FreeBSD FreeBSDOpenSSH regreSSHion Attack (CVE-2024-6387)
Openbsd Openbsdascii_load_sockaddr in smtpd in OpenBSD before 7.1 errata 024 and 7.2 before errata 020, and OpenSMT…
Openbsd OpenbsdIn OpenBSD 7.2, a TCP packet with destination port 0 that matches a pf divert-to rule can crash the …
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
ubuntu/opensshsshd in OpenSSH 6.2 through 8.x before 8.8, when certain non-default configurations are used, allows…
Openbsd LibresslLibreSSL 2.9.1 through 3.2.1 has an out-of-bounds read in asn1_item_print_ctx (called from asn1_temp…
Openbsd LibresslLibreSSL 2.9.1 through 3.2.1 has a heap-based buffer over-read in do_print_ex (called from asn1_item…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Openbsd OpensshOS Command Injection, Command Injection, Input Validation
FreeBSD FreeBSDregcomp in the BSD implementation of libc is vulnerable to denial of service due to stack exhaustion…
Openbsd Textproc\/isearchThe isearch package (textproc/isearch) before 1.47.01nb1 uses the tempnam() function to create insec…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Openbsd OpenbsdOpenBSD through 6.6 allows local users to escalate to root because a check for LD_LIBRARY_PATH in se…
Apple iPadOSKernel. A routing issue was addressed with improved restrictions.
Openbsd OpenbsdIn OpenBSD 6.6, local users can use the su -L option to achieve any login class (often excluding roo…
Openbsd Openbsdxlock in OpenBSD 6.6 allows local users to gain the privileges of the auth group by providing a LIBG…
Openbsd OpenbsdOpenBSD 6.6, in a non-default configuration where S/Key or YubiKey authentication is enabled, allows…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Openbsd OpenbsdOpenBSD kernel version <= 6.5 can be forced to create long chains of TCP SACK holes that causes very…
Barracuda VPN ClientThe barracudavpn component of the Barracuda VPN Client prior to version 5.0.2.7 for Linux, macOS, an…
Apple macOS MojaveLibreSSL. Multiple issues were addressed by updating to libressl version 2.6.4.
Openbsd LibresslThe int_x509_param_set_hosts function in lib/libcrypto/x509/x509_vpm.c in LibreSSL 2.7.0 before 2.7.…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Openbsd Openbsdhttpd in OpenBSD allows remote attackers to cause a denial of service (memory consumption) via a ser…
Openbsd OpenbsdInteger truncation error in the amap_alloc function in OpenBSD 5.8 and 5.9 allows local users to exe…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
ubuntu/opensshsshd in OpenSSH before 7.4, when privilege separation is not used, creates forwarded Unix-domain soc…
ubuntu/opensshUntrusted search path vulnerability in ssh-agent.c in ssh-agent in OpenSSH before 7.4 allows remote …
Openbsd OpensshThe kex_input_kexinit function in kex.c in OpenSSH 6.x and 7.x through 7.3 allows remote attackers t…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Openbsd Opensshsshd in OpenSSH 6.8 and 6.9 uses world-writable permissions for TTY devices, which allows local user…
Openbsd OpensshThe kbdint_next_device function in auth2-chall.c in sshd in OpenSSH through 6.9 does not properly re…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Openbsd OpensshOpenSSH 5.6 and earlier, when J-PAKE is enabled, does not properly validate the public parameters in…
Cisco IOSThe TCP implementation in (1) Linux, (2) platforms based on BSD Unix, (3) Microsoft Windows, (4) Cis…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Openbsd OpenbsdThe tcp_respond function in netinet/tcp_subr.c in OpenBSD 4.1 and 4.2 allows attackers to cause a de…
Openbsd OpenbsdThe ip6_check_rh0hdr function in netinet6/ip6_input.c in OpenBSD 4.2 allows attackers to cause a den…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.