• Support
  • Forums
  • Blogs

Security Advisory - AlienVault 5.3.7 addresses 108 vulnerabilities

SkylarTalleySkylarTalley

AlienVault Employee
+8

Notice Date: March 22, 2017

Several vulnerabilities were discovered in the underlying OS packages in AlienVault USM and OSSIM v5.3.6 and earlier. All of the vulnerabilities below have been confirmed and fixed in the AlienVault v5.3.7. AlienVault encourages customers to upgrade all AlienVault appliances to eliminate the vulnerabilities.

See the v5.3.7 release notice for details on the release.

If any vulnerabilities are identified in the product that are not addressed in this or previous Security Advisory posts, please contact [email protected] Thanks!



Debian Security Update



AlienVault ID: ENG-105223
Description: arch/x86/kvm/vmx.c in the Linux kernel through 4.9 mismanages the #BP and #OF exceptions, which allows guest OS users to cause a denial of service (guest OS crash) by declining to handle an exception thrown by an L2 guest.
CVE ID: CVE-2016-9588
CVSS: 1.6


Debian Security Update



AlienVault ID: ENG-105223
Description: Race condition in drivers/tty/n_hdlc.c in the Linux kernel through 4.10.1 allows local users to gain privileges or cause a denial of service (double free) by setting the HDLC line discipline.
CVE ID: CVE-2017-2636
CVSS: 5.3


Debian Security Update



AlienVault ID: ENG-105223
Description: The do_shmat function in ipc/shm.c in the Linux kernel through 4.9.12 does not restrict the address calculated by a certain rounding operation, which allows local users to map page zero, and consequently bypass a protection mechanism that exists for the mmap system call, by making crafted shmget and shmat system calls in a privileged context.
CVE ID: CVE-2017-5669
CVSS: 3.4


Debian Security Update



AlienVault ID: ENG-105223
Description: Race condition in the sctp_wait_for_sndbuf function in net/sctp/socket.c in the Linux kernel before 4.9.11 allows local users to cause a denial of service (assertion failure and panic) via a multithreaded application that peels off an association in a certain buffer-full state.
CVE ID: CVE-2017-5986
CVSS: 5.3


Debian Security Update



AlienVault ID: ENG-105223
Description: The tcp_splice_read function in net/ipv4/tcp.c in the Linux kernel before 4.9.11 allows remote attackers to cause a denial of service (infinite loop and soft lockup) via vectors involving a TCP packet with the URG flag.
CVE ID: CVE-2017-6214
CVSS: 3.7


Debian Security Update



AlienVault ID: ENG-105223
Description: The LLC subsystem in the Linux kernel before 4.9.13 does not ensure that a certain destructor exists in required circumstances, which allows local users to cause a denial of service (BUG_ON) or possibly have unspecified other impact via crafted system calls.
CVE ID: CVE-2017-6345
CVSS: 3.4


Debian Security Update



AlienVault ID: ENG-105223
Description: Race condition in net/packet/af_packet.c in the Linux kernel before 4.9.13 allows local users to cause a denial of service (use-after-free) or possibly have unspecified other impact via a multithreaded application that makes PACKET_FANOUT setsockopt system calls.
CVE ID: CVE-2017-6346
CVSS: 5.1


Debian Security Update



AlienVault ID: ENG-105223
Description: The hashbin_delete function in net/irda/irqueue.c in the Linux kernel before 4.9.13 improperly manages lock dropping, which allows local users to cause a denial of service (deadlock) via crafted operations on IrDA devices.
CVE ID: CVE-2017-6348
CVSS: 3.6


Debian Security Update



AlienVault ID: ENG-105223
Description: net/sctp/socket.c in the Linux kernel through 4.10.1 does not properly restrict association peel-off operations during certain wait states, which allows local users to cause a denial of service (invalid unlock and double free) via a multithreaded application. NOTE: this vulnerability exists because of an incorrect fix for CVE-2017-5986.
CVE ID: CVE-2017-6353
CVSS: 3.6


Debian Security Update



AlienVault ID: ENG-105195
Description: Multiple integer overflows in libXpm before 3.5.12, when a program requests parsing XPM extensions on a 64-bit platform, allow remote attackers to cause a denial of service (out-of-bounds write) or execute arbitrary code via (1) the number of extensions or (2) their concatenated length in a crafted XPM file, which triggers a heap-based buffer overflow.
CVE ID: CVE-2016-10164
CVSS: 4.8


Debian Security Update



AlienVault ID: ENG-105147
Description: kernel/events/core.c in the performance subsystem in the Linux kernel before 4.0 mismanages locks during certain migrations, which allows local users to gain privileges via a crafted application, aka Android internal bug 30955111.
CVE ID: CVE-2016-6786
CVSS: 5.1


Debian Security Update



AlienVault ID: ENG-105147
Description: Vulnerable version of Nfdump
CVE ID: CVE-2016-6787
CVSS: 5.1


Debian Security Update



AlienVault ID: ENG-105147
Description: An information disclosure vulnerability in kernel components including the ION subsystem, Binder, USB driver and networking subsystem could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.10, Kernel-3.18. Android ID: A-31651010.
CVE ID: CVE-2016-8405
CVSS: 3.2


Debian Security Update



AlienVault ID: ENG-105147
Description: The cgroup offline implementation in the Linux kernel through 4.8.11 mishandles certain drain operations, which allows local users to cause a denial of service (system hang) by leveraging access to a container environment for executing a crafted application, as demonstrated by trinity.
CVE ID: CVE-2016-9191
CVSS: 3.6


Debian Security Update



AlienVault ID: ENG-105147
Description: The load_segment_descriptor implementation in arch/x86/kvm/emulate.c in the Linux kernel before 4.9.5 improperly emulates a "MOV SS, NULL selector" instruction, which allows guest OS users to cause a denial of service (guest OS crash) or gain guest OS privileges via a crafted application.
CVE ID: CVE-2017-2583
CVSS: 3.4


Debian Security Update



AlienVault ID: ENG-105147
Description: arch/x86/kvm/emulate.c in the Linux kernel through 4.9.3 allows local users to obtain sensitive information from kernel memory or cause a denial of service (use-after-free) via a crafted application that leverages instruction emulation for fxrstor, fxsave, sgdt, and sidt.
CVE ID: CVE-2017-2584
CVSS: 2.7


Debian Security Update



AlienVault ID: ENG-105147
Description: The nested_vmx_check_vmptr function in arch/x86/kvm/vmx.c in the Linux kernel through 4.9.8 improperly emulates the VMXON instruction, which allows KVM L1 guest OS users to cause a denial of service (host OS memory consumption) by leveraging the mishandling of page references.
CVE ID: CVE-2017-2596
CVSS: 3.6


Debian Security Update



AlienVault ID: ENG-105147
Description: RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
CVE ID: CVE-2017-2618
CVSS: RESERVED


Debian Security Update



AlienVault ID: ENG-105147
Description: The klsi_105_get_line_state function in drivers/usb/serial/kl5kusb105.c in the Linux kernel before 4.9.5 places uninitialized heap-memory contents into a log entry upon a failure to read the line status, which allows local users to obtain sensitive information by reading the log.
CVE ID: CVE-2017-5549
CVSS: 1.6


Debian Security Update



AlienVault ID: ENG-105147
Description: The simple_set_acl function in fs/posix_acl.c in the Linux kernel before 4.9.6 preserves the setgid bit during a setxattr call involving a tmpfs filesystem, which allows local users to gain group privileges by leveraging the existence of a setgid program with restrictions on execute permissions. NOTE: this vulnerability exists because of an incomplete fix for CVE-2016-7097.
CVE ID: CVE-2017-5551
CVSS: 2.7


Debian Security Update



AlienVault ID: ENG-105147
Description: RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
CVE ID: CVE-2017-5897
CVSS: RESERVED


Debian Security Update



AlienVault ID: ENG-105147
Description: The ipv4_pktinfo_prepare function in net/ipv4/ip_sockglue.c in the Linux kernel through 4.9.9 allows attackers to cause a denial of service (system crash) via (1) an application that makes crafted system calls or possibly (2) IPv4 traffic with invalid IP options.
CVE ID: CVE-2017-5970
CVSS: 3.7


Debian Security Update



AlienVault ID: ENG-105147
Description: Race condition in kernel/events/core.c in the Linux kernel before 4.9.7 allows local users to gain privileges via a crafted application that makes concurrent perf_event_open system calls for moving a software group into a hardware context. NOTE: this vulnerability exists because of an incomplete fix for CVE-2016-6786.
CVE ID: CVE-2017-6001
CVSS: 4.4


Debian Security Update



AlienVault ID: ENG-105147
Description: The dccp_rcv_state_process function in net/dccp/input.c in the Linux kernel through 4.9.11 mishandles DCCP_PKT_REQUEST packet data structures in the LISTEN state, which allows local users to obtain root privileges or cause a denial of service (double free) via an application that makes an IPV6_RECVPKTINFO setsockopt system call. Note: AlienVault system is not affected.
CVE ID: CVE-2017-6074
CVSS: 0


Debian Security Update



AlienVault ID: ENG-105146
Description: RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
CVE ID: CVE-2016-0736
CVSS: Reserved


Debian Security Update



AlienVault ID: ENG-105146
Description: RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
CVE ID: CVE-2016-2161
CVSS: Reserved


Debian Security Update



AlienVault ID: ENG-105146
Description: RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
CVE ID: CVE-2016-8743
CVSS: Reserved


Debian Security Update



AlienVault ID: ENG-105145
Description: RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
CVE ID: CVE-2017-3135
CVSS: Reserved


Debian Security Update



AlienVault ID: ENG-105086
Description: RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
CVE ID: CVE-2016-10195
CVSS: Reserved


Debian Security Update



AlienVault ID: ENG-105086
Description: Stack-based buffer overflow in the evutil_parse_sockaddr_port function in evutil.c in libevent before 2.1.6-beta allows attackers to cause a denial of service (segmentation fault) via vectors involving a long string in brackets in the ip_as_string argument.
CVE ID: CVE-2016-10196
CVSS: 5.0


Debian Security Update



AlienVault ID: ENG-105086
Description: The search_make_new function in evdns.c in libevent before 2.1.6-beta allows attackers to cause a denial of service (out-of-bounds read) via an empty hostname.
CVE ID: CVE-2016-10197
CVSS: 5.0


Debian Security Update



AlienVault ID: ENG-105078
Description: The client in MongoDB uses world-readable permissions on .dbshell history files, which might allow local users to obtain sensitive information by reading these files.
CVE ID: CVE-2016-6494
CVSS: 1.6


Debian Security Update



AlienVault ID: ENG-105077
Description: OpenVPN, when using a 64-bit block cipher, makes it easier for remote attackers to obtain cleartext data via a birthday attack against a long-duration encrypted session, as demonstrated by an HTTP-over-OpenVPN session using Blowfish in CBC mode, aka a "Sweet32" attack.
CVE ID: CVE-2016-6329
CVSS: 4.3


Debian Security Update



AlienVault ID: ENG-105070
Description: vim before patch 8.0.0322 does not properly validate values for tree length when handling a spell file, which may result in an integer overflow at a memory allocation site and a resultant buffer overflow.
CVE ID: CVE-2017-595
CVSS: 4.8


Debian Security Update



AlienVault ID: ENG-105051
Description: The jpc_pi_nextcprl function in JasPer 1.900.1 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted JPEG 2000 image.
CVE ID: CVE-2016-1867
CVSS: 3.2


Debian Security Update



AlienVault ID: ENG-105051
Description: RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
CVE ID: CVE-2016-8654
CVSS: Reserved


Debian Security Update



AlienVault ID: ENG-105051
Description: The jpc_dec_process_siz function in libjasper/jpc/jpc_dec.c in JasPer before 1.900.4 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted XRsiz value in a BMP image to the imginfo command.
CVE ID: CVE-2016-8691
CVSS: 4.3


Debian Security Update



AlienVault ID: ENG-105051
Description: The jpc_dec_process_siz function in libjasper/jpc/jpc_dec.c in JasPer before 1.900.4 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted YRsiz value in a BMP image to the imginfo command.
CVE ID: CVE-2016-8692
CVSS: 4.3


Debian Security Update



AlienVault ID: ENG-105051
Description: Double free vulnerability in the mem_close function in jas_stream.c in JasPer before 1.900.10 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted BMP image to the imginfo command.
CVE ID: CVE-2016-8693
CVSS: 6.8


Debian Security Update



AlienVault ID: ENG-105051
Description: The jpc_dec_tilefini function in libjasper/jpc/jpc_dec.c in JasPer before 1.900.8 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted file.
CVE ID: CVE-2016-8882
CVSS: 3.2


Debian Security Update



AlienVault ID: ENG-105051
Description: Stack-based buffer overflow in the jpc_tsfb_getbands2 function in jpc_tsfb.c in JasPer before 1.900.30 allows remote attackers to have unspecified impact via a crafted image.
CVE ID: CVE-2016-9560
CVSS: 6.8


Debian Security Update



AlienVault ID: ENG-105037
Description: The exif_convert_any_to_int function in ext/exif/exif.c in PHP before 5.6.30, 7.0.x before 7.0.15, and 7.1.x before 7.1.1 allows remote attackers to cause a denial of service (application crash) via crafted EXIF data that triggers an attempt to divide the minimum representable negative integer by -1.
CVE ID: CVE-2016-10158
CVSS: 3.7


Debian Security Update



AlienVault ID: ENG-105037
Description: Integer overflow in the phar_parse_pharfile function in ext/phar/phar.c in PHP before 5.6.30 and 7.0.x before 7.0.15 allows remote attackers to cause a denial of service (memory consumption or application crash) via a truncated manifest entry in a PHAR archive.
CVE ID: CVE-2016-10159
CVSS: 3.7


Debian Security Update



AlienVault ID: ENG-105037
Description: Off-by-one error in the phar_parse_pharfile function in ext/phar/phar.c in PHP before 5.6.30 and 7.0.x before 7.0.15 allows remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via a crafted PHAR archive with an alias mismatch.
CVE ID: CVE-2016-10160
CVSS: 4.8


Debian Security Update



AlienVault ID: ENG-105037
Description: The object_common1 function in ext/standard/var_unserializer.c in PHP before 5.6.30, 7.0.x before 7.0.15, and 7.1.x before 7.1.1 allows remote attackers to cause a denial of service (buffer over-read and application crash) via crafted serialized data that is mishandled in a finish_nested_data call.
CVE ID: CVE-2016-10161
CVSS: 3.7


Debian Security Update



AlienVault ID: ENG-104988
Description: Integer underflow in the _gdContributionsAlloc function in gd_interpolation.c in the GD Graphics Library (aka libgd) before 2.2.4 allows remote attackers to have unspecified impact via vectors related to decrementing the u variable.
CVE ID: CVE-2016-10166
CVSS: 7.5


Debian Security Update



AlienVault ID: ENG-104988
Description: The gdImageCreateFromGd2Ctx function in gd_gd2.c in the GD Graphics Library (aka libgd) before 2.2.4 allows remote attackers to cause a denial of service (application crash) via a crafted image file.
CVE ID: CVE-2016-10167
CVSS: 4.3


Debian Security Update



AlienVault ID: ENG-104988
Description: Integer overflow in gd_io.c in the GD Graphics Library (aka libgd) before 2.2.4 allows remote attackers to have unspecified impact via vectors involving the number of horizontal and vertical chunks in an image.
CVE ID: CVE-2016-10168
CVSS: 6.8


Debian Security Update



AlienVault ID: ENG-104988
Description: The read_image_tga function in gd_tga.c in the GD Graphics Library (aka libgd) before 2.2.4 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted TGA file, related to the decompression buffer.
CVE ID: CVE-2016-6906
CVSS: 4.3


Debian Security Update



AlienVault ID: ENG-104988
Description: Double free vulnerability in the gdImageWebPtr function in the GD Graphics Library (aka libgd) before 2.2.4 allows remote attackers to have unspecified impact via large width and height values.
CVE ID: CVE-2016-6912
CVSS: 5.5


Debian Security Update



AlienVault ID: ENG-104988
Description: The gdImageCreate function in the GD Graphics Library (aka libgd) before 2.2.4 allows remote attackers to cause a denial of service (system hang) via an oversized image.
CVE ID: CVE-2016-9317
CVSS: 5.3


Debian Security Update



AlienVault ID: ENG-104959
Description: The AH parser in tcpdump before 4.9.0 has a buffer overflow in print-ah.c:ah_print().
CVE ID: CVE-2016-7922
CVSS: 7.5


Debian Security Update



AlienVault ID: ENG-104959
Description: The ARP parser in tcpdump before 4.9.0 has a buffer overflow in print-arp.c:arp_print().
CVE ID: CVE-2016-7923
CVSS: 7.5


Debian Security Update



AlienVault ID: ENG-104959
Description: The ATM parser in tcpdump before 4.9.0 has a buffer overflow in print-atm.c:oam_print().
CVE ID: CVE-2016-7924
CVSS: 7.5


Debian Security Update



AlienVault ID: ENG-104959
Description: The compressed SLIP parser in tcpdump before 4.9.0 has a buffer overflow in print-sl.c:sl_if_print().
CVE ID: CVE-2016-7925
CVSS: 7.5


Debian Security Update



AlienVault ID: ENG-104959
Description: The Ethernet parser in tcpdump before 4.9.0 has a buffer overflow in print-ether.c:ethertype_print().
CVE ID: CVE-2016-7926
CVSS: 7.5


Debian Security Update



AlienVault ID: ENG-104959
Description: The IEEE 802.11 parser in tcpdump before 4.9.0 has a buffer overflow in print-802_11.c:ieee802_11_radio_print().
CVE ID: CVE-2016-7927
CVSS: 7.5


Debian Security Update



AlienVault ID: ENG-104959
Description: The IPComp parser in tcpdump before 4.9.0 has a buffer overflow in print-ipcomp.c:ipcomp_print().
CVE ID: CVE-2016-7928
CVSS: 7.5


Debian Security Update



AlienVault ID: ENG-104959
Description: The Juniper PPPoE ATM parser in tcpdump before 4.9.0 has a buffer overflow in print-juniper.c:juniper_parse_header().
CVE ID: CVE-2016-7929
CVSS: 7.5


Debian Security Update



AlienVault ID: ENG-104959
Description: The LLC/SNAP parser in tcpdump before 4.9.0 has a buffer overflow in print-llc.c:llc_print().
CVE ID: CVE-2016-7930
CVSS: 7.5


Debian Security Update



AlienVault ID: ENG-104959
Description: The MPLS parser in tcpdump before 4.9.0 has a buffer overflow in print-mpls.c:mpls_print().
CVE ID: CVE-2016-7931
CVSS: 7.5


Debian Security Update



AlienVault ID: ENG-104959
Description: The PIM parser in tcpdump before 4.9.0 has a buffer overflow in print-pim.c:pimv2_check_checksum().
CVE ID: CVE-2016-7932
CVSS: 7.5


Debian Security Update



AlienVault ID: ENG-104959
Description: The PPP parser in tcpdump before 4.9.0 has a buffer overflow in print-ppp.c:ppp_hdlc_if_print().
CVE ID: CVE-2016-7933
CVSS: 7.5


Debian Security Update



AlienVault ID: ENG-104959
Description: The RTCP parser in tcpdump before 4.9.0 has a buffer overflow in print-udp.c:rtcp_print().
CVE ID: CVE-2016-7934
CVSS: 7.5


Debian Security Update



AlienVault ID: ENG-104959
Description: The RTP parser in tcpdump before 4.9.0 has a buffer overflow in print-udp.c:rtp_print().
CVE ID: CVE-2016-7935
CVSS: 7.5


Debian Security Update



AlienVault ID: ENG-104959
Description: The UDP parser in tcpdump before 4.9.0 has a buffer overflow in print-udp.c:udp_print().
CVE ID: CVE-2016-7936
CVSS: 7.5


Debian Security Update



AlienVault ID: ENG-104959
Description: The VAT parser in tcpdump before 4.9.0 has a buffer overflow in print-udp.c:vat_print().
CVE ID: CVE-2016-7937
CVSS: 7.5


Debian Security Update



AlienVault ID: ENG-104959
Description: The ZeroMQ parser in tcpdump before 4.9.0 has an integer overflow in print-zeromq.c:zmtp1_print_frame().
CVE ID: CVE-2016-7938
CVSS: 7.5


Debian Security Update



AlienVault ID: ENG-104959
Description: The GRE parser in tcpdump before 4.9.0 has a buffer overflow in print-gre.c, multiple functions.
CVE ID: CVE-2016-7939
CVSS: 7.5


Debian Security Update



AlienVault ID: ENG-104959
Description: The STP parser in tcpdump before 4.9.0 has a buffer overflow in print-stp.c, multiple functions.
CVE ID: CVE-2016-7940
CVSS: 7.5


Debian Security Update



AlienVault ID: ENG-104959
Description: The AppleTalk parser in tcpdump before 4.9.0 has a buffer overflow in print-atalk.c, multiple functions.
CVE ID: CVE-2016-7973
CVSS: 7.5


Debian Security Update



AlienVault ID: ENG-104959
Description: The IP parser in tcpdump before 4.9.0 has a buffer overflow in print-ip.c, multiple functions.
CVE ID: CVE-2016-7974
CVSS: 7.5


Debian Security Update



AlienVault ID: ENG-104959
Description: The TCP parser in tcpdump before 4.9.0 has a buffer overflow in print-tcp.c:tcp_print().
CVE ID: CVE-2016-7975
CVSS: 7.5


Debian Security Update



AlienVault ID: ENG-104959
Description: The BOOTP parser in tcpdump before 4.9.0 has a buffer overflow in print-bootp.c:bootp_print().
CVE ID: CVE-2016-7983
CVSS: 7.5


Debian Security Update



AlienVault ID: ENG-104959
Description: The TFTP parser in tcpdump before 4.9.0 has a buffer overflow in print-tftp.c:tftp_print().
CVE ID: CVE-2016-7984
CVSS: 7.5


Debian Security Update



AlienVault ID: ENG-104959
Description: The GeoNetworking parser in tcpdump before 4.9.0 has a buffer overflow in print-geonet.c, multiple functions.
CVE ID: CVE-2016-7985
CVSS: 7.5


Debian Security Update



AlienVault ID: ENG-104959
Description: The GeoNetworking parser in tcpdump before 4.9.0 has a buffer overflow in print-geonet.c, multiple functions.
CVE ID: CVE-2016-7986
CVSS: 7.5


Debian Security Update



AlienVault ID: ENG-104959
Description: The Classical IP over ATM parser in tcpdump before 4.9.0 has a buffer overflow in print-cip.c:cip_if_print().
CVE ID: CVE-2016-7992
CVSS: 7.5


Debian Security Update



AlienVault ID: ENG-104959
Description: A bug in util-print.c:relts_print() in tcpdump before 4.9.0 could cause a buffer overflow in multiple protocol parsers (DNS, DVMRP, HSRP, IGMP, lightweight resolver protocol, PIM).
CVE ID: CVE-2016-7993
CVSS: 7.5


Debian Security Update



AlienVault ID: ENG-104959
Description: The FRF.15 parser in tcpdump before 4.9.0 has a buffer overflow in print-fr.c:frf15_print().
CVE ID: CVE-2016-8574
CVSS: 7.5


Debian Security Update



AlienVault ID: ENG-104959
Description: The Q.933 parser in tcpdump before 4.9.0 has a buffer overflow in print-fr.c:q933_print(), a different vulnerability than CVE-2017-5482.
CVE ID: CVE-2016-8575
CVSS: 7.5


Debian Security Update



AlienVault ID: ENG-104959
Description: The ISO CLNS parser in tcpdump before 4.9.0 has a buffer overflow in print-isoclns.c:clnp_print().
CVE ID: CVE-2017-5202
CVSS: 7.5


Debian Security Update



AlienVault ID: ENG-104959
Description: The BOOTP parser in tcpdump before 4.9.0 has a buffer overflow in print-bootp.c:bootp_print().
CVE ID: CVE-2017-5203
CVSS: 7.5


Debian Security Update



AlienVault ID: ENG-104959
Description: The IPv6 parser in tcpdump before 4.9.0 has a buffer overflow in print-ip6.c:ip6_print().
CVE ID: CVE-2017-5204
CVSS: 7.5


Debian Security Update



AlienVault ID: ENG-104959
Description: The ISAKMP parser in tcpdump before 4.9.0 has a buffer overflow in print-isakmp.c:ikev2_e_print().
CVE ID: CVE-2017-5205
CVSS: 7.5


Debian Security Update



AlienVault ID: ENG-104959
Description: The OTV parser in tcpdump before 4.9.0 has a buffer overflow in print-otv.c:otv_print().
CVE ID: CVE-2017-5341
CVSS: 7.5


Debian Security Update



AlienVault ID: ENG-104959
Description: In tcpdump before 4.9.0, a bug in multiple protocol parsers (Geneve, GRE, NSH, OTV, VXLAN and VXLAN GPE) could cause a buffer overflow in print-ether.c:ether_print().
CVE ID: CVE-2017-5342
CVSS: 7.5


Debian Security Update



AlienVault ID: ENG-104959
Description: The Q.933 parser in tcpdump before 4.9.0 has a buffer overflow in print-fr.c:q933_print(), a different vulnerability than CVE-2016-8575.
CVE ID: CVE-2017-5482
CVSS: 7.5


Debian Security Update



AlienVault ID: ENG-104959
Description: The SNMP parser in tcpdump before 4.9.0 has a buffer overflow in print-snmp.c:asn1_parse().
CVE ID: CVE-2017-5483
CVSS: 7.5


Debian Security Update



AlienVault ID: ENG-104959
Description: The ATM parser in tcpdump before 4.9.0 has a buffer overflow in print-atm.c:sig_print().
CVE ID: CVE-2017-5484
CVSS: 7.5


Debian Security Update



AlienVault ID: ENG-104959
Description: The ISO CLNS parser in tcpdump before 4.9.0 has a buffer overflow in addrtoname.c:lookup_nsap().
CVE ID: CVE-2017-5485
CVSS: 7.5


Debian Security Update



AlienVault ID: ENG-104959
Description: The ISO CLNS parser in tcpdump before 4.9.0 has a buffer overflow in print-isoclns.c:clnp_print().
CVE ID: CVE-2017-5486
CVSS: 7.5


Debian Security Update



AlienVault ID: ENG-104958
Description: RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
CVE ID: CVE-2016-7056
CVSS: Reserved


Debian Security Update



AlienVault ID: ENG-104958
Description: RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
CVE ID: CVE-2016-8610
CVSS: Reserved


Debian Security Update



AlienVault ID: ENG-104958
Description: RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
CVE ID: CVE-2017-3731
CVSS: Reserved


Debian Security Update



AlienVault ID: ENG-104932
Description: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.5.53 and earlier, 5.6.34 and earlier and 5.7.16 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS v3.0 Base Score 6.5 (Availability impacts).
CVE ID: CVE-2017-3238
CVSS: 4.0


Debian Security Update



AlienVault ID: ENG-104932
Description: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Charsets). Supported versions that are affected are 5.5.53 and earlier. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS v3.0 Base Score 4.4 (Availability impacts).
CVE ID: CVE-2017-3243
CVSS: 3.5


Debian Security Update



AlienVault ID: ENG-104932
Description: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported versions that are affected are 5.5.53 and earlier, 5.6.34 and earlier and 5.7.16 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS v3.0 Base Score 6.5 (Availability impacts).
CVE ID: CVE-2017-3244
CVSS: 4.0


Debian Security Update



AlienVault ID: ENG-104932
Description: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 5.5.53 and earlier, 5.6.34 and earlier and 5.7.16 and earlier. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS v3.0 Base Score 6.5 (Availability impacts).
CVE ID: CVE-2017-3258
CVSS: 4.0


Debian Security Update



AlienVault ID: ENG-104932
Description: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Packaging). Supported versions that are affected are 5.5.53 and earlier, 5.6.34 and earlier and 5.7.16 and earlier. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where MySQL Server executes to compromise MySQL Server. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all MySQL Server accessible data and unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS v3.0 Base Score 5.6 (Confidentiality and Availability impacts).
CVE ID: CVE-2017-3258
CVSS: 4.9


Debian Security Update



AlienVault ID: ENG-104932
Description: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Packaging). Supported versions that are affected are 5.5.53 and earlier, 5.6.34 and earlier and 5.7.16 and earlier. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where MySQL Server executes to compromise MySQL Server. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in takeover of MySQL Server. CVSS v3.0 Base Score 6.3 (Confidentiality, Integrity and Availability impacts).
CVE ID: CVE-2017-3291
CVSS: 3.5


Debian Security Update



AlienVault ID: ENG-104932
Description: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Packaging). Supported versions that are affected are 5.5.53 and earlier, 5.6.34 and earlier and 5.7.16 and earlier. Difficult to exploit vulnerability allows low privileged attacker with logon to the infrastructure where MySQL Server executes to compromise MySQL Server. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in takeover of MySQL Server. CVSS v3.0 Base Score 6.7 (Confidentiality, Integrity and Availability impacts).
CVE ID: CVE-2017-3312
CVSS: 3.5


Debian Security Update



AlienVault ID: ENG-104932
Description: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: MyISAM). Supported versions that are affected are 5.5.53 and earlier, 5.6.34 and earlier and 5.7.16 and earlier. Difficult to exploit vulnerability allows low privileged attacker with logon to the infrastructure where MySQL Server executes to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all MySQL Server accessible data. CVSS v3.0 Base Score 4.7 (Confidentiality impacts).
CVE ID: CVE-2017-3313
CVSS: 1.5


Debian Security Update



AlienVault ID: ENG-104932
Description: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Logging). Supported versions that are affected are 5.5.53 and earlier, 5.6.34 and earlier and 5.7.16 and earlier. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where MySQL Server executes to compromise MySQL Server. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS v3.0 Base Score 4.0 (Availability impacts).
CVE ID: CVE-2017-3317
CVSS: 1.5


Debian Security Update



AlienVault ID: ENG-104932
Description: Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Error Handling). Supported versions that are affected are 5.5.53 and earlier, 5.6.34 and earlier and 5.7.16 and earlier. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where MySQL Server executes to compromise MySQL Server. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all MySQL Server accessible data. CVSS v3.0 Base Score 4.0 (Confidentiality impacts).
CVE ID: CVE-2017-3318
CVSS: 1.0


NfSen Security Update



AlienVault ID: ENG-104945
Description: RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
CVE ID: CVE-2017-6972
CVSS: RESERVED
Reported by: Foregenix Ltd / Paul Taylor


NfSen Security Update



AlienVault ID: ENG-104945
Description: RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
CVE ID: CVE-2017-6970
CVSS: RESERVED
Reported by: Foregenix Ltd / Paul Taylor


NfSen Security Update



AlienVault ID: ENG-104862
Description: RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
CVE ID: CVE-2017-6971
CVSS: RESERVED
Reported by: Foregenix Ltd / Paul Taylor


hbaxamoosa
Tagged:

Share post:

Sign In or Register to comment.