105 matches found
Ubuntu: Security Advisory (USN-2332-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 12.04 LTS : linux-lts-trusty vulnerabilities (USN-2336-1)
A flaw was discovered in the Linux kernel virtual machine's kvm validation of interrupt requests irq. A guest OS user could exploit this flaw to cause a denial of service host OS crash. CVE-2014-0155 Andy Lutomirski discovered a flaw in the authorization of netlink socket operations when a socket...
Ubuntu 14.04 LTS : Linux kernel vulnerabilities (USN-2337-1)
The remote Ubuntu 14.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-2337-1 advisory. A flaw was discovered in the Linux kernel virtual machine's kvm validation of interrupt requests irq. A guest OS user could exploit this flaw to cause a...
RHEL 6 : kernel-rt (RHSA-2014:1083)
The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2014:1083 advisory. The kernel-rt packages contain the Linux kernel, the core of any Linux operating system. A NULL pointer dereference flaw was found in the wa...
openSUSE Security Update : kernel (openSUSE-SU-2014:0985-1)
The Linux kernel was updated to fix security issues and bugs : Security issues fixed: CVE-2014-4699: The Linux kernel on Intel processors did not properly restrict use of a non-canonical value for the saved RIP address in the case of a system call that does not use IRET, which allowed local users...
kernel: security and bugfix update (important)
The Linux kernel was updated to fix security issues and bugs: Security issues fixed: CVE-2014-4699: The Linux kernel on Intel processors did not properly restrict use of a non-canonical value for the saved RIP address in the case of a system call that does not use IRET, which allowed local users ...
openSUSE: Security Advisory for kernel (openSUSE-SU-2014:0957-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
kernel: security and bugfix update (important)
The Linux Kernel was updated to fix various bugs and security issues. CVE-2014-4699: The Linux kernel on Intel processors did not properly restrict use of a non-canonical value for the saved RIP address in the case of a system call that does not use IRET, which allowed local users to leverage a...
CVE-2014-4655
The sndctlelemadd function in sound/core/control.c in the ALSA control implementation in the Linux kernel before 3.15.2 does not properly maintain the userctlcount value, which allows local users to cause a denial of service integer overflow and limit bypass by leveraging /dev/snd/controlCX acces...
BELL-CVE-2014-4655 CVE-2014-4655 does not affect BellSoft software
Bulletin has no description...
CVE-2014-4655
CVE-2014-4655 affects the Linux kernel ALSA control path: snd_ctl_elem_add in sound/core/control.c does not correctly maintain user_ctl_count, enabling a local DoS via a large number of SNDRV_CTL_IOCTL_ELEM_REPLACE calls to /dev/snd/controlCX. Affected: Linux kernel prior to 3.15.2 (ALSA control ...
CVE-2014-4655
The sndctlelemadd function in sound/core/control.c in the ALSA control implementation in the Linux kernel before 3.15.2 does not properly maintain the userctlcount value, which allows local users to cause a denial of service integer overflow and limit bypass by leveraging /dev/snd/controlCX acces...
Oracle Linux 5 : kernel (ELSA-2011-0303)
The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2011-0303 advisory. - net fix unix socket local dos Neil Horman 656759 656760 CVE-2010-4249 - net core: clear allocs for privileged ethtool actions Jiri Pirko 672432 67243...
Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2011-2014)
The remote Oracle Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2011-2014 advisory. - fs/partitions: Validate mapcount in Mac partition tables CVE-2011-1010 - nfs4: Ensure that ACL pages sent over NFS were not allocated from the sl...
Oracle Linux 4 : kernel (ELSA-2011-0263)
From Red Hat Security Advisory 2011:0263 : Updated kernel packages that fix three security issues, hundreds of bugs, and add numerous enhancements are now available as part of the ongoing support and maintenance of Red Hat Enterprise Linux version 4. This is the ninth regular update. The Red Hat...
CVE-2012-4655
The CVE-2012-4655 issue affects Cisco Secure Desktop’s WebLaunch downloader: binaries received by the downloader process are not properly validated, allowing remote arbitrary code execution via ActiveX or Java components. Affected product/versions include Cisco Secure Desktop before 3.6.6020 (per...
KLA10105 ACE vulnerability in CISCO Secure Desktop
Improperly downloaded binaries validation was found in Cisco Secure Desktop. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited from the network at a point related to WebLaunch. Original advisories Cisco bulletin Related products...
CentOS Update for kernel CESA-2011:0303 centos5 x86_64
Check for the Version of kernel OpenVAS Vulnerability Test CentOS Update for kernel CESA-2011:0303 centos5 x8664 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...
CentOS Update for kernel CESA-2011:0303 centos5 x86_64
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
VMSA-2011-0012 : VMware ESXi and ESX updates to third-party libraries and ESX Service Console
a. ESX third-party update for Service Console kernel This update takes the console OS kernel package to kernel-2.6.18-238.9.1 which resolves multiple security issues. The Common Vulnerabilities and Exposures project cve.mitre.org has assigned the names CVE-2010-1083, CVE-2010-2492, CVE-2010-2798,...