Lucene search
K

2015 matches found

RedHat Linux
RedHat Linux
added 2019/11/05 8:56 p.m.4 views

kernel: use-after-free in SMB2_write function in fs/cifs/smb2pdu.c

An flaw was discovered in the Linux kernel's CIFS client implementation. While issuing an SMB2write, a value can be used after it was intended to be freed when CIFS function tracing is enabled. Even though the data is used after being freed, using it to for privilege escalation does not seem...

3.3CVSS7.1AI score0.00435EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2019/10/21 12:0 a.m.19 views

Debian DLA-1965-1 : nfs-utils security update

In the nfs-utils package, providing support files for Network File System NFS including the rpc.statd daemon, the directory /var/lib/nfs is owned by statd:nogroup. This directory contains files owned and managed by root. If statd is compromised, it can therefore trick processes running with root...

10CVSS7.3AI score0.01518EPSS
Exploits0References3
Debian
Debian
added 2019/10/19 2:42 p.m.123 views

[SECURITY] [DLA 1965-1] nfs-utils security update

Package : nfs-utils Version : 1.2.8-9+deb8u1 CVE ID : CVE-2019-3689 Debian Bug : 940848 In the nfs-utils package, providing support files for Network File System NFS including the rpc.statd daemon, the directory /var/lib/nfs is owned by statd:nogroup. This directory contains files owned and manag...

10CVSS7.4AI score0.01518EPSS
Exploits0
OSV
OSV
added 2019/09/19 2:15 p.m.1 views

DEBIAN-CVE-2019-3689

The nfs-utils package in SUSE Linux Enterprise Server 12 before and including version 1.3.0-34.18.1 and in SUSE Linux Enterprise Server 15 before and including version 2.1.1-6.10.2 the directory /var/lib/nfs is owned by statd:nogroup. This directory contains files owned and managed by root. If...

9.8CVSS7.5AI score0.01518EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2019/09/12 10:35 a.m.5 views

kernel: nfs: use-after-free in svc_process_common()

A flaw was found in the Linux kernel's NFS41+ subsystem. NFS41+ shares mounted in different network namespaces at the same time can make bcsvcprocess use wrong back-channel IDs and cause a use-after-free vulnerability. Thus a malicious container user can cause a host kernel memory corruption and ...

8CVSS7AI score0.01455EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/09/11 9:23 a.m.8 views

kernel: nfs: NULL pointer dereference due to an anomalized NFS message sequence

A flaw was found in the Linux kernel's NFS implementation. An attacker, who is able to mount an exported NFS filesystem, is able to trigger a null pointer dereference by using an invalid NFS sequence. This can panic the machine and deny access to the NFS server. Any outstanding disk writes to the...

7.5CVSS7AI score0.02779EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/09/11 9:23 a.m.7 views

kernel: nfs: use-after-free in svc_process_common()

A flaw was found in the Linux kernel's NFS41+ subsystem. NFS41+ shares mounted in different network namespaces at the same time can make bcsvcprocess use wrong back-channel IDs and cause a use-after-free vulnerability. Thus a malicious container user can cause a host kernel memory corruption and ...

8CVSS7AI score0.01455EPSS
Exploits0References4
OSV
OSV
added 2019/07/31 1:15 p.m.1 views

DEBIAN-CVE-2019-14202

An issue was discovered in Das U-Boot through 2019.07. There is a stack-based buffer overflow in this nfshandler reply helper function: nfsreadlinkreply...

9.8CVSS9.5AI score0.02488EPSS
Exploits0References1
OSV
OSV
added 2019/07/31 1:15 p.m.1 views

DEBIAN-CVE-2019-14196

An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with a failed length check at nfslookupreply...

9.8CVSS9.2AI score0.02196EPSS
Exploits0References1
OSV
OSV
added 2019/07/31 1:15 p.m.0 views

DEBIAN-CVE-2019-14200

An issue was discovered in Das U-Boot through 2019.07. There is a stack-based buffer overflow in this nfshandler reply helper function: rpclookupreply...

9.8CVSS9.7AI score0.02488EPSS
Exploits0References1
OSV
OSV
added 2019/07/31 1:15 p.m.0 views

DEBIAN-CVE-2019-14201

An issue was discovered in Das U-Boot through 2019.07. There is a stack-based buffer overflow in this nfshandler reply helper function: nfslookupreply...

9.8CVSS9.7AI score0.02488EPSS
Exploits0References1
OSV
OSV
added 2019/07/31 1:15 p.m.2 views

DEBIAN-CVE-2019-14195

An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with unvalidated length at nfsreadlinkreply in the "else" block after calculating the new path length...

9.8CVSS9.4AI score0.0235EPSS
Exploits0References1
OSV
OSV
added 2019/07/31 1:15 p.m.1 views

DEBIAN-CVE-2019-14197

An issue was discovered in Das U-Boot through 2019.07. There is a read of out-of-bounds data at nfsreadreply...

9.1CVSS9.3AI score0.02368EPSS
Exploits0References1
OSV
OSV
added 2019/07/31 1:15 p.m.1 views

UBUNTU-CVE-2019-14203

An issue was discovered in Das U-Boot through 2019.07. There is a stack-based buffer overflow in this nfshandler reply helper function: nfsmountreply...

9.8CVSS7.7AI score0.02488EPSS
Exploits0References4
OSV
OSV
added 2019/07/31 1:15 p.m.1 views

UBUNTU-CVE-2019-14198

An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with a failed length check at nfsreadreply when calling storeblock in the NFSv3 case...

9.8CVSS7.3AI score0.0235EPSS
Exploits0References4
OSV
OSV
added 2019/07/31 1:15 p.m.3 views

UBUNTU-CVE-2019-14194

An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with a failed length check at nfsreadreply when calling storeblock in the NFSv2 case...

9.8CVSS7.3AI score0.0235EPSS
Exploits0References4
OSV
OSV
added 2019/07/31 1:15 p.m.3 views

UBUNTU-CVE-2019-14201

An issue was discovered in Das U-Boot through 2019.07. There is a stack-based buffer overflow in this nfshandler reply helper function: nfslookupreply...

9.8CVSS7.7AI score0.02488EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2019/07/31 12:0 a.m.7 views

PT-2019-13522

Name of the Vulnerable Software and Affected Versions Das U-Boot versions prior to 2019.07 Description An issue was discovered in Das U-Boot. There is an unbounded memcpy with a failed length check at nfs read reply when calling store block in the NFSv3 case. Recommendations For versions prior to...

9.8CVSS6.9AI score0.02403EPSS
Exploits0References72
Positive Technologies
Positive Technologies
added 2019/07/31 12:0 a.m.5 views

PT-2019-13519

Name of the Vulnerable Software and Affected Versions Das U-Boot versions prior to 2019.07 Description An issue was discovered in Das U-Boot. There is an unbounded memcpy with unvalidated length at nfs readlink reply in the "else" block after calculating the new path length. Recommendations For...

9.8CVSS6.9AI score0.0235EPSS
Exploits0References72
Positive Technologies
Positive Technologies
added 2019/07/31 12:0 a.m.6 views

PT-2019-13525

Name of the Vulnerable Software and Affected Versions Das U-Boot versions prior to 2019.07 Description A stack-based buffer overflow issue was found in the nfs handler reply helper function, specifically in the nfs lookup reply function. Recommendations For Das U-Boot versions prior to 2019.07,...

9.8CVSS7.5AI score0.02488EPSS
Exploits0References72
Rows per page
Query Builder