2827 matches found
Fedora Core 9 FEDORA-2009-3712 (udev)
The remote host is missing an update to udev announced via advisory FEDORA-2009-3712. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...
CVE-2009-1185
udev before 1.4.1 does not verify whether a NETLINK message originates from kernel space, which allows local users to gain privileges by sending a NETLINK message from user space...
Design/Logic Flaw
udev before 1.4.1 does not verify whether a NETLINK message originates from kernel space, which allows local users to gain privileges by sending a NETLINK message from user space...
CVE-2009-1185
udev before 1.4.1 does not verify whether a NETLINK message originates from kernel space, which allows local users to gain privileges by sending a NETLINK message from user space...
CVE-2009-1185
udev before 1.4.1 does not verify whether a NETLINK message originates from kernel space, which allows local users to gain privileges by sending a NETLINK message from user space...
CVE-2009-1185
CVE-2009-1185 affects udev before 1.4.1, which does not verify NETLINK message origin from kernel space, enabling a local user to gain privileges by sending a crafted NETLINK message. Public references show PoC/exploit activity (e.g., Metasploit module, Exploit-DB entries) and multiple advisories...
Fedora 9 : udev-124-4.fc9 (2009-3712)
udev provides a user-space API and implements a dynamic device directory, providing only the devices present on the system. udev replaces devfs in order to provide greater hot plug functionality. Netlink is a datagram oriented service, used to transfer information between kernel modules and...
Debian DSA-1772-1 : udev - several vulnerabilities
Sebastian Kramer discovered two vulnerabilities in udev, the /dev and hotplug management daemon. - CVE-2009-1185 udev does not check the origin of NETLINK messages, allowing local users to gain root privileges. - CVE-2009-1186 udev suffers from a buffer overflow condition in path encoding,...
RHEL 5 : udev (RHSA-2009:0427)
Updated udev packages that fix one security issue are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. udev provides a user-space API and implements a dynamic device directory, providing only the...
udev: Uncheck origin of NETLINK messages
udev before 1.4.1 does not verify whether a NETLINK message originates from kernel space, which allows local users to gain privileges by sending a NETLINK message from user space...
Important: Red Hat Security Advisory: udev security update
Updated udev packages that fix one security issue are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. udev provides a user-space API and implements a dynamic device directory, providing only the...
[SECURITY] Fedora 10 Update: udev-127-5.fc10
The udev package contains an implementation of devfs in userspace using sysfs and netlink...
[SECURITY] Fedora 9 Update: udev-124-4.fc9
The udev package contains an implementation of devfs in userspace using sysfs and netlink...
USN-758-1: udev vulnerabilities
Sebastian Krahmer discovered that udev did not correctly validate netlink message senders. A local attacker could send specially crafted messages to udev in order to gain root privileges. CVE-2009-1185 Sebastian Krahmer discovered a buffer overflow in the path encoding routines in udev. A local...
udev Netlink Message Validation Local Privilege Escalation Vulnerability
Description The 'udev' Linux application is prone to a local privilege-escalation vulnerability because it fails to properly handle netlink messages. Local attackers may exploit this issue to gain elevated privileges, which may lead to a complete compromise of the system. Versions prior to udev 1...
Ubuntu: Security Advisory (USN-489-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu Update for linux-source-2.6.17 vulnerabilities USN-486-1
Ubuntu Update for Linux kernel vulnerabilities USN-486-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN4861.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for linux-source-2.6.17 vulnerabilities USN-486-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH,...
Ubuntu Update for linux-source-2.6.15 vulnerability USN-489-1
Ubuntu Update for Linux kernel vulnerabilities USN-489-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN4891.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for linux-source-2.6.15 vulnerability USN-489-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH,...
Gentoo Security Advisory GLSA 200611-13 (avahi)
The remote host is missing updates announced in advisory GLSA 200611-13. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Debian Security Advisory DSA 492-1 (iproute)
The remote host is missing an update to iproute announced via advisory DSA 492-1. OpenVAS Vulnerability Test $Id: deb4921.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 492-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...