Updated kernel-linus package fixes security vulnerabilities

Updated kernel-linus provides upstream 3.12.26 kernel and fixes the following security issues: Array index error in the aioreadeventsring function in fs/aio.c in the Linux kernel through 3.15.1 allows local users to obtain sensitive information from kernel memory via a large head value...

Updated kernel-tmb package fixes security vulnerabilities

Updated kernel-tmb provides upstream 3.10.51 kernel and fixes the following security issues: Array index error in the aioreadeventsring function in fs/aio.c in the Linux kernel through 3.15.1 allows local users to obtain sensitive information from kernel memory via a large head value CVE-2014-020...

Medium: kernel

Issue Overview: arch/x86/kernel/entry32.S in the Linux kernel through 3.15.1 on 32-bit x86 platforms, when syscall auditing is enabled and the sep CPU feature flag is set, allows local users to cause a denial of service OOPS and system crash via an invalid syscall number, as demonstrated by numbe...

CVE-2014-1371

Array index error in Dock in Apple OS X before 10.9.4 allows attackers to execute arbitrary code or cause a denial of service incorrect function-pointer dereference and application crash by leveraging access to a sandboxed application for sending a message...

Null pointer dereference

Array index error in Dock in Apple OS X before 10.9.4 allows attackers to execute arbitrary code or cause a denial of service incorrect function-pointer dereference and application crash by leveraging access to a sandboxed application for sending a message...

Code injection

Array index error in IOAcceleratorFamily in Apple OS X before 10.9.4 allows attackers to execute arbitrary code via a crafted application...

CVE-2014-1377

CVE-2014-1377 concerns the IOAcceleratorFamily in Apple OS X prior to 10.9.4. The vulnerability is an array indexing/bounds issue in the IOAccelerator driver that could allow an attacker to execute arbitrary code via a crafted application. Apple’s published fix (OS X 10.9.4 Security Update) addre...

CVE-2014-1371

The CVE-2014-1371 issue affects Apple OS X Dock prior to 10.9.4. An unvalidated array index in the Dock’s handling of messages from applications could lead to an invalid function-pointer dereference, enabling arbitrary code execution or a crash when a sandboxed app sends a message. The exploit re...

CVE-2014-1371

Array index error in Dock in Apple OS X before 10.9.4 allows attackers to execute arbitrary code or cause a denial of service incorrect function-pointer dereference and application crash by leveraging access to a sandboxed application for sending a message...

MATLAB R2009b 'dtoa' Implementation Memory Corruption Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/37688/info MATLAB is prone to a memory-corruption vulnerability because the software fails to properly bounds-check data used as an array index. Attackers may exploit this issue to execute arbitrary code within the contex...

rsync 2.3/2.4/2.5 Signed Array Index Remote Code Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/3958/info A vulnerability exists within some versions of rsync. Under some circumstances, a remotely supplied signed value is used as an array index, allowing NULL bytes to be written to arbitrary memory locations...

Mac OS X 10.x 'libc/strtod(3)' Memory Corruption Vulnerability

source: http://www.securityfocus.com/bid/37687/info Mac OS X is prone to a memory-corruption vulnerability because the software fails to properly bounds-check data used as an array index. Attackers may exploit this issue to execute arbitrary code within the context of affected applications. Mac O...

CVE-2014-4616

Array index error in the scanstring function in the json module in Python 2.7 through 3.5 and simplejson before 2.6.1 allows context-dependent attackers to read arbitrary process memory via a negative index value in the idx argument to the rawdecode function...

CVE-2014-0206

Array index error in the aioreadeventsring function in fs/aio.c in the Linux kernel through 3.15.1 allows local users to obtain sensitive information from kernel memory via a large head value...

CVE-2014-0206

Array index error in the aioreadeventsring function in fs/aio.c in the Linux kernel through 3.15.1 allows local users to obtain sensitive information from kernel memory via a large head value...

DEBIAN-CVE-2014-0206

Array index error in the aioreadeventsring function in fs/aio.c in the Linux kernel through 3.15.1 allows local users to obtain sensitive information from kernel memory via a large head value...

CVE-2014-0206

CVE-2014-0206 is an array index error in aio_read_events_ring (fs/aio.c) of the Linux kernel up to version 3.15.1. It enables local users to read sensitive data from kernel memory by supplying a large head value. The provided connected documents confirm the affected file and vulnerability type bu...

CVE-2014-0206

Array index error in the aioreadeventsring function in fs/aio.c in the Linux kernel through 3.15.1 allows local users to obtain sensitive information from kernel memory via a large head value...

qemu: virtio: buffer overrun on incoming migration

Array index error in the virtioload function in hw/virtio/virtio.c in QEMU before 1.7.2 allows remote attackers to execute arbitrary code via a crafted savevm image...

CVE-2013-2602

Multiple array index errors in the MyHeritage SEQueryObject ActiveX control SearchEngineQuery.dll 1.0.2.0 allow remote attackers to execute arbitrary code via the 1 seTokensArray, or 2 seTokensValuesArray parameter to the AddTokens method; 3 seLastNameTokensArray parameter to the AddLastNameToken...