UBUNTU-CVE-2017-1000098

The net/http package's Request.ParseMultipartForm method starts writing to temporary files once the request body size surpasses the given "maxMemory" limit. It was possible for an attacker to generate a multipart request crafted such that the server ran out of file descriptors...

CVE-2017-1000098

The net/http package's Request.ParseMultipartForm method starts writing to temporary files once the request body size surpasses the given "maxMemory" limit. It was possible for an attacker to generate a multipart request crafted such that the server ran out of file descriptors...

CVE-2017-1000098

Removed by vendor...

CVE-2017-1000098

The CVE-2017-1000098 case concerns the Go net/http server’s Request.ParseMultipartForm: once the request body exceeds maxMemory, temporary files are written, enabling a crafted multipart request to exhaust file descriptors. Public documents confirm the vulnerability and its impact (file descripto...

The vulnerability of the `timerfd.c` component in the Linux kernel (fs/timerfd.c), which allows a hacker to increase their privileges and cause a service failure

The vulnerability of the timerfd.c component fs/timerfd.c in the Linux operating system is related to the parallel execution of operations on file descriptors. Exploiting this vulnerability can allow an attacker to increase their privileges and cause service interruptions...

UBUNTU-CVE-2017-10661

Race condition in fs/timerfd.c in the Linux kernel before 4.10.15 allows local users to gain privileges or cause a denial of service list corruption or use-after-free via simultaneous file-descriptor operations that leverage improper mightcancel queueing...

CVE-2017-8452

Kibana versions prior to 5.2.1 configured for SSL client access, file descriptors will fail to be cleaned up after certain requests and will accumulate over time until the process crashes...

DEBIAN-CVE-2017-11171

Bad reference counting in the context of accepticeconnection in gsm-xsmp-server.c in old versions of gnome-session up until version 2.29.92 allows a local attacker to establish ICE connections to gnome-session with invalid authentication data an invalid magic cookie. Each failed authentication...

CVE-2017-11171

Bad reference counting in the context of accepticeconnection in gsm-xsmp-server.c in old versions of gnome-session up until version 2.29.92 allows a local attacker to establish ICE connections to gnome-session with invalid authentication data an invalid magic cookie. Each failed authentication...

CVE-2017-11171

Bad reference counting in the context of accepticeconnection in gsm-xsmp-server.c in old versions of gnome-session up until version 2.29.92 allows a local attacker to establish ICE connections to gnome-session with invalid authentication data an invalid magic cookie. Each failed authentication...

Denial Of Service (DoS)

httpolyglot within Kibana is vulnerable to denial of service DoS attacks. These attacks are possible when the application is configured for SSL client access. File descriptors are not cleaned up correctly after some requests, these descriptors accumulate over time and crash the process...

Kibana Denial of Service Vulnerability

Kibana is an open source data visualization plugin for Elasticsearch. A denial of service vulnerability exists in Kibana. When configured for SSL client access, file descriptors fail to clear after certain requests and can accumulate over time, causing the process to crash...

Design/Logic Flaw

Kibana versions prior to 5.2.1 configured for SSL client access, file descriptors will fail to be cleaned up after certain requests and will accumulate over time until the process crashes...

CVE-2017-8452

Kibana versions prior to 5.2.1 configured for SSL client access, file descriptors will fail to be cleaned up after certain requests and will accumulate over time until the process crashes...

CVE-2017-8452

Kibana versions prior to 5.2.1 configured for SSL client access, file descriptors will fail to be cleaned up after certain requests and will accumulate over time until the process crashes...

CVE-2017-8452

Kibana versions prior to 5.2.1 configured for SSL client access, file descriptors will fail to be cleaned up after certain requests and will accumulate over time until the process crashes...

Important: Red Hat Security Advisory: ansible and openshift-ansible security and bug fix update

An update for ansible and openshift-ansible is now available for Red Hat OpenShift Container Platform 3.2, Red Hat OpenShift Container Platform 3.3, Red Hat OpenShift Container Platform 3.4, and Red Hat OpenShift Container Platform 3.5. Red Hat Product Security has rated this update as having a...

File Descriptor Leak

ImageMagick is vulnerable to information disclosure. It is possible for file descriptors to be leaked due to a corrupted file...

Design/Logic Flaw

RunC allowed additional container processes via 'runc exec' to be ptraced by the pid 1 of the container. This allows the main processes of the container, if running as root, to gain access to file-descriptors of these new processes during the initialization and can lead to container escapes or...

UBUNTU-CVE-2016-9962

RunC allowed additional container processes via 'runc exec' to be ptraced by the pid 1 of the container. This allows the main processes of the container, if running as root, to gain access to file-descriptors of these new processes during the initialization and can lead to container escapes or...