CVE-2017-13167

CVE-2017-13167 is described as an elevation of privilege vulnerability in the kernel sound timer affecting the Android kernel. The provided connected document notes the product as Android and versions as the Android kernel, with Android ID A-37240993. The Unity Linux/UTSA advisories reference thi...

CVE-2017-13167

An elevation of privilege vulnerability in the kernel sound timer. Product: Android. Versions: Android kernel. Android ID A-37240993...

CVE-2017-13167

An elevation of privilege vulnerability in the kernel sound timer. Product: Android. Versions: Android kernel. Android ID A-37240993...

Google Android Kernel Sound timer elevation of privilege vulnerability

Android on Google Pixel and Nexus is a Linux-based open source operating system for the Google Pixel and Nexus smartphones developed by Google and the Open Handset Alliance OHA.Kernel Sound timer is one of the kernel sound timer components used in the Kernel Sound timer is a kernel sound timer...

kernel: information leak due to a data race in ALSA timer

It was found that the timer functionality in the Linux kernel ALSA subsystem is prone to a race condition between read and ioctl system call handlers, resulting in an uninitialized memory disclosure to user space. A local user could use this flaw to read information belonging to other users...

RHEL 7 : kernel (RHSA-2017:3315)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2017:3315 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. These updated kernel packages include several security issues a...

Oracle Linux 7 : kernel (ELSA-2017-3315)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2017-3315 advisory. - sound alsa: timer: Use common error handling code in alsatimerinit Jaroslav Kysela 1465998 1465999 CVE-2017-1000380 - sound alsa: timer: Adjust a condition...

kernel: information leak due to a data race in ALSA timer

It was found that the timer functionality in the Linux kernel ALSA subsystem is prone to a race condition between read and ioctl system call handlers, resulting in an uninitialized memory disclosure to user space. A local user could use this flaw to read information belonging to other users...

kernel: information leak due to a data race in ALSA timer

It was found that the timer functionality in the Linux kernel ALSA subsystem is prone to a race condition between read and ioctl system call handlers, resulting in an uninitialized memory disclosure to user space. A local user could use this flaw to read information belonging to other users...

Fedora 26 : knot / knot-resolver (2017-31519ecf40)

"Major updates for Knot DNS and Knot Resolver: Knot Resolver 1.5.0 2017-11-02 ================================ Bugfixes -------- - fix loading modules on Darwin Improvements ------------ - new module tasignalquery supporting Signaling Trust Anchor Knowledge using Keytag Query RFC 8145 section 5...

CVE-2017-5067

An insufficient watchdog timer in navigation in Google Chrome prior to 58.0.3029.81 for Linux, Windows, and Mac allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page...

CVE-2017-5067

An insufficient watchdog timer in navigation in Google Chrome prior to 58.0.3029.81 for Linux, Windows, and Mac allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page...

UBUNTU-CVE-2017-5067

An insufficient watchdog timer in navigation in Google Chrome prior to 58.0.3029.81 for Linux, Windows, and Mac allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page...

Design/Logic Flaw

An insufficient watchdog timer in navigation in Google Chrome prior to 58.0.3029.81 for Linux, Windows, and Mac allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page...

CVE-2017-5067

An insufficient watchdog timer in navigation in Google Chrome prior to 58.0.3029.81 for Linux, Windows, and Mac allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page...

CVE-2017-5067

Removed by vendor...

CVE-2017-5067

CVE-2017-5067 affects Google Chrome before 58.0.3029.81 on Linux/Windows/Mac. The root cause is an insufficient watchdog timer in navigation, enabling a crafted HTML page to spoof the Omnibox (URL bar). The practical impact is UI spoofing through the address bar, potentially deceiving users. The ...

CVE-2017-15389

An insufficient watchdog timer in navigation in Google Chrome prior to 62.0.3202.62 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page...

FAQ: XenMobile Client Properties

Question: What does XenMobile Client properties do? Options to enable/disable client properties Answer : Client properties contain information that is provided directly to Secure Hub on user devices. Client properties are located in the XenMobile console inSettings Client Client Properties. Clien...

XenMobile Authentication Prompt Scenarios.

Question : What are the scenarios in XenMobile where users are prompted to authenticate. Answer :The scenarios change depending on these factors: Your MDX app policy and Client Property configuration in the XenMobile console settings. Whether the authentication occurs offline, or needs to be an...