Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2005-2021 Tenable Network Security, Inc.MANDRAKE_MDKSA-2005-022.NASL
HistoryJan 26, 2005 - 12:00 a.m.

Mandrake Linux Security Advisory : kernel (MDKSA-2005:022)

2005-01-2600:00:00
This script is Copyright (C) 2005-2021 Tenable Network Security, Inc.
www.tenable.com
17
JSON

A number of vulnerabilities are fixed in the 2.4 and 2.6 kernels with this advisory :

  • Multiple race conditions in the terminal layer of 2.4 and 2.6 kernels (prior to 2.6.9) can allow a local attacker to obtain portions of kernel data or allow remote attackers to cause a kernel panic by switching from console to PPP line discipline, then quickly sending data that is received during the switch (CVE-2004-0814)

  • Richard Hart found an integer underflow problem in the iptables firewall logging rules that can allow a remote attacker to crash the machine by using a specially crafted IP packet. This is only possible, however, if firewalling is enabled. The problem only affects 2.6 kernels and was fixed upstream in 2.6.8 (CVE-2004-0816)

  • Stefan Esser found several remote DoS confitions in the smbfs file system. This could be exploited by a hostile SMB server (or an attacker injecting packets into the network) to crash the client systems (CVE-2004-0883 and CVE-2004-0949)

  • Paul Starzetz and Georgi Guninski reported, independently, that bad argument handling and bad integer arithmetics in the IPv4 sendmsg handling of control messages could lead to a local attacker crashing the machine. The fixes were done by Herbert Xu (CVE-2004-1016)

  • Rob Landley discovered a race condition in the handling of /proc/…/cmdline where, under rare circumstances, a user could read the environment variables of another process that was still spawning leading to the potential disclosure of sensitive information such as passwords (CVE-2004-1058)

  • Paul Starzetz reported that the missing serialization in unix_dgram_recvmsg() which was added to kernel 2.4.28 can be used by a local attacker to gain elevated (root) privileges (CVE-2004-1068)

  • Ross Kendall Axe discovered a possible kernel panic (DoS) while sending AF_UNIX network packets if certain SELinux-related kernel options were enabled. By default the CONFIG_SECURITY_NETWORK and CONFIG_SECURITY_SELINUX options are not enabled (CVE-2004-1069)

  • Paul Starzetz of isec.pl discovered several issues with the error handling of the ELF loader routines in the kernel. The fixes were provided by Chris Wright (CVE-2004-1070, CVE-2004-1071, CVE-2004-1072, CVE-2004-1073)

  • It was discovered that hand-crafted a.out binaries could be used to trigger a local DoS condition in both the 2.4 and 2.6 kernels. The fixes were done by Chris Wright (CVE-2004-1074)

  • Paul Starzetz found bad handling in the IGMP code which could lead to a local attacker being able to crash the machine. The fix was done by Chris Wright (CVE-2004-1137)

  • Jeremy Fitzhardinge discovered two buffer overflows in the sys32_ni_syscall() and sys32_vm86_warning() functions that could be used to overwrite kernel memory with attacker-supplied code resulting in privilege escalation (CVE-2004-1151)

  • Paul Starzetz found locally exploitable flaws in the binary format loader’s uselib() function that could be abused to allow a local user to obtain root privileges (CVE-2004-1235)

  • Paul Starzetz found an exploitable flaw in the page fault handler when running on SMP machines (CVE-2005-0001)

  • A vulnerability in insert_vm_struct could allow a locla user to trigger BUG() when the user created a large vma that overlapped with arg pages during exec (CVE-2005-0003)

  • Paul Starzetz also found a number of vulnerabilities in the kernel binfmt_elf loader that could lead a local user to obtain elevated (root) privileges (isec-0017-binfmt_elf)

The provided packages are patched to fix these vulnerabilities. All users are encouraged to upgrade to these updated kernels.

To update your kernel, please follow the directions located at :

http://www.mandrakesoft.com/security/kernelupdate

PLEASE NOTE: Mandrakelinux 10.0 users will need to upgrade to the latest module-init-tools package prior to upgrading their kernel.
Likewise, MNF8.2 users will need to upgrade to the latest modutils package prior to upgrading their kernel.

#%NASL_MIN_LEVEL 70300

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Mandrake Linux Security Advisory MDKSA-2005:022. 
# The text itself is copyright (C) Mandriva S.A.
#

if (NASL_LEVEL < 3000) exit(0);

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(16259);
  script_version("1.21");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/06");

  script_cve_id("CVE-2004-0814", "CVE-2004-0816", "CVE-2004-0883", "CVE-2004-0949", "CVE-2004-1016", "CVE-2004-1057", "CVE-2004-1058", "CVE-2004-1068", "CVE-2004-1069", "CVE-2004-1070", "CVE-2004-1071", "CVE-2004-1072", "CVE-2004-1073", "CVE-2004-1074", "CVE-2004-1137", "CVE-2004-1151", "CVE-2004-1191", "CVE-2004-1235", "CVE-2005-0001", "CVE-2005-0003");
  script_xref(name:"MDKSA", value:"2005:022");

  script_name(english:"Mandrake Linux Security Advisory : kernel (MDKSA-2005:022)");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:
"The remote Mandrake Linux host is missing one or more security
updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"A number of vulnerabilities are fixed in the 2.4 and 2.6 kernels with
this advisory :

  - Multiple race conditions in the terminal layer of 2.4
    and 2.6 kernels (prior to 2.6.9) can allow a local
    attacker to obtain portions of kernel data or allow
    remote attackers to cause a kernel panic by switching
    from console to PPP line discipline, then quickly
    sending data that is received during the switch
    (CVE-2004-0814)

  - Richard Hart found an integer underflow problem in the
    iptables firewall logging rules that can allow a remote
    attacker to crash the machine by using a specially
    crafted IP packet. This is only possible, however, if
    firewalling is enabled. The problem only affects 2.6
    kernels and was fixed upstream in 2.6.8 (CVE-2004-0816)

  - Stefan Esser found several remote DoS confitions in the
    smbfs file system. This could be exploited by a hostile
    SMB server (or an attacker injecting packets into the
    network) to crash the client systems (CVE-2004-0883 and
    CVE-2004-0949)

  - Paul Starzetz and Georgi Guninski reported,
    independently, that bad argument handling and bad
    integer arithmetics in the IPv4 sendmsg handling of
    control messages could lead to a local attacker crashing
    the machine. The fixes were done by Herbert Xu
    (CVE-2004-1016)

  - Rob Landley discovered a race condition in the handling
    of /proc/.../cmdline where, under rare circumstances, a
    user could read the environment variables of another
    process that was still spawning leading to the potential
    disclosure of sensitive information such as passwords
    (CVE-2004-1058)

  - Paul Starzetz reported that the missing serialization in
    unix_dgram_recvmsg() which was added to kernel 2.4.28
    can be used by a local attacker to gain elevated (root)
    privileges (CVE-2004-1068)

  - Ross Kendall Axe discovered a possible kernel panic
    (DoS) while sending AF_UNIX network packets if certain
    SELinux-related kernel options were enabled. By default
    the CONFIG_SECURITY_NETWORK and CONFIG_SECURITY_SELINUX
    options are not enabled (CVE-2004-1069)

  - Paul Starzetz of isec.pl discovered several issues with
    the error handling of the ELF loader routines in the
    kernel. The fixes were provided by Chris Wright
    (CVE-2004-1070, CVE-2004-1071, CVE-2004-1072,
    CVE-2004-1073)

  - It was discovered that hand-crafted a.out binaries could
    be used to trigger a local DoS condition in both the 2.4
    and 2.6 kernels. The fixes were done by Chris Wright
    (CVE-2004-1074)

  - Paul Starzetz found bad handling in the IGMP code which
    could lead to a local attacker being able to crash the
    machine. The fix was done by Chris Wright
    (CVE-2004-1137)

  - Jeremy Fitzhardinge discovered two buffer overflows in
    the sys32_ni_syscall() and sys32_vm86_warning()
    functions that could be used to overwrite kernel memory
    with attacker-supplied code resulting in privilege
    escalation (CVE-2004-1151)

  - Paul Starzetz found locally exploitable flaws in the
    binary format loader's uselib() function that could be
    abused to allow a local user to obtain root privileges
    (CVE-2004-1235)

  - Paul Starzetz found an exploitable flaw in the page
    fault handler when running on SMP machines
    (CVE-2005-0001)

  - A vulnerability in insert_vm_struct could allow a locla
    user to trigger BUG() when the user created a large vma
    that overlapped with arg pages during exec
    (CVE-2005-0003)

  - Paul Starzetz also found a number of vulnerabilities in
    the kernel binfmt_elf loader that could lead a local
    user to obtain elevated (root) privileges
    (isec-0017-binfmt_elf)

The provided packages are patched to fix these vulnerabilities. All
users are encouraged to upgrade to these updated kernels.

To update your kernel, please follow the directions located at :

http://www.mandrakesoft.com/security/kernelupdate

PLEASE NOTE: Mandrakelinux 10.0 users will need to upgrade to the
latest module-init-tools package prior to upgrading their kernel.
Likewise, MNF8.2 users will need to upgrade to the latest modutils
package prior to upgrading their kernel."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://isec.pl/en/vulnerabilities/isec-0017-binfmt_elf.txt"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.isec.pl/vulnerabilities/isec-0022-pagefault.txt"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.ussg.iu.edu/hypermail/linux/kernel/0411.1/1222.html"
  );
  script_set_attribute(attribute:"solution", value:"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_set_attribute(attribute:"exploited_by_malware", value:"true");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:kernel-2.4.22.41mdk");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:kernel-2.4.25.13mdk");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:kernel-2.4.28.0.rc1.5mdk");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:kernel-2.6.3.25mdk");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:kernel-2.6.8.1.24mdk");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:kernel-enterprise-2.4.22.41mdk");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:kernel-enterprise-2.4.25.13mdk");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:kernel-enterprise-2.4.28.0.rc1.5mdk");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:kernel-enterprise-2.6.3.25mdk");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:kernel-enterprise-2.6.8.1.24mdk");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:kernel-i586-up-1GB-2.4.28.0.rc1.5mdk");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:kernel-i586-up-1GB-2.6.8.1.24mdk");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:kernel-i686-up-4GB-2.4.22.41mdk");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:kernel-i686-up-4GB-2.4.25.13mdk");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:kernel-i686-up-4GB-2.6.3.25mdk");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:kernel-i686-up-64GB-2.6.8.1.24mdk");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:kernel-p3-smp-64GB-2.4.22.41mdk");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:kernel-p3-smp-64GB-2.4.25.13mdk");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:kernel-p3-smp-64GB-2.6.3.25mdk");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:kernel-secure-2.4.22.41mdk");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:kernel-secure-2.6.3.25mdk");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:kernel-secure-2.6.8.1.24mdk");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:kernel-smp-2.4.22.41mdk");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:kernel-smp-2.4.25.13mdk");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:kernel-smp-2.4.28.0.rc1.5mdk");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:kernel-smp-2.6.3.25mdk");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:kernel-smp-2.6.8.1.24mdk");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:kernel-source");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:kernel-source-2.4");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:kernel-source-2.6");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:kernel-source-stripped");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:kernel-source-stripped-2.6");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:module-init-tools");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:mandrakesoft:mandrake_linux:10.0");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:mandrakesoft:mandrake_linux:10.1");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:mandrakesoft:mandrake_linux:9.2");

  script_set_attribute(attribute:"patch_publication_date", value:"2005/01/25");
  script_set_attribute(attribute:"plugin_publication_date", value:"2005/01/26");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2005-2021 Tenable Network Security, Inc.");
  script_family(english:"Mandriva Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/Mandrake/release", "Host/Mandrake/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Mandrake/release")) audit(AUDIT_OS_NOT, "Mandriva / Mandake Linux");
if (!get_kb_item("Host/Mandrake/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^(amd64|i[3-6]86|x86_64)$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Mandriva / Mandrake Linux", cpu);


flag = 0;
if (rpm_check(release:"MDK10.0", reference:"kernel-2.4.25.13mdk-1-1mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.0", reference:"kernel-2.6.3.25mdk-1-1mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.0", cpu:"i386", reference:"kernel-enterprise-2.4.25.13mdk-1-1mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.0", cpu:"i386", reference:"kernel-enterprise-2.6.3.25mdk-1-1mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.0", cpu:"i386", reference:"kernel-i686-up-4GB-2.4.25.13mdk-1-1mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.0", cpu:"i386", reference:"kernel-i686-up-4GB-2.6.3.25mdk-1-1mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.0", cpu:"i386", reference:"kernel-p3-smp-64GB-2.4.25.13mdk-1-1mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.0", cpu:"i386", reference:"kernel-p3-smp-64GB-2.6.3.25mdk-1-1mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.0", reference:"kernel-secure-2.6.3.25mdk-1-1mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.0", reference:"kernel-smp-2.4.25.13mdk-1-1mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.0", reference:"kernel-smp-2.6.3.25mdk-1-1mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.0", reference:"kernel-source-2.4.25-13mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.0", reference:"kernel-source-stripped-2.6.3-25mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.0", reference:"module-init-tools-3.0-1.2.1.100mdk", yank:"mdk")) flag++;

if (rpm_check(release:"MDK10.1", reference:"kernel-2.4.28.0.rc1.5mdk-1-1mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.1", reference:"kernel-2.6.8.1.24mdk-1-1mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.1", cpu:"i386", reference:"kernel-enterprise-2.4.28.0.rc1.5mdk-1-1mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.1", cpu:"i386", reference:"kernel-enterprise-2.6.8.1.24mdk-1-1mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.1", cpu:"i386", reference:"kernel-i586-up-1GB-2.4.28.0.rc1.5mdk-1-1mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.1", cpu:"i386", reference:"kernel-i586-up-1GB-2.6.8.1.24mdk-1-1mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.1", cpu:"i386", reference:"kernel-i686-up-64GB-2.6.8.1.24mdk-1-1mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.1", reference:"kernel-secure-2.6.8.1.24mdk-1-1mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.1", reference:"kernel-smp-2.4.28.0.rc1.5mdk-1-1mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.1", reference:"kernel-smp-2.6.8.1.24mdk-1-1mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.1", reference:"kernel-source-2.4-2.4.28-0.rc1.5mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.1", reference:"kernel-source-2.6-2.6.8.1-24mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK10.1", reference:"kernel-source-stripped-2.6-2.6.8.1-24mdk", yank:"mdk")) flag++;

if (rpm_check(release:"MDK9.2", reference:"kernel-2.4.22.41mdk-1-1mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK9.2", cpu:"i386", reference:"kernel-enterprise-2.4.22.41mdk-1-1mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK9.2", cpu:"i386", reference:"kernel-i686-up-4GB-2.4.22.41mdk-1-1mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK9.2", cpu:"i386", reference:"kernel-p3-smp-64GB-2.4.22.41mdk-1-1mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK9.2", reference:"kernel-secure-2.4.22.41mdk-1-1mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK9.2", reference:"kernel-smp-2.4.22.41mdk-1-1mdk", yank:"mdk")) flag++;
if (rpm_check(release:"MDK9.2", reference:"kernel-source-2.4.22-41mdk", yank:"mdk")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
mandrivalinuxkernel-2.4.22.41mdkp-cpe:/a:mandriva:linux:kernel-2.4.22.41mdk
mandrivalinuxkernel-2.4.25.13mdkp-cpe:/a:mandriva:linux:kernel-2.4.25.13mdk
mandrivalinuxkernel-2.4.28.0.rc1.5mdkp-cpe:/a:mandriva:linux:kernel-2.4.28.0.rc1.5mdk
mandrivalinuxkernel-2.6.3.25mdkp-cpe:/a:mandriva:linux:kernel-2.6.3.25mdk
mandrivalinuxkernel-2.6.8.1.24mdkp-cpe:/a:mandriva:linux:kernel-2.6.8.1.24mdk
mandrivalinuxkernel-enterprise-2.4.22.41mdkp-cpe:/a:mandriva:linux:kernel-enterprise-2.4.22.41mdk
mandrivalinuxkernel-enterprise-2.4.25.13mdkp-cpe:/a:mandriva:linux:kernel-enterprise-2.4.25.13mdk
mandrivalinuxkernel-enterprise-2.4.28.0.rc1.5mdkp-cpe:/a:mandriva:linux:kernel-enterprise-2.4.28.0.rc1.5mdk
mandrivalinuxkernel-enterprise-2.6.3.25mdkp-cpe:/a:mandriva:linux:kernel-enterprise-2.6.3.25mdk
mandrivalinuxkernel-enterprise-2.6.8.1.24mdkp-cpe:/a:mandriva:linux:kernel-enterprise-2.6.8.1.24mdk
Rows per page:
1-10 of 361

References

Related

securityvulns 7
suse 6
nessus 38
openvas 33
ubuntu 6
redhat 13
debian 10
osv 7
ubuntucve 17
cve 21
seebug 2
exploitpack 1
packetstorm 3
checkpoint_advisories 2
cert 1
exploitdb 1
prion 1
centos 3
gentoo 1
securityvulns
securityvulns
[USN-38-1] Linux kernel vulnerabilities
2004-12-15 00:00:00
Advisory 14/2004: Linux 2.x smbfs multiple remote vulnerabilities
2004-11-18 00:00:00
[UNIX] IPTables Log Integer Underflow &#40;PoC&#41;
2004-11-01 00:00:00
suse
suse
local and remote denial of service in kernel
2004-12-01 14:31:07
local privilege escalation in kernel
2004-12-21 19:35:11
local privilege escalation in kernel
2005-01-21 15:09:06
nessus
nessus
Ubuntu 4.10 : linux-source-2.6.8.1 vulnerabilities (USN-38-1)
2006-01-15 00:00:00
SUSE-SA:2004:044: kernel
2005-02-03 00:00:00
RHEL 2.1 : kernel (RHSA-2004:505)
2004-12-14 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-38-1)
2022-08-26 00:00:00
SLES9: Security update for Linux kernel
2009-10-10 00:00:00
SLES9: Security update for Linux kernel
2009-10-10 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2004-12-15 00:00:00
Linux kernel vulnerabilities
2005-01-14 00:00:00
Linux kernel vulnerabilities
2004-11-19 00:00:00
redhat
redhat
(RHSA-2004:505) Updated kernel packages fix security vulnerability
2004-12-13 00:00:00
(RHSA-2005:043) kernel security update
2005-01-18 00:00:00
(RHSA-2004:549) kernel security update
2004-12-02 00:00:00
debian
debian
[SECURITY] [DSA 1082-1] New Linux kernel 2.4.17 packages fix several vulnerabilities
2006-05-29 19:29:19
[SECURITY] [DSA 1069-1] New Linux kernel 2.4.18 packages fix several vulnerabilities
2006-05-21 02:53:34
[SECURITY] [DSA 1069-1] New Linux kernel 2.4.18 packages fix several vulnerabilities
2006-05-21 17:30:06
osv
osv
kernel-source-2.4.18 - several
2006-05-20 00:00:00
kernel-source-2.4.19 - several vulnerabilities
2006-05-21 00:00:00
kernel-source-2.4.17 - several vulnerabilities
2006-05-29 00:00:00
ubuntucve
ubuntucve
CVE-2004-1191
2005-01-10 00:00:00
CVE-2004-1069
2005-01-10 00:00:00
CVE-2004-0883
2005-01-10 00:00:00
cve
cve
CVE-2004-1069
2005-01-10 05:00:00
CVE-2004-0883
2005-01-10 05:00:00
CVE-2004-0949
2005-01-10 05:00:00
seebug
seebug
Linux Kernel 2.6.x Firewall Logging Rules Remote DoS Exploit
2008-07-07 00:00:00
Linux Kernel 2.6.x IPTables Logging Rules Integer Underflow Vulnerability
2014-07-01 00:00:00
exploitpack
exploitpack
Linux Kernel 2.6.x - IPTables Logging Rules Integer Underflow Remote (PoC)
2004-11-21 00:00:00
packetstorm
packetstorm
isec-0018-igmp.txt
2004-12-30 00:00:00
isec-0021-uselib.txt
2005-01-07 00:00:00
isec-0019-scm.txt
2004-12-30 00:00:00
checkpoint_advisories
checkpoint_advisories
IGMP (CAN-2004-1137)
2005-02-01 00:00:00
Linux Kernel SMB Filesystem smb_receive Transaction2 - Ver2 (CVE-2004-0949)
2014-12-28 00:00:00
cert
cert
SMB filesystem read system call vulnerable to buffer overflow
2005-02-02 00:00:00
exploitdb
exploitdb
Linux Kernel 2.6.x - IPTables Logging Rules Integer Underflow Remote (PoC)
2004-11-21 00:00:00
prion
prion
Design/Logic Flaw
2007-02-15 18:28:00
centos
centos
kernel security update
2005-04-22 21:54:37
kernel security update
2006-02-02 22:07:50
kernel security update
2006-01-19 22:25:06
gentoo
gentoo
Linux Kernel: Multiple information leaks
2004-08-25 00:00:00
JSON
Related for MANDRAKE_MDKSA-2005-022.NASL
securityvulns7suse6nessus38openvas33ubuntu6redhat13debian10osv7ubuntucve17cve21seebug2exploitpack1packetstorm3checkpoint_advisories2cert1exploitdb1prion1centos3gentoo1