584 matches found
private_address_check ruby gem competition condition vulnerability
privateaddresscheck ruby gem is a Ruby-based checking tool for server-side request forgery attacks. A contention condition vulnerability exists in the privateaddresscheck ruby gem that stems from the program failing to detect the address used by a socket. No detailed vulnerability details are...
Atlassian Floodlight Controller LoadBalancer Module Denial of Service Vulnerability
Atlassian Floodlight Controller is a Floodlight Controller product from Atlassian Australia.LoadBalancer module is one of the load balancing modules. A contention condition vulnerability exists in the LoadBalancer module in Atlassian Floodlight Controller versions prior to 1.2. A remote attacker...
Linux kernel denial of service vulnerability (CNVD-2017-27462)
Linux kernel is an open source operating system. A contention condition vulnerability in the Linux kernel fsnotify implementation allows local attackers to exploit the vulnerability to submit specially crafted requests for denial of service attacks...
SUSE-SU-2017:1479-1 Security update for ceph
This update provides Ceph 10.2.6, which brings fixes and enhancements: This security issue was fixed: - CVE-2016-9579: Do not abort RGW server when accepting a CORS request with short origin. bsc1014986 These non-security issues were fixed: - common: Add rdbmap to ceph-common. bsc1029482 -...
Linux kernel competitive conditions vulnerability (CNVD-2016-04425)
The Linux kernel is the kernel used by the operating system Linux, released by the Linux Foundation in the United States. A contention condition vulnerability exists in the 'vopioctl' function in the drivers/misc/mic/vop/vopvringh.c file in Linux kernel 4.6 and earlier. A local attacker can explo...
kernel security and bug fix update
3.10.0-327.18.2.OL7 - Oracle Linux certificates Alexey Petrenko 3.10.0-327.18.2 - lib keys: Fix ASN.1 indefinite length object parsing David Howells 1308814 1308815 CVE-2016-0758 3.10.0-327.18.1 - scsi bnx2fc: Fix FCP RSP residual parsing Maurizio Lombardi 1322279 1306342 - mm madvise: fix...
Linux kernel Advanced Linux Sound Architecture Framework Competitive Conditions Vulnerability
Linux kernel is an open source operating system. A contention condition vulnerability exists in timer ioctls, the Advanced Linux Sound Architecture framework for Linux kernel, which can be exploited by a local attacker to cause the system to hang, resulting in a denial-of-service attack...
Linux kernel Advanced Linux Sound Architecture Framework Competitive Conditions Vulnerability (CNVD-2016-01975)
Linux kernel is an open source operating system. A contention condition vulnerability exists in timer ioctls, the Advanced Linux Sound Architecture framework for Linux kernel, which can be exploited by a local attacker to cause the system to hang, resulting in a denial-of-service attack...
Scientific Linux Security Update : kernel on SL7.x x86_64 (20160216)
It was found that the Linux kernel's keys subsystem did not correctly garbage collect uninstantiated keyrings. A local attacker could use this flaw to crash the system or, potentially, escalate their privileges on the system. CVE-2015-7872, Important - A flaw was found in the way the Linux kernel...
OpenSSL Competitive Conditional Denial of Service Vulnerability
OpenSSL is an open source implementation of SSL for strong encryption of network communications. A security vulnerability exists in OpenSSL, which can be exploited by a remote attacker to send a special PSK identity that triggers a contention condition and then triggers two releases of memory,...
IBM System Networking Switch Center Contention Condition Vulnerability
IBM System Networking Switch Center is a suite of applications used to remotely monitor and manage Ethernet converged switches from IBM USA, which was acquired by Lenovo of China. A contention condition vulnerability exists in IBM System Networking Switch Center versions prior to 7.3.1.5 and Leno...
CentOS Update for kernel CESA-2015:1042 centos5
Check the version of kernel SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.882189";...
CentOS 5 : kernel (CESA-2015:1042)
Updated kernel packages that fix one security issue and several bugs are now available for Red Hat Enterprise Linux 5. Red Hat Product Security has rated this update as having Important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating,...
RHEL 5 : kernel (RHSA-2015:1042)
Updated kernel packages that fix one security issue and several bugs are now available for Red Hat Enterprise Linux 5. Red Hat Product Security has rated this update as having Important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating,...
Important: Red Hat Security Advisory: kernel-rt security, bug fix, and enhancement update
Updated kernel-rt packages that fix one security issue, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Important security impact. A Common Vulnerability Scoring System CVSS base score, which giv...
Apple iOS setreuid Call Denial of Service Vulnerability
Apple iOS is the latest operating system that runs on Apple's iPhone and iPod touch devices. A contention condition error in the Apple iOS kernel setreuid system call allows local attackers to exploit the vulnerability to crash the system...
Red Hat JBoss Weld Competitive Conditions Information Disclosure Vulnerability
Red Hat JBoss Weld is a Java EE 6 platform in the CDI Contexts and Dependency Injection, context and dependency injection standard implementation , which provides the Java framework for standard dependency injection DI and component lifecycle management and other functions . A contention conditio...
Linux Kernel 'fs/fhandle.c' Local Contention Condition Vulnerability
Linux is an open source computer operating system kernel. Linux Kernel 'fs/fhandle.c' has a local competitive condition vulnerability that can be exploited by a local attacker to obtain sensitive information...
Puppet Server Contention Condition Vulnerability
Puppet is IT automation software that helps system administrators manage their infrastructure. A contention condition vulnerability exists in Puppet Server 0.2.0 that allows local users to obtain sensitive information by accessing the package installation or upgrade service...
openSUSE Security Update : java-1_6_0-openjdk (openSUSE-SU-2013:0777-1)
java-160-openjdk was updated to 1.12.5 bnc817157 - Security fixes - S6657673, CVE-2013-1518: Issues with JAXP - S7200507: Refactor Introspector internals - S8000724, CVE-2013-2417: Improve networking serialization - S8001031, CVE-2013-2419: Better font processing - S8001040, CVE-2013-1537: Rework...