Ubuntu 10.04 LTS : linux-lts-backport-maverick vulnerabilities (USN-1292-1)

A bug was discovered in the XFS filesystem's handling of pathnames. A local attacker could exploit this to crash the system, leading to a denial of service, or gain root privileges. CVE-2011-4077 Nick Bowler discovered the kernel GHASH message digest algorithm incorrectly handled error conditions...

Ubuntu: Security Advisory (USN-1292-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

kernel: ext4: ext4_ext_insert_extent() kernel oops

fs/ext4/extents.c in the Linux kernel before 3.0 does not mark a modified extent as dirty in certain cases of extent splitting, which allows local users to cause a denial of service system crash via vectors involving ext4 umount and mount operations...

Ubuntu Update for linux USN-1286-1

Ubuntu Update for Linux kernel vulnerabilities USN-1286-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN12861.nasl 7964 2017-12-01 07:32:11Z santu $ Ubuntu Update for linux USN-1286-1 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This...

kernel: keys: NULL pointer deref in the user-defined key type

The userupdate function in security/keys/userdefined.c in the Linux kernel 2.6 allows local users to cause a denial of service NULL pointer dereference and kernel oops via vectors related to a user-defined key and "updating a negative key into a fully instantiated key."...

PT-2011-4849 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel version 2.6 Description: The issue is related to the user update function in the Linux kernel, which allows local users to cause a denial of service. This can be achieved through vectors related to a user-defined key and updating...

kernel: corrupted GUID partition tables can cause kernel oops

Heap-based buffer overflow in the isgptvalid function in fs/partitions/efi.c in the Linux kernel 2.6.38 and earlier allows physically proximate attackers to cause a denial of service OOPS or possibly have unspecified other impact via a crafted size of the EFI GUID partition-table header on...

kernel: corrupted GUID partition tables can cause kernel oops

Heap-based buffer overflow in the isgptvalid function in fs/partitions/efi.c in the Linux kernel 2.6.38 and earlier allows physically proximate attackers to cause a denial of service OOPS or possibly have unspecified other impact via a crafted size of the EFI GUID partition-table header on...

kernel: corrupted GUID partition tables can cause kernel oops

Heap-based buffer overflow in the isgptvalid function in fs/partitions/efi.c in the Linux kernel 2.6.38 and earlier allows physically proximate attackers to cause a denial of service OOPS or possibly have unspecified other impact via a crafted size of the EFI GUID partition-table header on...

[PRE-SA-2011-04] Heap overflow in EFI partition handling code of the Linux kernel

PRE-CERT Security Advisory ========================== Advisory: PRE-SA-2011-04 Released on: 10 May 2011 Last updated on: 10 May 2011 Affected product: Linux Kernel 2.4 and 2.6 Impact: information disclosure, denial-of-service Origin: storage devices Credit: Timo Warns PRESENSE Technologies GmbH C...

kernel: NFS: Fix an Oops when truncating a file

The nfswaitonrequest function in fs/nfs/pagelist.c in Linux kernel 2.6.x through 2.6.33-rc5 allows attackers to cause a denial of service Oops via unknown vectors related to truncating a file and an operation that is not interruptible...

kernel: tipc: Fix oops on send prior to entering networked mode

The Transparent Inter-Process Communication TIPC functionality in Linux kernel 2.6.16-rc1 through 2.6.33, and possibly other versions, allows local users to cause a denial of service kernel OOPS by sending datagrams through AFTIPC before entering network mode, which triggers a NULL pointer...

Mandriva Linux Security Advisory : kernel (MDVSA-2009:289)

Some vulnerabilities were discovered and corrected in the Linux 2.6 kernel : The personality subsystem in the Linux kernel before 2.6.31-rc3 has a PERCLEARONSETID setting that does not clear the ADDRCOMPATLAYOUT and MMAPPAGEZERO flags when executing a setuid or setgid program, which makes it easi...

Null pointer dereference

The ddelete function in fs/ecryptfs/inode.c in eCryptfs in the Linux kernel 2.6.31 allows local users to cause a denial of service kernel OOPS and possibly execute arbitrary code via unspecified vectors that cause a "negative dentry" and trigger a NULL pointer dereference, as demonstrated via a...

CVE-2009-2908

CVE-2009-2908 affects the Linux kernel 2.6.31: the d_delete function in fs/ecryptfs/inode.c can lead to a negative dentry and a NULL pointer dereference. Local users can cause a kernel OOPS and potentially execute arbitrary code; exploitation demonstrated via a Mutt temporary directory in an eCry...

Null pointer dereference

The sgbuildindirect function in drivers/scsi/sg.c in Linux kernel 2.6.28-rc1 through 2.6.31-rc8 uses an incorrect variable when accessing an array, which allows local users to cause a denial of service kernel OOPS and NULL pointer dereference, as demonstrated by using xcdroast to duplicate a CD...

kernel: xen: local denial of service

The hypervisorcallback function in Xen, possibly before 3.4.0, as applied to the Linux kernel 2.6.30-rc4, 2.6.18, and probably other versions allows guest user applications to cause a denial of service kernel oops of the guest OS by triggering a segmentation fault in "certain address ranges."...

Linux Kernel < 2.6.26.4 - SCTP Kernel Memory Disclosure

/ cve-2008-4113.c Linux Kernel http://jon.oberheide.org Information: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4113 The sctpgetsockopthmacident function in net/sctp/socket.c in the Stream Control Transmission Protocol sctp implementation in the Linux kernel before 2.6.26.4, when the...

Fedora 8 : bluez-libs-3.35-1.fc8 / bluez-utils-3.35-3.fc8 (2008-6140)

The remote Fedora host is missing one or more security updates : bluez-utils-3.35-3.fc8 : - Thu Jul 10 2008 - Will Woods - 3.35-3 - Re-add hid2hci - Fri Jul 4 2008 - Bastien Nocera - 3.35-2 - Re-add hidd - Thu Jul 3 2008 - Bastien Nocera - 3.35-1 - Update to 3.35 - Fri Jun 27 2008 - Bastien Nocer...

Linux Kernel < 2.6.11.5 BLUETOOTH Stack Local Root Exploit

No description provided by source. / LINUX KERNEL Not tainted VLI EFLAGS: 00010286 2.6.9 EIP is at btsockcreate+0x3d/0x13...