USN-1812-1: Linux kernel (Quantal HWE) vulnerabilities

Mathias Krause discovered an information leak in the Linux kernel's UDF file system implementation. A local user could exploit this flaw to examine some of the kernel's heap memory. CVE-2012-6548 Mathias Krause discovered an information leak in the Linux kernel's ISO 9660 CDROM file system driver...

USN-1809-1: Linux kernel vulnerabilities

Mathias Krause discovered an information leak in the Linux kernel's UDF file system implementation. A local user could exploit this flaw to examine some of the kernel's heap memory. CVE-2012-6548 Mathias Krause discovered an information leak in the Linux kernel's ISO 9660 CDROM file system driver...

SuSE 11.2 Security Update : hyper-v (SAT Patch Number 6431)

The Hyper-V userland daemon was updated to match the current kernel Hyper-V feature level. It brings key-value-pair storage that can be queried by the kernel via the netlink interface and can pass information out to the Hyper-V hypervisor. The netlink query code was adjusted to only allow the Lin...

SuSE 11 Security Update : openslp (SAT Patch Number 3317)

The openslp daemon could run into an endless loop when receiving specially crafted packets. CVE-2010-3609 Additionally the following non-security bugs were fixed : - 564504: Fix handling of DA answers if both active and passive DA detection is off - 597215: Add configuration options to openSLP:...

CVE-2003-0857

The 1 ipqread and 2 ipulogread functions in iptables allow local users to cause a denial of service by sending spoofed messages as other users to the kernel netlink interface...

Fedora Core 1 : glibc-2.3.2-101.1 (2003-002)

Herbert Xu reported that various applications can accept spoofed messages sent on the kernel netlink interface by other users on the local machine. This could lead to a local denial of service attack. The glibc function getifaddrs uses netlink and could therefore be vulnerable to this issue. The...

RHEL 2.1 / 3 : iproute (RHSA-2003:317)

Updated iproute packages that close a locally-exploitable denial of service vulnerability are now available. The iproute package contains advanced IP routing and network device configuration tools. Herbert Xu reported that iproute can accept spoofed messages sent on the kernel netlink interface b...

RHEL 3 : quagga (RHSA-2003:315)

Updated Quagga packages that close a locally-exploitable denial of service vulnerability are now available. Quagga is an open source implementation of TCP/IP routing software. Herbert Xu reported that Quagga can accept spoofed messages sent on the kernel netlink interface by other users on the...

RHEL 3 : glibc (RHSA-2003:334)

Updated glibc packages that resolve a vulnerability and address several bugs are now available. The glibc packages contain GNU libc, which provides standard system libraries. Herbert Xu reported that various applications can accept spoofed messages sent on the kernel netlink interface by other...

DSA-492 iproute - denial of service

Bulletin has no description...

CVE-2003-0856

iproute 2.4.7 and earlier allows local users to cause a denial of service via spoofed messages as other users to the kernel netlink interface...

CVE-2003-0858

Zebra 0.93b and earlier, and quagga before 0.95, allows local users to cause a denial of service by sending spoofed messages as other users to the kernel netlink interface...

CVE-2003-0859

The getifaddrs function in GNU libc glibc 2.2.4 and earlier allows local users to cause a denial of service by sending spoofed messages as other users to the kernel netlink interface...

Low: Red Hat Security Advisory: : Updated iproute packages fix local security vulnerability

Updated iproute packages that close a locally-exploitable denial of service vulnerability are now available. The iproute package contains advanced IP routing and network device configuration tools. Herbert Xu reported that iproute can accept spoofed messages sent on the kernel netlink interface b...

CVE-2003-0858

Removed by vendor...

CVE-2003-0859

The getifaddrs function in GNU libc glibc 2.2.4 and earlier allows local users to cause a denial of service by sending spoofed messages as other users to the kernel netlink interface...

CVE-2003-0856

iproute 2.4.7 and earlier allows local users to cause a denial of service via spoofed messages as other users to the kernel netlink interface...

CVE-2003-0859

CVE-2003-0859 : Affected GNU libc (glibc) 2.2.4 and earlier allows local users to cause a denial of service by sending spoofed messages to the kernel netlink interface via getifaddrs. Public advisories (Red Hat RHSA-2003:334/325, Fedora, OpenBSD/OpenPKG, SUSE, Slackware, etc.) describe the issue ...

CVE-2003-0856

CVE-2003-0856 affects iproute up to version 2.4.7, where local users could trigger a denial of service by sending spoofed messages through the kernel netlink interface. The issue is a local-privilege-path denial of service caused by unverified netlink messages. Public advisories (Debian DSA-492, ...

Low: Red Hat Security Advisory: quagga security update

Updated Quagga packages that close a locally-exploitable denial of service vulnerability are now available. Quagga is an open source implementation of TCP/IP routing software. Herbert Xu reported that Quagga can accept spoofed messages sent on the kernel netlink interface by other users on the...