security flaw

Zebra 0.93b and earlier, and quagga before 0.95, allows local users to cause a denial of service by sending spoofed messages as other users to the kernel netlink interface...

security flaw

iproute 2.4.7 and earlier allows local users to cause a denial of service via spoofed messages as other users to the kernel netlink interface...

Important: Red Hat Security Advisory: zebra security update

Updated zebra packages that close a locally-exploitable and a remotely-exploitable denial of service vulnerability are now available. Zebra an open source implementation of TCP/IP routing software. Jonny Robertson reported that Zebra can be remotely crashed if a Zebra password has been enabled an...

Low: Red Hat Security Advisory: iproute security update

Updated iproute packages that close a locally-exploitable denial of service vulnerability are now available. The iproute package contains advanced IP routing and network device configuration tools. Herbert Xu reported that iproute can accept spoofed messages sent on the kernel netlink interface b...

CVE-2002-2323

Sun PC NetLink 1.0 through 1.2 does not properly set the access control list ACL for files and directories that use symbolic links and have been restored from backup, which could allow local or remote attackers to bypass intended access restrictions...

PT-2002-3035 · Sun · Sun Pc Netlink

Name of the Vulnerable Software and Affected Versions: Sun PC NetLink versions 1.0 through 1.2 Description: The issue is related to the improper setting of the access control list ACL for files and directories that use symbolic links and have been restored from backup. This could allow local or...

PT-2013-6313 · Linux +5 · Linux Kernel +5

Name of the Vulnerable Software and Affected Versions: Linux kernel versions through 3.14.3 Description: The issue is related to the BPF S ANC NLATTR and BPF S ANC NLATTR NEST extension implementations in the sk run filter function in net/core/filter.c, which do not check whether a certain length...