CVE-2020-29660

A locking inconsistency issue was discovered in the tty subsystem of the Linux kernel through 5.9.13. drivers/tty/tty_io.c and drivers/tty/tty_jobctrl.c may allow a read-after-free attack against TIOCGSID, aka CID-c8bcd9c5be24.

CVE-2021-22890

curl 7.63.0 to and including 7.75.0 includes vulnerability that allows a malicious HTTPS proxy to MITM a connection due to bad handling of TLS 1.3 session tickets. When using a HTTPS proxy and TLS 1.3, libcurl can confuse session tickets arriving from the HTTPS proxy but work as if they arrived fro...

CVE-2024-29953

A vulnerability in the web interface in Brocade Fabric OS before v9.2.1, v9.2.0b, and v9.1.1d prints encoded session passwords on session storage for Virtual Fabric platforms.This could allow an authenticated user to view other users' session encoded passwords.

CVE-2020-15376

Brocade Fabric OS versions before v9.0.0 and after version v8.1.0, configured in Virtual Fabric mode contain a weakness in the ldap implementation that could allow a remote ldap user to login in the Brocade Fibre Channel SAN switch with "user" privileges if it is not associated with any groups.

CVE-2023-4163

InBrocade Fabric OS before v9.2.0a, a local authenticated privileged usercan trigger a buffer overflow condition, leading to a kernel panic withlarge input to buffers in the portcfgfportbuffers command.

CVE-2023-5973

BrocadeWeb Interface in Brocade Fabric OS v9.x and before v9.2.0 does notproperly represent the portName to the user if the portName containsreserved characters. This could allow an authenticated user to alter theUI of the Brocade Switch and change ports display.