150 matches found
Ubuntu USN-863-1 (qemu-kvm)
The remote host is missing an update to qemu-kvm announced via advisory USN-863-1. OpenVAS Vulnerability Test $Id: ubuntu8631.nasl 7969 2017-12-01 09:23:16Z santu $ $Id: ubuntu8631.nasl 7969 2017-12-01 09:23:16Z santu $ Description: Auto-generated from advisory USN-863-1 qemu-kvm Authors: Thomas...
Ubuntu: Security Advisory (USN-863-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 9.10 : qemu-kvm vulnerability (USN-863-1)
It was discovered that QEMU did not properly setup the virtio networking features available to its guests. A remote attacker could exploit this to crash QEMU guests which use virtio networking on Linux kernels earlier than 2.6.26. Note that Tenable Network Security has extracted the preceding...
USN-863-1: QEMU vulnerability
It was discovered that QEMU did not properly setup the virtio networking features available to its guests. A remote attacker could exploit this to crash QEMU guests which use virtio networking on Linux kernels earlier than 2.6.26...
kernel: cifs: memory overwrite when saving nativeFileSystem field during mount
Buffer overflow in fs/cifs/connect.c in CIFS in the Linux kernel 2.6.29 and earlier allows remote attackers to cause a denial of service crash via a long nativeFileSystem field in a Tree Connect response to an SMB mount request...
Mandriva Update for kernel MDVSA-2008:043 (kernel)
Check for the Version of kernel OpenVAS Vulnerability Test Mandriva Update for kernel MDVSA-2008:043 kernel Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...
CentOS Update for kernel CESA-2008:0129 centos5 i386
Check for the Version of kernel OpenVAS Vulnerability Test CentOS Update for kernel CESA-2008:0129 centos5 i386 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it und...
kernel: Unix sockets kernel panic
The scmdestroy function in net/core/scm.c in the Linux kernel 2.6.27.4, 2.6.26, and earlier makes indirect recursive calls to itself through calls to the fput function, which allows local users to cause a denial of service panic via vectors related to sending an SCMRIGHTS message through a UNIX...
Gentoo Security Advisory GLSA 200403-02 (Kernel)
The remote host is missing updates announced in advisory GLSA 200403-02. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Gentoo Security Advisory GLSA 200401-01 (Kernel)
The remote host is missing updates announced in advisory GLSA 200401-01. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Gentoo Security Advisory GLSA 200403-02 (Kernel)
The remote host is missing updates announced in advisory GLSA 200403-02. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
kernel: dccp: sanity check feature length
Integer overflow in the dccpfeatchange function in net/dccp/feat.c in the Datagram Congestion Control Protocol DCCP subsystem in the Linux kernel 2.6.18, and 2.6.17 through 2.6.20, allows local users to gain privileges via an invalid feature length, which leads to a heap-based buffer overflow...
NASM 2.0 - 'ppscan()' Off-by-One Buffer Overflow
source: https://www.securityfocus.com/bid/29656/info NASM is prone to an off-by-one buffer-overflow vulnerability because the application fails to perform adequate boundary checks on user-supplied data. Successfully exploiting this issue will allow attackers to execute arbitrary code within the...
Debian: Security Advisory (DSA-492)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Code injection
A regression error in the restoreall code path of the 4/4GB split support for non-hugemem Linux kernels on Red Hat Linux Desktop and Enterprise Linux 4 allows local users to cause a denial of service panic via unspecified vectors...
CVE-2006-2932
A regression error in the restoreall code path of the 4/4GB split support for non-hugemem Linux kernels on Red Hat Linux Desktop and Enterprise Linux 4 allows local users to cause a denial of service panic via unspecified vectors...
CVE-2006-2932
A regression error in the restoreall code path of the 4/4GB split support for non-hugemem Linux kernels on Red Hat Linux Desktop and Enterprise Linux 4 allows local users to cause a denial of service panic via unspecified vectors...
security flaw
SCTP conntrack ipconntrackprotosctp.c in netfilter for Linux kernel 2.6.17 before 2.6.17.3 and 2.6.16 before 2.6.16.23 allows remote attackers to cause a denial of service crash via a packet without any chunks, which causes a variable to contain an invalid value that is later used to dereference ...
CVE-2005-3806
CVE-2005-3806 affects Linux kernels 2.4 (up to 2.4.32) and 2.6 (before 2.6.14); IPv6 flow label handling in ip6_flowlabel.c may modify the wrong variable, enabling local attackers to corrupt kernel memory or trigger a crash by freeing non-allocated memory. Connected advisories (Debian DSA-1018-1/...
security flaw
The rosertioctl function in roseroute.c for Radionet Open Source Environment ROSE in Linux 2.6 kernels before 2.6.12, and 2.4 before 2.4.29, does not properly verify the ndigis argument for a new route, which allows attackers to trigger array out-of-bounds errors with a large number of digipeats...