2.0: Interim A flaw was found inmodcgid. If a server usingmodcgidhosted CGI scripts which did not consume standard input, a remote attacker could cause child processes to hang...
BSA-2017-279
Security Advisory ID : BSA-2017-279 Component : JBOSS Revision : 2.0: Interim The Management Console in Red Hat Enterprise Application Platform before 6.4.4 andWildFlyformerlyJBossApplication Server does not send an X-Frame-Options HTTP header, which makes it easier for remote attackers to conduc...
BSA-2017-306
Security Advisory ID : BSA-2017-306 Component : Apache Tomcat Revision : 1.0: Interim While investigating bug 60718, it was noticed that some calls to application listeners did not use the appropriate facade object. When running an untrusted application under aSecurityManager, it was therefore...
BSA-2017-295
Security Advisory ID : BSA-2017-295 Component : NTP Revision : 1.0: Interim The mx4200send function in the legacy MX4200refclockin NTP before 4.2.8p10 and 4.3.x before 4.3.94 does not properly handle the return value of thesnprintffunction, which allows local users to execute arbitrary code via...
BSA-2017-294
Security Advisory ID : BSA-2017-294 Component : NTP Revision : 1.0: Interim Multiple buffer overflows in thectlput functions in NTP before 4.2.8p10 and 4.3.x before 4.3.94 allow remote authenticated users to have unspecified impact via a long variable. Affected Products Brocade is investigating i...
BSA-2017-296
Security Advisory ID : BSA-2017-296 Component : NTP Revision : 2.0: Interim Stack-based buffer overflow in thereslistfunction inntpqin NTP before 4.2.8p10 and 4.3.x before 4.3.94 allows remote servers have unspecified impact via a longflagstrvariable in a restriction list response. Affected...
BSA-2017-274
Security Advisory ID : BSA-2017-274 Component : Authfile.c in sshd in OpenSSH before 7.4 Revision : 3.0: Final authfile.cinsshdinOpenSSHbefore 7.4 does not properly consider the effects ofreallocon buffer contents, which might allow local users to obtain sensitive private-key information by...
BSA-2017-265
Security Advisory ID : BSA-2017-265 Component : Linux Kernel Revision : 2.0: Interim Thedccprcvstateprocessfunction in net/dccp/input.cin the Linux kernel through 4.9.11 mishandles DCCPPKTREQUEST packet data structures in the LISTEN state, which allows local users to obtain root privileges or cau...
BSA-2017-236
Security Advisory ID : BSA-2017-236 Component : Low Bandwidth ICMP Attack Revision : 1.0: Interim Blacknurseis a low bandwidth ICMP attack that is capable of doing denial of service towell knownfirewalls.MostICMP attacks that we see are based on ICMP Type 8 Code 0 also called a ping flood...
BSA-2017-243
Security Advisory ID : BSA-2017-243 Component : SNMP Revision : 1.0: Interim The Simple Network Management Protocol SNMP is a commonly used network service. Its primary function is to provide network administrators with information about all kinds of network connected devices. SNMP can be used to...
BSA-2016-195
Security Advisory ID : BSA-2016-195 Component : OpenSSH Revision : 2.0: Final sshd in OpenSSH before 7.3, when SHA256 or SHA512 are used for user password hashing, uses BLOWFISH hashing on a static password when the username does not exist, which allows remote attackers to enumerate users by...
BSA-2016-011
Summary Security Advisory ID : BSA-2016-011 Component : OpenSSL Revision : 6.0 N/A...
BSA-2016-007
Summary Security Advisory ID : BSA-2016-007 Component : Kernel Revision : 2.0 N/A...
BSA-2016-019
Security Advisory ID : BSA-2016-019 Component : OpenSSH Revision : 3.0: Final Multiple CRLF injection vulnerabilities in session.c in sshd in OpenSSH before 7.2p2 allow remote authenticated users to bypass intended shell-command restrictions via crafted X11 forwarding data, related to the 1...
BSA-2016-004
Summary Security Advisory ID : BSA-2016-004 Component : OpenSSH Revision : 5.0 N/A...
BSA-2016-001
Summary Security Advisory ID : BSA-2016-001 Component : Java Revision : 2.0 N/A...
BSA-2015-007
Summary Security Advisory ID : BSA-2015-007 Component : RC4 Algorithm Revision : 6.0 N/A...
BSA-2014-001
Summary Security Advisory ID : BSA-2014-001 Component : N/A Revision : 2.0 N/A...
BSA-2015-002
Summary Security Advisory ID : BSA-2015-002 Component : NTP Revision : 7.0 N/A...
Brocade Product Security Incident Response Team Contact Information
Brocade Communications Systems Brocade is committed to resolving vulnerabilities to meet the needs of its customers and the broader technology community. Brocade Product Security Incident Response Team Brocade PSIRT is a global team that manages the receipt, investigation and internal coordinatio...
CVE-2022-3786 and CVE-2022-3602: X.509 Email Address Buffer Overflows
Security Advisory ID : BSA-2022-2115 Component : OpenSSL Revision : 1.0 On November 1st, 2022 the OpenSSL Project disclosed CVE-2022-3602 and CVE-2022-3786 present in OpenSSL 3.0.x... The vulnerabilities were initially rated as critical severity vulnerabilities but are now disclosed as high. More...
BSA-2020-1028
Security Advisory ID : BSA-2020-1028 Component : Call Stranger Revision : 1.0: Final A vulnerability in the UPnP SUBSCRIBE capability permits an attacker to send large amounts of data to arbitrary destinations accessible over the Internet, which could lead to a Distributed Denial of Service DDoS,...