| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Wed, 2 Oct 2013 12:00:10 -0400 From: Cisco Systems Product Security Incident Response Team <psirt@...co.com> To: full-disclosure@...ts.grok.org.uk Cc: psirt@...co.com Subject: Cisco Security Advisory: Cisco IOS XR Software Memory Exhaustion Vulnerability -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Cisco Security Advisory: Cisco IOS XR Software Memory Exhaustion Vulnerability Advisory ID: cisco-sa-20131002-iosxr Revision 1.0 For Public Release 2013 October 2 16:00 UTC (GMT) +--------------------------------------------------------------------- Summary ======= Cisco IOS XR Software version 4.3.1 contains a vulnerability that could result in complete packet memory exhaustion. Successful exploitation could render critical services on the affected device unable to allocate packets resulting in a denial of service (DoS) condition. Cisco has released free software updates that address this vulnerability. Workarounds that mitigate this vulnerability are available. This advisory is available at the following link: http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20131002-iosxr -----BEGIN PGP SIGNATURE----- Version: GnuPG/MacGPG2 v2.0.20 (Darwin) iF4EAREKAAYFAlJMIq8ACgkQUddfH3/BbTqjjwD/eOsOi/QIx1MC6+ZORbUAXc3K fcOK4tErQCNfv3jWDk4A/38adqa7pARVMfwKu0l2dDXEPQp6zS4qERwS8TBNdlQc =YZja -----END PGP SIGNATURE----- _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists