CVE-2016-5195

CVE-2016-5195 (Dirty COW) : A race condition in the Linux kernel’s memory management (mm/gup.c) allows a local user to gain write access to read‑only mappings via a faulty copy‑on‑write handling. Affected: kernel 2.x–4.x prior to 4.8.3. Exploitation was observed in the wild around Oct 2016. Impac...

CVE-2016-2518

CVE-2016-2518 affects NTP ntpd: MATCH_ASSOC() can trigger an out-of-bounds reference when handling addpeer with a large hmode. Affected versions are ntpd before 4.2.8p9 and 4.3.x before 4.3.92. Impact is a potential crash/denial of service via crafted packets. Mitigation: upgrade to fixed release...

CVE-2016-6667

Affected product and version : NetApp OnCommand Unified Manager for Clustered Data ONTAP 6.3 through 6.4P1. Vulnerability : presence of a default privileged account that enables remote attackers to execute arbitrary code via unspecified vectors. Impact : high-severity remote code execution with p...

CVE-2017-14053

Affected product / component: NetApp OnCommand Unified Manager for Clustered Data ONTAP before 7.2P1. Vulnerability: HTTPS session cookies do not have the secure flag set for an unspecified cookie, enabling potential cookie capture by intercepting transmission within an HTTP session. Root cause (...