Posted by Meng Ruijie on Jan 17
About CVE-2021-42142:
[Suggested description]
An issue was discovered in Contiki-NG tinyDTLS through 2018-08-30. DTLS servers mishandle the early use of a large
epoch number. This vulnerability allows remote attackers to cause a denial of service and false-positive packet drops.
[VulnerabilityType Other]
Improper Handling of exception conditions
[Vendor of Product]
https://github.com/contiki-ng/tinydtls
[Affected Product Code Base]…
More Stories
webkitgtk-2.46.0-1.fc40
FEDORA-2024-00448ce92b Packages in this update: webkitgtk-2.46.0-1.fc40 Update description: Use Skia instead of cairo for 2D rendering and enable GPU rendering...
webkitgtk-2.46.0-2.fc41
FEDORA-2024-711db299ed Packages in this update: webkitgtk-2.46.0-2.fc41 Update description: Use Skia instead of cairo for 2D rendering and enable GPU rendering...
USN-7019-1: Linux kernel vulnerabilities
Ziming Zhang discovered that the DRM driver for VMware Virtual GPU did not properly handle certain error conditions, leading to...
Multiple Vulnerabilities in Google Chrome Could Allow for Arbitrary Code Execution
Multiple vulnerabilities have been discovered in Google Chrome, the most severe of which could allow for arbitrary code execution. Successful...
USN-7018-1: OpenSSL vulnerabilities
Robert Merget, Marcus Brinkmann, Nimrod Aviram, and Juraj Somorovsky discovered that certain Diffie-Hellman ciphersuites in the TLS specification and implemented...
USN-7017-1: Quagga vulnerability
Iggy Frankovic discovered that Quagga incorrectly handled certain BGP messages. A remote attacker could possibly use this issue to cause...