The HTTP/2 protocol allows a denial of service (server resource consumption) because request ca…

GNU Bash through 4.3 processes trailing strings after function definitions in the values of env…

GNU Bash through 4.3 bash43-025 processes trailing strings after certain malformed function def…

Jonathan Looney discovered that the TCP_SKB_CB(skb)->tcp_gso_segs value was subject to an integ…

Undisclosed requests may bypass configuration utility authentication, allowing an attacker with…

Jonathan Looney discovered that the TCP retransmission queue implementation in tcp_fragment in …

Jonathan Looney discovered that the Linux kernel default MSS is hard-coded to 48 bytes. This al…

Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo_queue…

The iControl API in F5 BIG-IP LTM, AFM, Analytics, APM, ASM, Link Controller, and PEM 11.3.0 be…

The iControl API in F5 BIG-IP LTM, APM, ASM, GTM, Link Controller, and PSM 10.0.0 through 10.2.…

When running in Appliance mode, a command injection vulnerability exists in an undisclosed iCon…

The Linux kernel, versions 3.9+, is vulnerable to a denial of service attack with low rates of …

The Diffie-Hellman Key Agreement Protocol allows remote attackers (from the client side) to sen…

The n_tty_write function in drivers/tty/n_tty.c in the Linux kernel through 3.14.3 does not pro…

If an application encounters a fatal protocol error and then calls SSL_shutdown() twice (once t…

In Bootstrap before 3.4.1 and 4.3.x before 4.3.1, XSS is possible in the tooltip or popover dat…

In the Linux kernel before 4.20.8, kvm_ioctl_create_device in virt/kvm/kvm_main.c mishandles re…

An integer overflow flaw was found in the Linux kernel's create_elf_tables() function. An unpri…

On F5 BIG-IP 13.1.0-13.1.0.3 or 13.0.0, when authenticated administrative users execute command…

The SSL profiles component in F5 BIG-IP LTM, APM, and ASM 10.0.0 through 10.2.4 and 11.0.0 thro…

By design, BIND is intended to limit the number of TCP clients that can be connected at any giv…

BIG-IP monitor functionality may allow an attacker to bypass access control restrictions, regar…

racoon/gssapi.c in IPsec-Tools 0.8.2 allows remote attackers to cause a denial of service (NULL…

The rsync daemon in F5 BIG-IP 11.6 before 11.6.0, 11.5.1 before HF3, 11.5.0 before HF4, 11.4.1 …

Command injection vulnerability exists in iControl REST and BIG-IP TMOS Shell (tmsh) save comma…

The sctp_sf_do_5_1D_ce function in net/sctp/sm_statefuns.c in the Linux kernel through 3.13.6 d…

Directory traversal vulnerability in the configuration utility in F5 BIG-IP before 12.0.0 and E…

Directory traversal vulnerability in an unspecified signed Java applet in the client-side compo…

The HTTPS protocol, as used in unspecified web applications, can encrypt compressed data withou…

The (1) IPv4 and (2) IPv6 implementations in the Linux kernel before 3.1 use a modified MD4 alg…

The OSPFv3 parser in tcpdump before 4.9.3 has a buffer over-read in print-ospf6.c:ospf6_print_l…

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.64 and earlier, and…

Versions of lodash lower than 4.17.12 are vulnerable to Prototype Pollution. The function defau…

In some circumstances, the Traffic Management Microkernel (TMM) does not properly handle certai…

An authenticated SQL injection vulnerability exists in the BIG-IP Configuration utility which …

On F5 BIG-IP 13.1.0-13.1.0.5, maliciously crafted HTTP/2 request frames can lead to denial of s…

The FRF.16 parser in tcpdump before 4.9.3 has a buffer over-read in print-fr.c:mfr_print().

In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, GTM, Link Controller, PEM, …

The datastor kernel module in F5 BIG-IP Analytics, APM, ASM, Link Controller, and LTM 11.1.0 be…

A race condition which may occur when discarding malformed packets can result in BIND exiting d…