kernel: information leak via userspace USB interface

The processcomplcompat function in drivers/usb/core/devio.c in Linux kernel 2.6.x through 2.6.32, and possibly other versions, does not clear the transfer buffer before returning to userspace when a USB command fails, which might make it easier for physically proximate attackers to obtain sensiti...

Oriental micro-point active Defense software 9 0-day hack methods-vulnerability warning-the black bar safety net

In addition to the Oriental micro-point ninety-day limit of the method:initial free trial 9 0 days of principle:installation of micro-point,he is using the installation package comes with the serial number:HPXJAL-NBX9GU-8NF367 - 97VL7H ,into the installation,and then use this serial number to the...

Oracle Enterprise Linux 5.5 kernel security and bug fix update

2.6.18-194.el5 - net mlx4: pass attributes down to vlan interfaces Doug Ledford 573098 - block cfq-iosched: fix sequential read perf regression Jeff Moyer 571818 2.6.18-193.el5 - fs gfs2: locking fix for potential dos Steven Whitehouse 572390 CVE-2010-0727 - acpi powermeter: avoid oops on driver...

gnutls: gnutls_x509_crt_get_serial incorrect serial decoding from ASN1 (BE64) [GNUTLS-SA-2010-1]

The gnutlsx509crtgetserial function in the GnuTLS library before 1.2.1, when running on big-endian, 64-bit platforms, calls the asn1readvalue with a pointer to the wrong data type and the wrong length value, which allows remote attackers to bypass the certificate revocation list CRL check and cau...

kvm-userspace-rhel5: usb-linux.c: fix buffer overflow

Buffer overflow in the usbhosthandlecontrol function in the USB passthrough handling implementation in usb-linux.c in QEMU before 0.11.1 allows guest OS users to cause a denial of service guest OS crash or hang or possibly execute arbitrary code on the host OS via a crafted USB packet...

kvm-userspace-rhel5: usb-linux.c: fix buffer overflow

Buffer overflow in the usbhosthandlecontrol function in the USB passthrough handling implementation in usb-linux.c in QEMU before 0.11.1 allows guest OS users to cause a denial of service guest OS crash or hang or possibly execute arbitrary code on the host OS via a crafted USB packet...

[SECURITY] Fedora 11 Update: condor-7.4.1-1.fc11

Condor is a specialized workload management system for compute-intensive jobs. Like other full-featured batch systems, Condor provides a job queueing mechanism, scheduling policy, priority scheme, resource monitoring, and resource management. Users submit their serial or parallel jobs to Condor,...

CentOS 5 : kernel (CESA-2008:0885)

Updated kernel packages that fix various security issues and several bugs are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. The kernel packages contain the Linux kernel, the core of any Linux...

Serial Lib Cross Site Scripting

======================================================================================== | Title : Serial Lib Arabic Version Cross Site Scripting Vulnerability | Author : indoushka | email : [email protected] | Home : Souk Naamane - 04325 - Oum El Bouaghi - Algeria -00213771818860 | Total...

Mandriva Security Advisory MDVSA-2009:282-1 (cups)

The remote host is missing an update to cups announced via advisory MDVSA-2009:282-1. OpenVAS Vulnerability Test $Id: mdksa20092821.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:282-1 cups Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft...

Moderate: Red Hat Security Advisory: kernel security and bug fix update

Updated kernel packages that fix one security issue and several bugs are now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Updated 23rd February 2010 This update adds references to two KBase articles...

Serial port shell binding, busybox Launching shellcode

Exploit for linux/x86 platform in category shellcode ====================================================== Serial port shell binding, busybox Launching shellcode ====================================================== / General: Serial port shell binding, busybox launching shellcode.. yey!...

Serial port shell binding busybox Launching shellcode

No description provided by source. / General: Serial port shell binding, busybox launching shellcode.. yey! Specific: really wish i could tell you what i needed this for.. but meh.. this will bind a busybox sh shell to /dev/ttyS0, the shellcode does not alter the baudrate settings.. 9600 is the...

Serial port shell binding & busybox Launching shellcode

Serial port shell binding, busybox Launching shellcode. Shellcode exploit for linx86 platform / General: Serial port shell binding, busybox launching shellcode.. yey! Specific: really wish i could tell you what i needed this for.. but meh.. this will bind a busybox sh shell to /dev/ttyS0, the...

HP LaserJet Printer Detection

The remote host is an HP LaserJet printer. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid36128; scriptversion"1.23"; scriptsetattributeattribute:"pluginmodificationdate", value:"2025/03/18"; scriptxrefname:"IAVT", value:"0001-T-0611"; scriptnameenglish:"HP LaserJet...

Mandriva Update for kernel MDKSA-2007:047 (kernel)

Check for the Version of kernel OpenVAS Vulnerability Test Mandriva Update for kernel MDKSA-2007:047 kernel Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

Cisco Security Advisory: Cisco IOS Software Multiple Features Crafted TCP Sequence Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Cisco IOS Software Multiple Features Crafted TCP Sequence Vulnerability Advisory ID: cisco-sa-20090325-tcp http://www.cisco.com/warp/public/707/cisco-sa-20090325-tcp.shtml Revision 1.0 For Public Release 2009 March 25 1600 UTC...

Ubuntu Update for linux-source-2.6.15 vulnerabilities USN-508-1

Ubuntu Update for Linux kernel vulnerabilities USN-508-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN5081.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for linux-source-2.6.15 vulnerabilities USN-508-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH,...

Ubuntu: Security Advisory (USN-508-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

kernel security and bug fix update

2.6.9-78.0.17.0.1.EL - fix entropy flag in bnx2 driver to generate entropy pool John Sobecki orabug 5931647 - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug 6845794 - fix enomem due to larger mtu size page alloc Zach Brown orabug 5486128 - fix percpu api bugon wit...