127 matches found
CVE-2018-5995
CVE-2018-5995 affects the Linux kernel (up to 4.14.14). The flaw is in pcpu_embed_first_chunk() in mm/percpu.c, which can let a local user read dmesg data (from a pages/cpu printk call) and disclose sensitive kernel addresses. Impact: partial kernel address disclosure with local access. Root caus...
CVE-2018-5953
CVE-2018-5953 concerns the Linux kernel vulnerability where the function swiotlb_print_info (lib/swiotlb.c) in kernels up to 4.14.14 can leak sensitive address information via a software IO TLB printk in dmesg, exploitable by a local attacker. The connected Nessus entries for Unity Linux 20.x (ke...
Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2018-4114)
The remote Oracle Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2018-4114 advisory. - KVM: SVM: Move spec control call after restore of GS Thomas Gleixner CVE-2018-3639 - x86/bugs: Fix the parameters alignment and missing void Konr...
Amazon Linux 2 : kernel (ALAS-2018-956) (Dirty COW) (Spectre)
Stack-based out-of-bounds read via vmcall instruction Linux kernel compiled with the KVM virtualization CONFIGKVM support is vulnerable to an out-of-bounds read access issue. It could occur when emulating vmcall instructions invoked by a guest. A guest user/process could use this flaw to disclose...
EulerOS 2.0 SP2 : kernel (EulerOS-SA-2018-1055)
According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In the Linux kernel 4.12, 3.10, 2.6 and possibly earlier versions a race condition vulnerability exists in the sound system, this can lead to a...
CVE-2018-5750
The acpismbushcadd function in drivers/acpi/sbshc.c in the Linux kernel through 4.14.15 allows local users to obtain sensitive address information by reading dmesg data from an SBS HC printk call...
CVE-2018-5750
The acpismbushcadd function in drivers/acpi/sbshc.c in the Linux kernel through 4.14.15 allows local users to obtain sensitive address information by reading dmesg data from an SBS HC printk call...
CVE-2018-5750
The acpismbushcadd function in drivers/acpi/sbshc.c in the Linux kernel through 4.14.15 allows local users to obtain sensitive address information by reading dmesg data from an SBS HC printk call...
Design/Logic Flaw
kernel/bpf/verifier.c in the Linux kernel through 4.14.8 mishandles statesequal comparisons between the pointer data type and the UNKNOWNVALUE data type, which allows local users to obtain potentially sensitive address information, aka a "pointer leak."...
CVE-2017-17864
kernel/bpf/verifier.c in the Linux kernel through 4.14.8 mishandles statesequal comparisons between the pointer data type and the UNKNOWNVALUE data type, which allows local users to obtain potentially sensitive address information, aka a "pointer leak."...
Ubuntu 16.10 : linux, linux-raspi2 vulnerabilities (USN-3359-1)
It was discovered that the Linux kernel did not properly initialize a Wake- on-Lan data structure. A local attacker could use this to expose sensitive information kernel memory. CVE-2014-9900 Dmitry Vyukov, Andrey Konovalov, Florian Westphal, and Eric Dumazet discovered that the netfiler subsyste...
USN-3345-1: Linux kernel vulnerabilities
USN 3324-1 fixed a vulnerability in the Linux kernel. However, that fix introduced regressions for some Java applications. This update addresses the issue. We apologize for the inconvenience. Roee Hay discovered that the parallel port printer driver in the Linux kernel did not properly bounds che...
CVE-2017-9150
The docheck function in kernel/bpf/verifier.c in the Linux kernel before 4.11.1 does not make the allowptrleaks value available for restricting the output of the printbpfinsn function, which allows local users to obtain sensitive address information via crafted bpf system calls...
CVE-2017-9150
The docheck function in kernel/bpf/verifier.c in the Linux kernel before 4.11.1 does not make the allowptrleaks value available for restricting the output of the printbpfinsn function, which allows local users to obtain sensitive address information via crafted bpf system calls...
CVE-2017-9150
The docheck function in kernel/bpf/verifier.c in the Linux kernel before 4.11.1 does not make the allowptrleaks value available for restricting the output of the printbpfinsn function, which allows local users to obtain sensitive address information via crafted bpf system calls...
CVE-2017-9150
CVE-2017-9150 affects the Linux kernel prior to 4.11.1, where the function do_check in kernel/bpf/verifier.c fails to expose the allow_ptr_leaks setting to constrain the output of print_bpf_insn. This omission enables local attackers to leak sensitive address information through crafted bpf syste...
CVE-2017-9150
The docheck function in kernel/bpf/verifier.c in the Linux kernel before 4.11.1 does not make the allowptrleaks value available for restricting the output of the printbpfinsn function, which allows local users to obtain sensitive address information via crafted bpf system calls...
SUSE SLES11 Security Update : kernel (SUSE-SU-2016:2976-1)
The SUSE Linux Enterprise 11 SP4 kernel was updated to receive various security and bugfixes. For the PowerPC64 a new 'bigmem' flavor has been added to support big Power machines. FATE319026 The following security bugs were fixed : - CVE-2016-7042: The prockeysshow function in security/keys/proc....
CVE-2016-9286
framework/modules/users/controllers/usersController.php in Exponent CMS v2.4.0patch1 does not properly restrict access to user records, which allows remote attackers to read address information, as demonstrated by an address/show/id/1 URI...
Code injection
framework/modules/users/controllers/usersController.php in Exponent CMS v2.4.0patch1 does not properly restrict access to user records, which allows remote attackers to read address information, as demonstrated by an address/show/id/1 URI...