DEBIAN-CVE-2016-1683

numbers.c in libxslt before 1.1.29, as used in Google Chrome before 51.0.2704.63, mishandles namespace nodes, which allows remote attackers to cause a denial of service out-of-bounds heap memory access or possibly have unspecified other impact via a crafted document...

CVE-2016-1683

numbers.c in libxslt before 1.1.29, as used in Google Chrome before 51.0.2704.63, mishandles namespace nodes, which allows remote attackers to cause a denial of service out-of-bounds heap memory access or possibly have unspecified other impact via a crafted document...

CVE-2016-1683

numbers.c in libxslt before 1.1.29, as used in Google Chrome before 51.0.2704.63, mishandles namespace nodes, which allows remote attackers to cause a denial of service out-of-bounds heap memory access or possibly have unspecified other impact via a crafted document...

chromium-browser: out-of-bounds access in libxslt

numbers.c in libxslt before 1.1.29, as used in Google Chrome before 51.0.2704.63, mishandles namespace nodes, which allows remote attackers to cause a denial of service out-of-bounds heap memory access or possibly have unspecified other impact via a crafted document...

UBUNTU-CVE-2016-1683

numbers.c in libxslt before 1.1.29, as used in Google Chrome before 51.0.2704.63, mishandles namespace nodes, which allows remote attackers to cause a denial of service out-of-bounds heap memory access or possibly have unspecified other impact via a crafted document...

CVE-2016-4805

Use-after-free vulnerability in drivers/net/ppp/pppgeneric.c in the Linux kernel before 4.5.2 allows local users to cause a denial of service memory corruption and system crash, or spinlock or possibly have unspecified other impact by removing a network namespace, related to the...

CVE-2016-4805

Use-after-free vulnerability in drivers/net/ppp/pppgeneric.c in the Linux kernel before 4.5.2 allows local users to cause a denial of service memory corruption and system crash, or spinlock or possibly have unspecified other impact by removing a network namespace, related to the...

DEBIAN-CVE-2016-4805

Use-after-free vulnerability in drivers/net/ppp/pppgeneric.c in the Linux kernel before 4.5.2 allows local users to cause a denial of service memory corruption and system crash, or spinlock or possibly have unspecified other impact by removing a network namespace, related to the...

Design/Logic Flaw

Use-after-free vulnerability in drivers/net/ppp/pppgeneric.c in the Linux kernel before 4.5.2 allows local users to cause a denial of service memory corruption and system crash, or spinlock or possibly have unspecified other impact by removing a network namespace, related to the...

CVE-2016-4805

Use-after-free vulnerability in drivers/net/ppp/pppgeneric.c in the Linux kernel before 4.5.2 allows local users to cause a denial of service memory corruption and system crash, or spinlock or possibly have unspecified other impact by removing a network namespace, related to the...

UBUNTU-CVE-2016-4805

Use-after-free vulnerability in drivers/net/ppp/pppgeneric.c in the Linux kernel before 4.5.2 allows local users to cause a denial of service memory corruption and system crash, or spinlock or possibly have unspecified other impact by removing a network namespace, related to the...

DEBIAN-CVE-2016-1835

Use-after-free vulnerability in the xmlSAX2AttributeNs function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2 and OS X before 10.11.5, allows remote attackers to cause a denial of service via a crafted XML document...

Linux kernel memory misreference vulnerability (CNVD-2016-03350)

The Linux kernel is the kernel used by the operating system Linux, released by the Linux Foundation in the United States. A memory misreference vulnerability exists in the Linux kernel version 4.4 in the pppunregisterchannel, which originates when a program deletes the network namespace and the...

3: logs from a deleted namespace can be revealed if a new namespace with the same name is created

It was found that OpenShift Enterprise would disclose log file contents from reclaimed namespaces. An attacker could create a new namespace to access log files present in a previously deleted namespace using the same name...

Linux kernel denial of service vulnerability (CNVD-2016-02796)

The Linux kernel is the kernel used by the operating system Linux, released by the Linux Foundation in the United States. A denial of service vulnerability exists in the 'collectmounts' function in the fs/namespace.c file in versions of Linux kernel prior to 4.0.5, which stems from a program's...

Linux kernel fs_pin implementation denial of service vulnerability

The Linux kernel is the kernel used by the operating system Linux, released by the Linux Foundation in the United States. A denial of service vulnerability exists in the fspin implementation of Linux kernel versions prior to 4.0.5, which arises from the program's failure to ensure internal...

Linux kernel arbitrary file read vulnerability

The Linux kernel is the kernel used by the operating system Linux, released by the Linux Foundation in the United States. An arbitrary file read vulnerability exists in the fs/namespace.c file in versions of Linux kernel prior to 4.0.2, which stems from a program that does not properly support...

DEBIAN-CVE-2016-2853

The aufs module for the Linux kernel 3.x and 4.x does not properly restrict the mount namespace, which allows local users to gain privileges by mounting an aufs filesystem on top of a FUSE filesystem, and then executing a crafted setuid program...

CVE-2016-2853

The aufs module for the Linux kernel 3.x and 4.x does not properly restrict the mount namespace, which allows local users to gain privileges by mounting an aufs filesystem on top of a FUSE filesystem, and then executing a crafted setuid program...

DEBIAN-CVE-2016-1576

The overlayfs implementation in the Linux kernel through 4.5.2 does not properly restrict the mount namespace, which allows local users to gain privileges by mounting an overlayfs filesystem on top of a FUSE filesystem, and then executing a crafted setuid program...