QwikSec

Security Database

CVE

CWE

Training

CVE-2018-1000026

Published: Feb 9, 2018

Modified: Aug 5, 2024

PUBLISHED

Description

Linux Linux kernel version at least v4.8 onwards, probably well before contains a Insufficient input validation vulnerability in bnx2x network card driver that can result in DoS: Network card firmware assertion takes card off-line. This attack appear to be exploitable via An attacker on a must pass a very large, specially crafted packet to the bnx2x card. This can be done from an untrusted guest VM..

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

vendor-advisory

x_refsource_REDHAT

vendor-advisory

x_refsource_UBUNTU

vendor-advisory

x_refsource_UBUNTU

vendor-advisory

x_refsource_UBUNTU

vendor-advisory

x_refsource_UBUNTU

vendor-advisory

x_refsource_UBUNTU

vendor-advisory

x_refsource_REDHAT

https://patchwork.ozlabs.org/patch/859410/

x_refsource_MISC

[netdev] 20180116 http://lists.openwall.net/netdev/2018/01/16/40

mailing-list

x_refsource_MLIST

vendor-advisory

x_refsource_UBUNTU

[netdev] 20180118 http://lists.openwall.net/netdev/2018/01/18/96

mailing-list

x_refsource_MLIST

vendor-advisory

x_refsource_UBUNTU

vendor-advisory

x_refsource_REDHAT

vendor-advisory

x_refsource_UBUNTU

[debian-lts-announce] 20190503 [SECURITY] [DLA 1771-1] linux-4.9 security update

mailing-list

x_refsource_MLIST

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.