8825 matches found
CVE-2016-8405
CVE-2016-8405 is an information disclosure vulnerability affecting Android kernels (Kernel-3.10 and Kernel-3.18) via multiple subsystems (ION, Binder, USB, networking). It allows a local malicious process to access data outside its permissions after exploiting a privileged process; CVSS data in t...
CVE-2016-8404
CVE-2016-8404 is an information-disclosure vulnerability in Android kernel components (ION subsystem, Binder, USB driver, and networking). A local malicious application could access data outside its permission levels after compromising a privileged process. Affected product/versions: Android kern...
CVE-2016-8404
An information disclosure vulnerability in kernel components including the ION subsystem, Binder, USB driver and networking subsystem could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it first requires compromising ...
CVE-2016-8403
An information disclosure vulnerability in kernel components including the ION subsystem, Binder, USB driver and networking subsystem could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it first requires compromising ...
CVE-2016-8407
An information disclosure vulnerability in kernel components including the ION subsystem, Binder, USB driver and networking subsystem could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it first requires compromising ...
CVE-2016-8399
An elevation of privilege vulnerability in the kernel networking subsystem could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Moderate because it first requires compromising a privileged process and current compiler...
CVE-2016-8401
An information disclosure vulnerability in kernel components including the ION subsystem, Binder, USB driver and networking subsystem could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it first requires compromising ...
CVE-2016-8402
An information disclosure vulnerability in kernel components including the ION subsystem, Binder, USB driver and networking subsystem could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it first requires compromising ...
CVE-2016-8399
An elevation of privilege vulnerability in the kernel networking subsystem could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Moderate because it first requires compromising a privileged process and current compiler...
CVE-2016-8405
An information disclosure vulnerability in kernel components including the ION subsystem, Binder, USB driver and networking subsystem could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it first requires compromising ...
UBUNTU-CVE-2016-8405
An information disclosure vulnerability in kernel components including the ION subsystem, Binder, USB driver and networking subsystem could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it first requires compromising ...
Google Android Core Networking Denial of Service Vulnerability
Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. A denial of service vulnerability exists in Google Android. A remote attacker exploiting this vulnerability could cause the device to hang or reboot resulting in a denial of servi...
Update Rollup 3 for Windows Server 2012 Essentials
Update Rollup 3 for Windows Server 2012 Essentials Introduction This article lists the issues that are fixed in Update Rollup 3 for Windows Server 2012 Essentials. Important This update rollup contains server-side fixes. After you apply this update rollup, the client-side package is installed...
MS12-054: Description of the security update for Windows Networking Components: August 14, 2012
MS12-054: Description of the security update for Windows Networking Components: August 14, 2012 INTRODUCTION Microsoft has released security bulletin MS12-054. To view the complete security bulletin, go to one of the following Microsoft websites: Home users:...
Amazon Linux AMI : kernel (ALAS-2017-782)
A flaw was found in the Linux kernel key management subsystem in which a local attacker could crash the kernel or corrupt the stack and additional memory denial of service by supplying a specially crafted RSA key. This flaw panics the machine during the verification of the RSA key. CVE-2016-8650...
Medium: kernel
Issue Overview: A flaw was found in the Linux kernel key management subsystem in which a local attacker could crash the kernel or corrupt the stack and additional memory denial of service by supplying a specially crafted RSA key. This flaw panics the machine during the verification of the RSA key...
Important: Red Hat Security Advisory: kernel security and bug fix update
An update for kernel is now available for Red Hat Enterprise Linux 7.1 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...
GLSA-201701-05 : BusyBox: Denial of Service
The remote host is affected by the vulnerability described in GLSA-201701-05 BusyBox: Denial of Service The recvandprocessclientpkt function in networking/ntpd.c in BusyBox allows remote attackers to cause a Denial of Service CPU and bandwidth consumption via a forged NTP packet, which triggers a...
CVE-2016-5552
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: Networking. Supported versions that are affected are Java SE: 6u131, 7u121 and 8u112; Java SE Embedded: 8u111; JRockit: R28.3.12. Easily exploitable vulnerability allows unauthenticated attacker with...
UBUNTU-CVE-2016-5552
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: Networking. Supported versions that are affected are Java SE: 6u131, 7u121 and 8u112; Java SE Embedded: 8u111; JRockit: R28.3.12. Easily exploitable vulnerability allows unauthenticated attacker with...