4203 matches found
DEBIAN-CVE-2013-1959
kernel/usernamespace.c in the Linux kernel before 3.8.9 does not have appropriate capability requirements for the uidmap and gidmap files, which allows local users to gain privileges by opening a file within an unprivileged process and then modifying the file within a privileged process...
Design/Logic Flaw
kernel/usernamespace.c in the Linux kernel before 3.8.9 does not have appropriate capability requirements for the uidmap and gidmap files, which allows local users to gain privileges by opening a file within an unprivileged process and then modifying the file within a privileged process...
CVE-2013-1959
kernel/usernamespace.c in the Linux kernel before 3.8.9 does not have appropriate capability requirements for the uidmap and gidmap files, which allows local users to gain privileges by opening a file within an unprivileged process and then modifying the file within a privileged process...
UBUNTU-CVE-2013-1959
kernel/usernamespace.c in the Linux kernel before 3.8.9 does not have appropriate capability requirements for the uidmap and gidmap files, which allows local users to gain privileges by opening a file within an unprivileged process and then modifying the file within a privileged process...
CVE-2013-1956
The createuserns function in kernel/usernamespace.c in the Linux kernel before 3.8.6 does not check whether a chroot directory exists that differs from the namespace root directory, which allows local users to bypass intended filesystem restrictions via a crafted clone system call...
DEBIAN-CVE-2013-1958
The scmcheckcreds function in net/core/scm.c in the Linux kernel before 3.8.6 does not properly enforce capability requirements for controlling the PID value associated with a UNIX domain socket, which allows local users to bypass intended access restrictions by leveraging the time interval durin...
CVE-2013-1958
The scmcheckcreds function in net/core/scm.c in the Linux kernel before 3.8.6 does not properly enforce capability requirements for controlling the PID value associated with a UNIX domain socket, which allows local users to bypass intended access restrictions by leveraging the time interval durin...
CVE-2013-1957
The clonemnt function in fs/namespace.c in the Linux kernel before 3.8.6 does not properly restrict changes to the MNTREADONLY flag, which allows local users to bypass an intended read-only property of a filesystem by leveraging a separate mount namespace...
Design/Logic Flaw
The scmcheckcreds function in net/core/scm.c in the Linux kernel before 3.8.6 does not properly enforce capability requirements for controlling the PID value associated with a UNIX domain socket, which allows local users to bypass intended access restrictions by leveraging the time interval durin...
Design/Logic Flaw
The clonemnt function in fs/namespace.c in the Linux kernel before 3.8.6 does not properly restrict changes to the MNTREADONLY flag, which allows local users to bypass an intended read-only property of a filesystem by leveraging a separate mount namespace...
UBUNTU-CVE-2013-1956
The createuserns function in kernel/usernamespace.c in the Linux kernel before 3.8.6 does not check whether a chroot directory exists that differs from the namespace root directory, which allows local users to bypass intended filesystem restrictions via a crafted clone system call...
CVE-2013-1957
The clonemnt function in fs/namespace.c in the Linux kernel before 3.8.6 does not properly restrict changes to the MNTREADONLY flag, which allows local users to bypass an intended read-only property of a filesystem by leveraging a separate mount namespace...
CVE-2013-1958
The scmcheckcreds function in net/core/scm.c in the Linux kernel before 3.8.6 does not properly enforce capability requirements for controlling the PID value associated with a UNIX domain socket, which allows local users to bypass intended access restrictions by leveraging the time interval durin...
PT-2013-3489 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 3.8.6 Description: The issue allows local users to bypass intended filesystem restrictions. This is due to the create user ns function in kernel/user namespace.c not checking whether a chroot directory exists th...
PT-2013-3491 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 3.8.6 Description: The issue allows local users to bypass intended access restrictions by leveraging a time interval during which a user namespace has been created but a PID namespace has not been created. This ...
PT-2013-3490 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 3.8.6 Description: The issue concerns the clone mnt function in fs/namespace.c, which does not properly restrict changes to the MNT READONLY flag. This allows local users to bypass the intended read-only propert...
Microsoft .NET Framework S.DS.P Namespace Method Buffer Overflow (CVE-2013-0003)
A buffer overflow exists in the System.DirectoryServices.Protocols S.DS.P namespace method in the .NET framework. The vulnerability is due to an error in the validation of the size of objects in memory prior to copying them into an array.An attacker can remotely exploit this vulnerability by...
libxml2: Heap-based buffer overflow by adding new namespace node to an existing nodeset or merging nodesets
Integer overflow in xpath.c in libxml2 2.6.x through 2.6.32 and 2.7.x through 2.7.8, and libxml 1.8.16 and earlier, allows context-dependent attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted XML file that triggers a heap-based buffer overflow when addi...
SuSE 11.2 Security Update : Linux Kernel (SAT Patch Numbers 6338 / 6345 / 6349)
The SUSE Linux Enterprise 11 SP2 kernel was updated to 3.0.31, fixing many bugs and security issues. Various security and bug fixes contained in the Linux 3.0 stable releases 3.0.27 up to 3.0.31 have been included, but are not explicitly listed below. The following notable security issues have be...
MS13-004: Vulnerabilities in .NET Framework Could Allow Elevation of Privilege (2769324)
The remote Windows host is running a version of Microsoft .NET Framework that is affected by multiple vulnerabilities : - An information disclosure vulnerability exists in the way the Windows Forms in .NET Framework handle pointers to unmanaged memory locations. CVE-2013-0001 - A buffer overflow...