879 matches found
BSA-2019-133
Security Advisory ID : BSA-2019-133 Component : FOS Revision : 1.0: Final The client in OpenSSH before 7.2 mishandles failed cookie generation for untrusted X11 forwarding and relies on the local X11 server for access-control decisions, which allows remote X11 clients to trigger a fallback and...
BSA-2019-843
Security Advisory ID : BSA-2019-843 Component : Kernel Revision : 1.0: Final Bitdefender researchers have identified and demonstrated a new side-channel attack.This newly disclosed attack bypasses all known mitigation mechanisms implemented in response to Spectre and Meltdown. More information at...
BSA-2018-710
Security Advisory ID : BSA-2018-710 Component : Apache HTTPD Revision : 1.0: Final In Apache HTTP Server 2.4.17 to 2.4.34, by sending continuous, large SETTINGS frames a client can occupy a connection, server thread and CPU time without any connection timeout coming to effect. This affects only...
BSA-2018-687
Security Advisory ID : BSA-2018-687 Component : Kernel Revision : 1.0: Final Security researchers have identified a speculative execution side-channel method called L1 Terminal Fault L1TF also known as Foreshadow. This method impacts select microprocessor products supporting Intel® Software Guard...
BSA-2018-536
Security Advisory ID : BSA-2018-536 Component : OpenSSH Revision : 2.0: Final A memory exhaustion issue in OpenSSH that can be triggered before user authentication was found. An unauthenticated attacker could consume approx. 400 MB of memory per each connection. The attacker could set up multiple...
BSA-2018-612
Security Advisory ID : BSA-2018-612 Component : HW:CPU Revision : 1.0: Final Systems with microprocessors utilizing speculative execution and that perform speculative reads of system registers may return a speculative register value that is then used in subsequent speculative load instructions...
BSA-2018-611
Security Advisory ID : BSA-2018-611 Component : HW:CPU Revision : 1.0: Final Systems with microprocessors utilizing speculative execution and speculative execution of memory reads before the addresses of all prior memory writes are known may read an earlier value of the data. Subsequent speculati...
BSA-2018-602
Security Advisory ID : BSA-2018-602 Component : Win32k Revision : 1.0: Final An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel...
BSA-2017-458
Security Advisory ID : BSA-2017-458 Component : Libgcrypt Revision : 2.0: Final libgcrypt: use ciphertext blinding for Elgamal decryption new side-channel attack...
BSA-2017-450
Security Advisory ID : BSA-2017-450 Component : IPV6RA Revision : 2.0: Final A heap buffer overflow was discovered in dnsmasq in the IPv6 router advertisement RA handling code. An attacker on the local network segment could send crafted RAs to dnsmasq which would cause it to crash or, potentially...
BSA-2017-452
Security Advisory ID : BSA-2017-452 Component : dhcp6 Revision : 2.0: Final An information leak was found in dnsmasq in the DHCPv6 relay code. An attacker on the local network could send crafted DHCPv6 packets to dnsmasq causing it to forward the contents of process memory, potentially leaking...
BSA-2017-449
Security Advisory ID : BSA-2017-449 Component : dnsmasq Revision : 2.0: Final A heap buffer overflow was found in dnsmasq in the code responsible for building DNS replies. An attacker could send crafted DNS packets to dnsmasq which would cause it to crash or, potentially, execute arbitrary code...
BSA-2017-354
Security Advisory ID : BSA-2017-354 Component : Linux Kernel Revision : 3.0: Interim The tcpv6synrecvsock function in net/ipv6/tcpipv6.c in the Linux kernel mishandles inheritance, which allows local users to cause a denial of service or possibly have unspecified other impact via crafted system...
BSA-2017-379
Security Advisory ID : BSA-2017-379 Component : OpenVPN Revision : 1.0: Interim OpenVPN versions before 2.4.3 and before 2.3.17 are vulnerable to denial-of-service and/or possibly sensitive memory leak triggered by man-in-the-middle attacker. Affected Products Brocade is investigating its product...
BSA-2017-394
Security Advisory ID : BSA-2017-394 Component : PostgreSQL Revision : 1.0: Interim It was found that authenticating to a PostgreSQL database account with an empty password was possible despite libpq's refusal to send an empty password. A remote attacker could potentially use this flaw to gain...
BSA-2017-395
Security Advisory ID : BSA-2017-395 Component : PostgreSQL Revision : 1.0: Interim An authorization flaw was found in the way PostgreSQL handled access to the pgusermappings view on foreign servers. A remote authenticated attacker could potentially use this flaw to retrieve passwords from the use...
BSA-2017-371
Security Advisory ID : BSA-2017-371 Component : OpenSSH Revision : 1.0: Interim ssh in OpenSSH before 4.7 does not properly handle when an untrusted cookie cannot be created and uses a trusted X11 cookie instead, which allows attackers to violate intended policy and gain privileges by causing an ...
BSA-2017-362
Security Advisory ID : BSA-2017-362 Component : Apache Revision : 1.0: Interim In Apachehttpd2.2.x before 2.2.33 and 2.4.x before 2.4.26,modsslmay dereference a NULL pointer when third-party modules callaphookprocessconnection during an HTTP request to an HTTPS port. Affected Products Brocade is...
BSA-2017-309
Security Advisory ID : BSA-2017-309 Component : Java Revision : 2.0: Interim Vulnerability in the Java SE, Java SE Embedded,JRockitcomponent of Oracle Java SE subcomponent: Libraries. Supported versions that are affected are Java SE: 7u121 and 8u112; Java SE Embedded: 8u111;JRockit: R28.3.12...
allows remote attackers to cause a denial of service (CVE-2017-6464)
Security Advisory ID : BSA-2017-287 Component : NTP Revision : 1.0: Interim NTP before 4.2.8p10 and 4.3.x before 4.3.94 allows remote attackers to cause a denial of service ntpdcrash via a malformed mode configuration directive. Affected Products Brocade is investigating its product lines to...
BSA-2017-286
Security Advisory ID : BSA-2017-286 Component : Apache Revision : 1.0: Interim Apache HTTP Server, prior to release 2.4.25, accepted a broad pattern of unusual whitespace patterns from the user-agent, including bare CR, FF, VTAB in parsing the request line and request header lines, as well as HTA...
BSA-2017-275
Security Advisory ID : BSA-2017-275 Component : OpenSSH Revision : 2.0: Final The shared memory manager associated with pre-authentication compression in sshd in OpenSSH before 7.4 does not ensure that a bounds check is enforced by all compilers, which might allows local users to gain privileges ...
BSA-2017-288
Security Advisory ID : BSA-2017-288 Component : NTP Revision : 1.0: Interim There is a potential for a buffer overflow in the legacy Datum Programmable Time Serverrefclockdriver. Here the packets are processed from the /dev/datum device and handled indatumptsreceive. Since an attacker would be...
BSA-2017-281
Security Advisory ID : BSA-2017-281 Component : OpenSSL Revision : 3.0: Final Thedoaproutchfunction in crypto/bio/bprint.cin OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g does not verify that a certain memory allocation succeeds, which allows remote attackers to cause a denial of service...
BSA-2017-215
Security Advisory ID : BSA-2017-215 Component : sqlite Revision : 3.0: Final osunix.cin SQLite before 3.13.0 improperly implements the temporary directory search algorithm, which might allow local users to obtain sensitive information, cause a denial of service application crash, or have...
BSA-2015-004
Summary Security Advisory ID : BSA-2015-004 Component : OpenSSL Revision : 6.0 N/A...
Libarchive security update (CVE-2026-5121, CVE-2026-4424)
CVE-2026-5121 - Title: Libarchive: libarchive: arbitrary code execution via integer overflow in iso9660 image processing Description A flaw was found in libarchive. On 32-bit systems, an integer overflow vulnerability exists in the zisofs block pointer allocation logic. A remote attacker can...
xfrm: esp: avoid in-place decrypt on shared skb frags (CVE-2026-43284)
In the Linux kernel, the following vulnerability has been resolved: xfrm: esp: avoid in-place decrypt on shared skb frags MSGSPLICEPAGES can attach pages from a pipe directly to an skb. TCP marks such skbs with SKBFLSHAREDFRAG after skbsplicefromiter, so later paths that may modify packet data ca...
Rocky Linux security update in Brocade ASCG 3.4.0c (CVE-2025-68724, CVE-2026-23401, CVE-2026-31402, CVE-2025-40252)
CVE-2025-68724- Title: crypto: asymmetrickeys - prevent overflow in asymmetrickeygenerateid Description In the Linux kernel, the following vulnerability has been resolved: crypto: asymmetrickeys - prevent overflow in asymmetrickeygenerateid Use checkaddoverflow to guard against potential integer...