Day: 7 abril, 2023

Security Advisory Description Insufficient granularity of access control in out-of-band management in some Intel(R) Atom and Intel Xeon Scalable Processors may allow a privileged user to ... More info: https://my.f5.com/manage/s/article/K000133432?utm_source=f5support&utm_medium=RSS

Security Advisory Description When authenticated administrative users run commands in the Traffic Management User Interface (TMUI), also referred to as the BIG-IP Configuration utility, ... More info: https://my.f5.com/manage/s/article/K50254952?utm_source=f5support&utm_medium=RSS

Security Advisory Description An issue was discovered in get_vdev_port_node_info in arch/sparc/kernel/mdesc.c in the Linux kernel through 5.1.6. There is an unchecked kstrdup_const of node_info-> ... More info: https://my.f5.com/manage/s/article/K60924046?utm_source=f5support&utm_medium=RSS

Security Advisory Description ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been ... More info: https://my.f5.com/manage/s/article/K69334442?utm_source=f5support&utm_medium=RSS

Security Advisory Description The parse_encoding function in type1/t1load.c in FreeType before 2.5.3 allows remote attackers to cause a denial of service (infinite loop) via a "broken number-with- ... More info: https://my.f5.com/manage/s/article/K72372334?utm_source=f5support&utm_medium=RSS

Security Advisory Description The net/http package in Go through 1.6 does not attempt to address RFC 3875 section 4.1.18 namespace conflicts and therefore does not protect CGI applications from ... More info: https://my.f5.com/manage/s/article/K92930514?utm_source=f5support&utm_medium=RSS

Security Advisory Description Race condition in the L2TPv3 IP Encapsulation feature in the Linux kernel before 4.8.14 allows local users to gain privileges or cause a denial of service (use-after- ... More info: https://my.f5.com/manage/s/article/K68852819?utm_source=f5support&utm_medium=RSS

Security Advisory Description Use-after-free vulnerability in xprt_set_caller in rpcb_svc_com.c in rpcbind 0.2.1 and earlier allows remote attackers to cause a denial of service (daemon crash) via ... More info: https://my.f5.com/manage/s/article/K44340019?utm_source=f5support&utm_medium=RSS

Security Advisory Description CVE-2010-2799 Stack-based buffer overflow in the nestlex function in nestlex.c in Socat 1.5.0.0 through 1.7.1.2 and 2.0.0-b1 through 2.0.0-b3, when bidirectional data ... More info: https://my.f5.com/manage/s/article/K14919?utm_source=f5support&utm_medium=RSS

Security Advisory Description Heap-based buffer overflow in the horizontalDifference8 function in tif_pixarlog.c in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service ( ... More info: https://my.f5.com/manage/s/article/K46303125?utm_source=f5support&utm_medium=RSS