Stack-based buffer overflow in the brcmf_cfg80211_start_ap function in drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c in the Linux kernel before 4.7.5 allows local users to cause a denial of service (system crash) or possibly have unspecified other impact via a long SSID Information Element in a command to a Netlink socket.
Monthly Archives: October 2016
CVE-2016-8660
The XFS subsystem in the Linux kernel through 4.8.2 allows local users to cause a denial of service (fdatasync failure and system hang) by using the vfs syscall group in the trinity program, related to a “page lock order bug in the XFS seek hole/data implementation.”
CVE-2016-8666
The IP stack in the Linux kernel before 4.6 allows remote attackers to cause a denial of service (stack consumption and panic) or possibly have unspecified other impact by triggering use of the GRO path for packets with tunnel stacking, as demonstrated by interleaved IPv4 headers and GRE headers, a related issue to CVE-2016-7039.
Qualys Security Advisory – LibreSSL Leak / Overflow
Qualys discovered various vulnerabilities in LibreSSL. These include a memory leak and a buffer overflow.
qemu-2.6.2-2.fc24
* CVE-2016-6351: scsi: esp: OOB write access in esp_do_dma (bz #1360600)
* CVE-2016-6833: vmxnet3: use-after-free (bz #1368982)
* CVE-2016-6490: virtio: infinite loop in virtqueue_pop (bz #1361428)
* CVE-2016-7156: pvscsi: infinite loop when building SG list (bz #1373480)
* CVE-2016-7170: vmware_vga: OOB stack memory access (bz #1374709)
* CVE-2016-7161: net: Heap overflow in xlnx.xps-ethernetlite (bz #1379298)
* CVE-2016-7466: usb: xhci memory leakage during device unplug (bz #1377838)
* CVE-2016-7422: virtio: null pointer dereference (bz #1376756)
* CVE-2016-7908: net: Infinite loop in mcf_fec_do_tx (bz #1381193)
* CVE-2016-8576: usb: xHCI: infinite loop vulnerability (bz #1382322)
* CVE-2016-7995: usb: hcd-ehci: memory leak (bz #1382669)
* Don’t depend on edk2 roms where they aren’t available (bz #1373576)
qemu-2.7.0-4.fc25
* CVE-2016-7155: pvscsi: OOB read and infinite loop (bz #1373463)
* CVE-2016-7156: pvscsi: infinite loop when building SG list (bz #1373480)
* CVE-2016-7156: pvscsi: infinite loop when processing IO requests (bz #1373480)
* CVE-2016-7170: vmware_vga: OOB stack memory access (bz #1374709)
* CVE-2016-7157: mptsas: invalid memory access (bz #1373505)
* CVE-2016-7466: usb: xhci memory leakage during device unplug (bz #1377838)
* CVE-2016-7423: scsi: mptsas: OOB access (bz #1376777)
* CVE-2016-7422: virtio: null pointer dereference (bz #1376756)
* CVE-2016-7908: net: Infinite loop in mcf_fec_do_tx (bz #1381193)
* CVE-2016-8576: usb: xHCI: infinite loop vulnerability (bz #1382322)
* CVE-2016-7995: usb: hcd-ehci: memory leak (bz #1382669)
Vuln: Qemu 'hcd-ehci.c' Memory Leak Denial of Service Vulnerability
Qemu ‘hcd-ehci.c’ Memory Leak Denial of Service Vulnerability
Sierra Wireless Warns Cellular Data Gear Targeted by Mirai Malware
Sierra Wireless warns that its AirLink gateways are being infected by the Mirai malware, and urges customers to change default passwords on devices.
Crack for Charity — GCHQ launches 'Puzzle Book' Challenge for Cryptographers
The UK’s Signals Intelligence and Cyber Security agency GCHQ has launched its first ever puzzle book, challenging researchers and cryptographers to crack codes for charity.
Dubbed “The GCHQ Puzzle Book,” the book features more than 140 pages of codes, puzzles, and challenges created by expert code breakers at the British intelligence agency.
<!– adsense –>
Ranging from easy to complex, the
FBI is Investigating Theft of $1.3 Million in Bitcoin from a Massachusetts Man
Over two months ago, the world’s third largest Bitcoin Exchange Bitfinex lost around $72 Million worth of Bitcoins in a major hack.
Shortly after the company encountered a $72,000,000 Bitcoin theft, an unnamed Bitfinex user from Cambridge, Massachusetts, filed a police report in September, alleging that $1.3 Million of funds were stolen from his account.
Since then the Cambridge police have
