942 matches found
CVE-2016-9962
RunC allowed additional container processes via 'runc exec' to be ptraced by the pid 1 of the container. This allows the main processes of the container, if running as root, to gain access to file-descriptors of these new processes during the initialization and can lead to container escapes or...
CVE-2016-9962
RunC allowed additional container processes via 'runc exec' to be ptraced by the pid 1 of the container. This allows the main processes of the container, if running as root, to gain access to file-descriptors of these new processes during the initialization and can lead to container escapes or...
CVE-2016-9962
RunC allowed additional container processes via 'runc exec' to be ptraced by the pid 1 of the container. This allows the main processes of the container, if running as root, to gain access to file-descriptors of these new processes during the initialization and can lead to container escapes or...
docker: insecure opening of file-descriptor allows privilege escalation
The runc component used by docker exec feature of docker allowed additional container processes to be ptraced by the pid 1 of the container. This allows the main processes of the container, if running as root, to gain low-level access to these new processes during initialization. An attacker can,...
docker: insecure opening of file-descriptor allows privilege escalation
The runc component used by docker exec feature of docker allowed additional container processes to be ptraced by the pid 1 of the container. This allows the main processes of the container, if running as root, to gain low-level access to these new processes during initialization. An attacker can,...
Updated golang package fixes security vulnerability
The net/http package's Request.ParseMultipartForm method starts writing to temporary files once the request body size surpasses the given "maxMemory" limit. It was possible for an attacker to generate a multipart request crafted such that the server ran out of file descriptors...
runC: Privilege escalation
Background RunC is a CLI tool for spawning and running containers according to the OCI specification. Description A vulnerability was discovered in runC that allows additional container processes via ‘runc exec’ to be ptraced by the pid 1 of the container. This allows the main processes of the...
Amazon Linux AMI : docker (ALAS-2017-783)
It was discovered that runC allowed additional container processes via runc exec to be ptraced by the pid 1 of the container. This allows the main processes of the container, if running as root, to gain access to file descriptors of these new processes during the initialization, which can lead to...
kernel: File descriptors passed over unix sockets are not properly accounted
It was found that the Linux kernel did not properly account file descriptors passed over the unix socket against the process limit. A local user could use this flaw to exhaust all available memory on the system...
Fedora 24 : 1:epiphany / webkitgtk4 (2016-f4b5897686)
Update WebKitGTK+ package to 2.14.1. Major changes in 2.14.0 : - Threaded compositor is enabled by default in both X11 and Wayland. - Accelerated compositing is now supported in Wayland. - Clipboard works in Wayland too. - Memory pressure handler always works even when cgroups is not present or n...
openSUSE Security Update : systemd (openSUSE-2016-1194)
This update for systemd fixes the following security issue : - CVE-2016-7796: A zero-length message received over systemd's notification socket could make managerdispatchnotifyfd return an error and, as a side effect, disable the notification handler completely. As the notification socket is...
Security update for systemd (important)
This update for systemd fixes the following security issue: - CVE-2016-7796: A zero-length message received over systemd's notification socket could make managerdispatchnotifyfd return an error and, as a side effect, disable the notification handler completely. As the notification socket is...
SUSE SLED12 / SLES12 Security Update : systemd (SUSE-SU-2016:2476-1)
This update for systemd fixes the following security issue : - CVE-2016-7796: A zero-length message received over systemd's notification socket could make managerdispatchnotifyfd return an error and, as a side effect, disable the notification handler completely. As the notification socket is...
Fedora 23 : webkitgtk4 (2016-d957ffbac1)
This update addresses the following vulnerabilities : - CVE-2016-4622, CVE-2016-4624, CVE-2016-4591, CVE-2016-4590 Additional fixes : - Fix performance in accelerated compositing mode with the modesetting intel driver and DRI3 enabled. - Reduce the amount of file descriptors that the Web Process...
Updated ruby-eventmachine packages fix security vulnerability
EventMachine could be crashed by opening a high number of parallel connections = 1024 towards a server using the EventMachine engine. The crash happens due to the file descriptors overwriting the stack...
[SECURITY] [DLA 549-1] ruby-eventmachine security update
Package : ruby-eventmachine Version : 0.12.10-3+deb7u1 Debian Bug : 678512 696015 EventMachine, a Ruby network engine could be crashed by opening a high number of parallel connections = 1024 towards a server using the EventMachine engine. The crash happens due to the file descriptors overwriting...
DLA-549-1 ruby-eventmachine - security update
Bulletin has no description...
Linux x86 TCP Reverse Shellcode - 75 bytes
Linux x86 TCP Reverse Shellcode - 75 bytes. Shellcode exploit for linx86 platform / Linux x86 TCP Reverse Shellcode 75 bytes Author: sajith Tested on: i686 GNU/Linux Shellcode Length: 75 SLAE - 750 ------------c prog ---poc by sajith shetty---------- include include include include int mainvoid i...
Linux/x86 - TCP Reverse Shellcode (75 bytes)
/ Linux x86 TCP Reverse Shellcode 75 bytes Author: sajith Tested on: i686 GNU/Linux Shellcode Length: 75 SLAE - 750 ------------c prog ---poc by sajith shetty---------- include include include include int mainvoid int sockfiledes; struct sockaddrin sockad; //1 create socket connection //Man page:...
The vulnerability of the SendMail SMTP server software allows a malicious individual to compromise the confidentiality of protected information.
A vulnerability exists in the smcloseonexec function in the conf.c file of the Sendmail software, due to incorrect argument order and the absence of the expected FDCLOEXEC flag. Exploiting this vulnerability allows local users to access file descriptors with high values, by using a specially...