UBUNTU-CVE-2013-4300

The scmcheckcreds function in net/core/scm.c in the Linux kernel before 3.11 performs a capability check in an incorrect namespace, which allows local users to gain privileges via PID spoofing...

PT-2013-4945 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 3.11 Description: The issue allows local users to gain privileges via PID spoofing due to an incorrect namespace capability check in the scm check creds function. Recommendations: For versions prior to 3.11,...

DEBIAN-CVE-2013-4205

Memory leak in the unshareuserns function in kernel/usernamespace.c in the Linux kernel before 3.10.6 allows local users to cause a denial of service memory consumption via an invalid CLONENEWUSER unshare call...

UBUNTU-CVE-2013-4205

Memory leak in the unshareuserns function in kernel/usernamespace.c in the Linux kernel before 3.10.6 allows local users to cause a denial of service memory consumption via an invalid CLONENEWUSER unshare call...

Updated chromium-browser-stable packages fixes security vulnerabilities

Use-after-free vulnerability in the SVG implementation allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors CVE-2013-2837. Google V8, as used in Chromium before 27.0.1453.93, allows remote attackers to cause a denial of service...

[SECURITY] [DSA 2706-1] chromium-browser security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2706-1 [email protected] http://www.debian.org/security/ Giuseppe Iuculano June 10, 2013 http://www.debian.org/security/faq -...

Debian Security Advisory DSA 2706-1 (chromium-browser - several vulnerabilities)

Several vulnerabilities have been discovered in the Chromium web browser. CVE-2013-2855 The Developer Tools API in Chromium before 27.0.1453.110 allows remote attackers to cause a denial of service memory corruption or possibly have unspecified other impact via unknown vectors. CVE-2013-2856...

DSA-2706-1 chromium-browser - several

Bulletin has no description...

Design/Logic Flaw

Google Chrome before 27.0.1453.110 allows remote attackers to bypass the Same Origin Policy and trigger namespace pollution via unspecified vectors...

CVE-2013-2859

Google Chrome before 27.0.1453.110 allows remote attackers to bypass the Same Origin Policy and trigger namespace pollution via unspecified vectors...

CVE-2013-2859

CVE-2013-2859 affects Chromium/Google Chrome prior to 27.0.1453.110. The issue allows remote attackers to bypass the Same Origin Policy and trigger namespace pollution via unspecified vectors. Debian and Gentoo advisories document this CVE along with other related Chromium/V8 flaws and indicate r...

FreeBSD : chromium -- multiple vulnerabilities (4865d189-cd62-11e2-ae11-00262d5ed8ee)

Google Chrome Releases reports : 242322 Medium CVE-2013-2855: Memory corruption in dev tools API. Credit to 'daniel.zulla'. 242224 High CVE-2013-2856: Use-after-free in input handling. Credit to miaubiz. 240124 High CVE-2013-2857: Use-after-free in image handling. Credit to miaubiz. 239897 High...

Google Chrome < 27.0.1453.110 Multiple Vulnerabilities

Binary data 801017.prm...

CVE-2013-2859

Google Chrome before 27.0.1453.110 allows remote attackers to bypass the Same Origin Policy and trigger namespace pollution via unspecified vectors...

CVE-2013-2859

Removed by vendor...

Google Chrome < 27.0.1453.110 Multiple Vulnerabilities

Binary data 6858.pasl...

Google Chrome < 27.0.1453.110 Multiple Vulnerabilities

The version of Google Chrome installed on the remote host is a version prior to 27.0.1453.110 and is, therefore, affected by the following vulnerabilities : - An error exists related to the renderer and bad handles. CVE-2013-2854 - Errors exist related to dev tools API, Skia GPU handling and SSL...

chromium -- multiple vulnerabilities

Google Chrome Releases reports: 242322 Medium CVE-2013-2855: Memory corruption in dev tools API. Credit to "daniel.zulla". 242224 High CVE-2013-2856: Use-after-free in input handling. Credit to miaubiz. 240124 High CVE-2013-2857: Use-after-free in image handling. Credit to miaubiz. 239897 High...

Linux Kernel 3.8.x - open-time Capability file_ns_capable() Local Privilege Escalation

Linux Kernel 3.8.x - open-time Capability filenscapable Local Privilege Escalation / usernsrootsploit.c by / / Copyright c 2013 Andrew Lutomirski. All rights reserved. / / You may use, modify, and redistribute this code under the GPLv2. / define GNUSOURCE include include include include include...

Linux Kernel &lt; 3.8.x - open-time Capability &#039;file_ns_capable()&#039; Local Privilege Escalation

/ usernsrootsploit.c by / / Copyright c 2013 Andrew Lutomirski. All rights reserved. / / You may use, modify, and redistribute this code under the GPLv2. / define GNUSOURCE include include include include include include include include include include include include include ifndef CLONENEWUSER...