234 matches found
CVE-2016-3672
The archpickmmaplayout function in arch/x86/mm/mmap.c in the Linux kernel through 4.5.2 does not properly randomize the legacy base address, which makes it easier for local users to defeat the intended restrictions on the ADDRNORANDOMIZE flag, and bypass the ASLR protection mechanism for a setuid...
CVE-2006-3378
passwd command in shadow in Ubuntu 5.04 through 6.06 LTS, when called with the -f, -g, or -s flag, does not check the return code of a setuid call, which might allow local users to gain root privileges if setuid fails in cases such as PAM failures or resource limits...
openSUSE Security Update : ecryptfs-utils (openSUSE-SU-2011:0902-1)
This update of ecryptfs-utils fixes several security problems : - CVE-2011-1831 - Race condition when checking mountpoint during mount. - CVE-2011-1832 - Race condition when checking mountpoint during unmount. - CVE-2011-1833 - Race condition when checking source during mount. - CVE-2011-1834 -...
CVE-2011-1749
The nfsaddmntent function in support/nfs/nfsmntent.c in the mount.nsf tool in nfs-utils before 1.2.4 attempts to append to the /etc/mtab file without first checking whether resource limits would interfere, which allows local users to corrupt this file via a process with a small RLIMITFSIZE value,...
DEBIAN-CVE-2011-1749
The nfsaddmntent function in support/nfs/nfsmntent.c in the mount.nsf tool in nfs-utils before 1.2.4 attempts to append to the /etc/mtab file without first checking whether resource limits would interfere, which allows local users to corrupt this file via a process with a small RLIMITFSIZE value,...
UBUNTU-CVE-2011-1749
The nfsaddmntent function in support/nfs/nfsmntent.c in the mount.nsf tool in nfs-utils before 1.2.4 attempts to append to the /etc/mtab file without first checking whether resource limits would interfere, which allows local users to corrupt this file via a process with a small RLIMITFSIZE value,...
CVE-2011-1749
The CVE-2011-1749 entry concerns nfs-utils before 1.2.4, where the nfs_addmntent function in support/nfs/nfs_mntent.c can append to /etc/mtab without considering resource limits, enabling local users to corrupt the file with a small RLIMIT_FSIZE value (tied to CVE-2011-1089). Several connected ad...
DEBIAN-CVE-2013-0306
The form library in Django 1.3.x before 1.3.6, 1.4.x before 1.4.4, and 1.5 before release candidate 2 allows remote attackers to bypass intended resource limits for formsets and cause a denial of service memory consumption or trigger server errors via a modified maxnum parameter...
PYSEC-2013-17
The form library in Django 1.3.x before 1.3.6, 1.4.x before 1.4.4, and 1.5 before release candidate 2 allows remote attackers to bypass intended resource limits for formsets and cause a denial of service memory consumption or trigger server errors via a modified maxnum parameter...
CVE-2013-0306
The CVE-2013-0306 issue affects Django forms: the formset handling in Django 1.3.x before 1.3.6, 1.4.x before 1.4.4, and 1.5 before release candidate 2 does not enforce resource limits correctly due to a modified max_num parameter. This can allow remote attackers to bypass intended formset limits...
CVE-2013-0306
The form library in Django 1.3.x before 1.3.6, 1.4.x before 1.4.4, and 1.5 before release candidate 2 allows remote attackers to bypass intended resource limits for formsets and cause a denial of service memory consumption or trigger server errors via a modified maxnum parameter...
Mandriva Linux Security Advisory : ncpfs (MDVSA-2013:048)
Multiple vulnerabilities has been discovered and corrected in ncpfs : ncpfs 2.2.6 and earlier attempts to use 1 ncpmount to append to the /etc/mtab file and 2 ncpumount to append to the /etc/mtab.tmp file without first checking whether resource limits would interfere, which allows local users to...
CVE-2013-0306
The form library in Django 1.3.x before 1.3.6, 1.4.x before 1.4.4, and 1.5 before release candidate 2 allows remote attackers to bypass intended resource limits for formsets and cause a denial of service memory consumption or trigger server errors via a modified maxnum parameter...
Mandriva Update for util-linux MDVSA-2012:083 (util-linux)
Check for the Version of util-linux OpenVAS Vulnerability Test Mandriva Update for util-linux MDVSA-2012:083 util-linux Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modif...
Scientific Linux Security Update : krb5 on SL3.x, SL4.x, SL5.x i386/x86_64
A flaw was found in the way the MIT Kerberos Authentication Service and Key Distribution Center server krb5kdc handled Kerberos v4 protocol packets. An unauthenticated remote attacker could use this flaw to crash the krb5kdc daemon, disclose portions of its memory, or possibly execute arbitrary...
Mandriva Linux Security Advisory : ncpfs (MDVSA-2012:084)
Multiple vulnerabilities has been discovered and corrected in ncpfs : ncpfs 2.2.6 and earlier attempts to use 1 ncpmount to append to the /etc/mtab file and 2 ncpumount to append to the /etc/mtab.tmp file without first checking whether resource limits would interfere, which allows local users to...
[SECURITY] [DSA 2436-1] libapache2-mod-fcgid security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2436-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst March 19, 2012 http://www.debian.org/security/faq -...
Debian DSA-2436-1 : libapache2-mod-fcgid - inactive resource limits
It was discovered that the Apache FCGID module, a FastCGI implementation, did not properly enforce the FcgidMaxProcessesPerClass resource limit, rendering this control ineffective and potentially allowing a virtual host to consume excessive resources. %NASLMINLEVEL 70300 C Tenable Network Securit...
DSA-2436-1 libapache2-mod-fcgid - inactive resource limits
Bulletin has no description...
Samba 3.x 'etc/mtab'文件附加本地拒绝服务漏洞
BUGTRAQ ID: 49939 CVE ID: CVE-2011-1678 Samba是一套实现SMB(Server Messages Block)协议、跨平台进行文件共享和打印共享服务的程序。 Samba 3.5.8及更早版本中的smbfs尝试使用mount.cifs附加到/etc/mtab文件,umount.cifs附加到/etc/mtab.tmp文件,而没有检查资源限制,可使本地用户通过small RLIMITFSIZE值相关进程破坏/etc/mtab文件。 0 Samba 3.x 厂商补丁: Samba -----...