2417 matches found
Code injection
The Serial Attached SCSI SAS implementation in the Linux kernel through 4.15.9 mishandles a mutex within libsas, which allows local users to cause a denial of service deadlock by triggering certain error-handling code...
UBUNTU-CVE-2017-18232
The Serial Attached SCSI SAS implementation in the Linux kernel through 4.15.9 mishandles a mutex within libsas, which allows local users to cause a denial of service deadlock by triggering certain error-handling code...
CVE-2017-18232
The Serial Attached SCSI SAS implementation in the Linux kernel through 4.15.9 mishandles a mutex within libsas, which allows local users to cause a denial of service deadlock by triggering certain error-handling code...
CVE-2017-18232
The Serial Attached SCSI SAS implementation in the Linux kernel through 4.15.9 mishandles a mutex within libsas, which allows local users to cause a denial of service deadlock by triggering certain error-handling code...
DEBIAN-CVE-2017-18232
The Serial Attached SCSI SAS implementation in the Linux kernel through 4.15.9 mishandles a mutex within libsas, which allows local users to cause a denial of service deadlock by triggering certain error-handling code...
CVE-2017-18232
The Serial Attached SCSI SAS implementation in the Linux kernel through 4.15.9 mishandles a mutex within libsas, which allows local users to cause a denial of service deadlock by triggering certain error-handling code...
CVE-2017-18232
CVE-2017-18232 affects the Linux kernel SAS (libsas): a mutex mishandling in the SAS implementation up to kernel 4.15.9 allows local users to cause a denial of service (deadlock) by triggering certain error-handling code. Connected advisories (Unity Linux UTSA-2026-…) confirm a kernel security up...
Linux kernel denial of service vulnerability (CNVD-2018-06401)
Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. A security vulnerability exists in the Serial Attached SCSI SAS implementation in Linux kernel 4.15.9 and earlier versions, which stems from a program's failure to...
Linux kernel denial of service vulnerability (CNVD-2018-04627)
Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. A security vulnerability exists in the fs/ocfs2/cluster/nodemanager.c file in the Linux kernel, which arises from a program failing to use a requested mutex.A local...
CVE-2017-18216
In fs/ocfs2/cluster/nodemanager.c in the Linux kernel before 4.15, local users can cause a denial of service NULL pointer dereference and BUG because a required mutex is not used...
DEBIAN-CVE-2017-18216
In fs/ocfs2/cluster/nodemanager.c in the Linux kernel before 4.15, local users can cause a denial of service NULL pointer dereference and BUG because a required mutex is not used...
Null pointer dereference
In fs/ocfs2/cluster/nodemanager.c in the Linux kernel before 4.15, local users can cause a denial of service NULL pointer dereference and BUG because a required mutex is not used...
CVE-2017-18216
In fs/ocfs2/cluster/nodemanager.c in the Linux kernel before 4.15, local users can cause a denial of service NULL pointer dereference and BUG because a required mutex is not used...
CVE-2017-18216
In fs/ocfs2/cluster/nodemanager.c in the Linux kernel before 4.15, local users can cause a denial of service NULL pointer dereference and BUG because a required mutex is not used...
UBUNTU-CVE-2017-18216
In fs/ocfs2/cluster/nodemanager.c in the Linux kernel before 4.15, local users can cause a denial of service NULL pointer dereference and BUG because a required mutex is not used...
CentOS 7 : sssd (CESA-2017:3379)
An update for sssd is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the C...
Scientific Linux Security Update : sssd on SL7.x x86_64 (20171205)
Security Fixes : - It was found that sssd's sysdbsearchuserbyupnres function did not sanitize requests when querying its local cache and was vulnerable to injection. In a centralized login environment, if a password hash was locally cached for a given user, an authenticated attacker could use thi...
CVE-2017-9708
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, in the camera driver, the function "msmoispowerdown" is called without a mutex and a race condition can occur in variable "regptr" of sub function "msmcameraconfigsinglevreg"...
Race condition
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, in the camera driver, the function "msmoispowerdown" is called without a mutex and a race condition can occur in variable "regptr" of sub function "msmcameraconfigsinglevreg"...
Threat Round-up for June 16 - June 23
Today, Talos is publishing a glimpse into the most prevalent threats we've observed between June 16 and June 23. As with previous round-ups, this post isn't meant to be an in-depth analysis. Instead, this post will summarize the threats we've observed by highlighting key behavior characteristics,...