Red Hat Enterprise Linux kernel-2.4.21 does not perform adequate checking of eflags when in 32-bit ptrace emulation mode

Overview Red Hat Enterprise Linux kernel prior to version 2.4.21 does not perform adequate checking of eflags when in 32-bit ptrace emulation mode. This could allow a local user to gain elevated or root privileges. Description The Linux kernel handles the basic functionality of the operating...

[SECURITY] [DSA 427-1] New Linux 2.4.17 packages fix local root exploit (mips+mipsel)

-------------------------------------------------------------------------- Debian Security Advisory DSA 427-1 [email protected] http://www.debian.org/security/ Martin Schulze January 19th, 2004 http://www.debian.org/security/faq -...

DSA-427 linux-kernel-2.4.17-mips+mipsel - missing boundary check

Bulletin has no description...

[SECURITY] [DSA 417-2] New Linux 2.4.18 packages fix local root exploit (alpha)

-------------------------------------------------------------------------- Debian Security Advisory DSA 417-2 [email protected] http://www.debian.org/security/ Martin Schulze January 9th, 2004 http://www.debian.org/security/faq -...

[SECURITY] [DSA 417-2] New Linux 2.4.18 packages fix local root exploit (alpha)

-------------------------------------------------------------------------- Debian Security Advisory DSA 417-2 [email protected] http://www.debian.org/security/ Martin Schulze January 9th, 2004 http://www.debian.org/security/faq -...

Important: Red Hat Security Advisory: kernel security update

Updated kernel packages are now available that fix a security vulnerability which may allow local users to gain root privileges. The Linux kernel handles the basic functions of the operating system. Paul Starzetz discovered a flaw in bounds checking in mremap in the Linux kernel versions 2.4.23 a...

[SECURITY] [DSA 417-1] New Linux 2.4.18 packages fix local root exploit (powerpc+alpha)

-------------------------------------------------------------------------- Debian Security Advisory DSA 417-1 [email protected] http://www.debian.org/security/ Martin Schulze January 7th, 2004 http://www.debian.org/security/faq -...

Kernel security update

New kernels are available for Slackware 9.0, 9.1 and -current. The 9.1 and -current kernels have been upgraded to 2.4.24, and a fix has been backported to the 2.4.21 kernels in Slackware 9.0 to fix a bounds-checking problem in the kernel's mremap call which could be used by a local attacker to ga...

[SECURITY] [DSA 413-1] New Linux 2.4.18 packages fix locate root exploit

-------------------------------------------------------------------------- Debian Security Advisory DSA 413-1 [email protected] http://www.debian.org/security/ Martin Schulze January 6th, 2004 http://www.debian.org/security/faq -...

DSA-413 linux-kernel-2.4.18 - missing boundary check

Bulletin has no description...

Important: Red Hat Security Advisory: kernel security update

Updated kernel packages are now available that fix a security vulnerability which may allow local users to gain root privileges. The Linux kernel handles the basic functions of the operating system. Paul Starzetz discovered a flaw in bounds checking in mremap in the Linux kernel versions 2.4.23 a...

Important: Red Hat Security Advisory: kernel security update

Updated kernel packages are now available that fix a security vulnerability which may allow local users to gain root privileges. The Linux kernel handles the basic functions of the operating system. Paul Starzetz discovered a flaw in bounds checking in mremap in the Linux kernel versions 2.4.23 a...

Important: Red Hat Security Advisory: : Updated kernel resolves security vulnerability

Updated kernel packages are now available that fix a security vulnerability which may allow local users to gain root privileges. The Linux kernel handles the basic functions of the operating system. Paul Starzetz discovered a flaw in bounds checking in mremap in the Linux kernel versions 2.4.23 a...

YaSoft Switch Off 2.3 - swnet.dll Remote Buffer Overflow

YaSoft Switch Off 2.3 - swnet.dll Remote Buffer Overflow // source: https://www.securityfocus.com/bid/9340/info A vulnerability has been identified in the YaSoft Switch Off software package when handling message requests. The buffer overrun condition exists in the 'swnet.dll' module of the softwa...

YaSoft Switch Off 2.3 - 'swnet.dll' Remote Buffer Overflow

// source: https://www.securityfocus.com/bid/9340/info A vulnerability has been identified in the YaSoft Switch Off software package when handling message requests. The buffer overrun condition exists in the 'swnet.dll' module of the software due to insufficient bounds checking performed by the...

Apache Httpd < 1.3.31 : mod_digest nonce checking

moddigest does not properly verify the nonce of a client response by using a AuthNonce secret. This could allow a malicious user who is able to sniff network traffic to conduct a replay attack against a website using Digest protection. Note that moddigest implements an older version of the MD5...

Important: Red Hat Security Advisory: kernel security update

Updated kernel packages are now available that fix a security vulnerability allowing local users to gain root privileges. The Linux kernel handles the basic functions of the operating system. A flaw in bounds checking in the dobrk function in the Linux kernel versions 2.4.22 and previous can allo...

GNU CFEngine 2.0.x - CFServD Transaction Packet Buffer Overrun (2)

GNU CFEngine 2.0.x - CFServD Transaction Packet Buffer Overrun 2 // source: https://www.securityfocus.com/bid/8699/info cfengine is prone to a stack-based buffer overrun vulnerability. This issue may be exploited by remote attackers who can send malicious transaction packets to cfservd. This issu...

GNU CFEngine 2.0.x - CFServD Transaction Packet Buffer Overrun (2)

// source: https://www.securityfocus.com/bid/8699/info cfengine is prone to a stack-based buffer overrun vulnerability. This issue may be exploited by remote attackers who can send malicious transaction packets to cfservd. This issue is due to insufficient bounds checking of data that is read in...

IA WebMail Server 3.03.1 - GET Buffer Overrun

IA WebMail Server 3.03.1 - GET Buffer Overrun source: https://www.securityfocus.com/bid/8965/info IA WebMail Server is said to be prone to a remote buffer overrun that could allow an attacker to execute arbitrary code. The problem occurs due to insufficient bounds checking when handling GET...