892 matches found
RHEL 6 : MRG (RHSA-2014:1318)
Updated Red Hat Enterprise MRG Realtime packages that fix multiple security issues and add one enhancement are now available for Red Hat Enterprise MRG 2.5. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, whi...
CVE-2014-3185
Multiple buffer overflows in the commandportreadcallback function in drivers/usb/serial/whiteheat.c in the Whiteheat USB Serial Driver in the Linux kernel before 3.16.2 allow physically proximate attackers to execute arbitrary code or cause a denial of service memory corruption and system crash v...
RHEL 6 : MRG (RHSA-2013:1264)
Updated kernel-rt packages that fix several security issues and multiple bugs are now available for Red Hat Enterprise MRG 2.3. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed...
kernel: usb: cdc-wdm buffer overflow triggered by device
Heap-based buffer overflow in the wdmincallback function in drivers/usb/class/cdc-wdm.c in the Linux kernel before 3.8.4 allows physically proximate attackers to cause a denial of service system crash or possibly execute arbitrary code via a crafted cdc-wdm USB device...
CVE-2013-2058
The hoststart function in drivers/usb/chipidea/host.c in the Linux kernel before 3.7.4 does not properly support a certain non-streaming option, which allows local users to cause a denial of service system crash by sending a large amount of network traffic through a USB/Ethernet adapter...
Code injection
The USB drivers in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows Server 2012, and Windows RT allow physically proximate attackers to execute arbitrary code by connectin...
Scientific Linux Security Update : kernel on SL6.x i386/x86_64 (20130423)
An integer overflow flaw, leading to a heap-based buffer overflow, was found in the way the Intel i915 driver in the Linux kernel handled the allocation of the buffer used for relocation copies. A local user with console access could use this flaw to cause a denial of service or escalate their...
CVE-2013-1860
Heap-based buffer overflow in the wdmincallback function in drivers/usb/class/cdc-wdm.c in the Linux kernel before 3.8.4 allows physically proximate attackers to cause a denial of service system crash or possibly execute arbitrary code via a crafted cdc-wdm USB device...
CVE-2013-1860
Heap-based buffer overflow in the wdmincallback function in drivers/usb/class/cdc-wdm.c in the Linux kernel before 3.8.4 allows physically proximate attackers to cause a denial of service system crash or possibly execute arbitrary code via a crafted cdc-wdm USB device...
CVE-2013-1860
Heap-based buffer overflow in the wdmincallback function in drivers/usb/class/cdc-wdm.c in the Linux kernel before 3.8.4 allows physically proximate attackers to cause a denial of service system crash or possibly execute arbitrary code via a crafted cdc-wdm USB device...
CVE-2013-0981
CVE-2013-0981 affects the IOUSBDeviceFamily USB kernel driver in Apple iOS before 6.1.3 and Apple TV before 5.2.1. The root cause is that pipe object pointers originating from userspace were accessed in kernel space, enabling a local attacker to gain privileges via crafted code. Public sources (N...
SuSE 10 Security Update : Linux kernel (ZYPP Patch Number 7811)
This Linux kernel update fixes various security issues and bugs in the SUSE Linux Enterprise 10 SP4 kernel. The following security issues have been fixed : - A USB string descriptor overflow in the auerwald USB driver was fixed, which could be used by physically proximate attackers to cause a...
kernel security update
CentOS Errata and Security Advisory CESA-2011:1386 Updated kernel packages that fix multiple security issues, several bugs, and add one enhancement are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having important security impact. Commo...
Ubuntu Update for linux USN-1236-1
Ubuntu Update for Linux kernel vulnerabilities USN-1236-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN12361.nasl 7964 2017-12-01 07:32:11Z santu $ Ubuntu Update for linux USN-1236-1 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This...
Ubuntu: Security Advisory (USN-1236-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 8.04 LTS : linux vulnerabilities (USN-1236-1)
It was discovered that the Auerswald usb driver incorrectly handled lengths of the USB string descriptors. A local attacker with physical access could insert a specially crafted USB device and gain root privileges. CVE-2009-4067 It was discovered that the Stream Control Transmission Protocol SCTP...
Important: Red Hat Security Advisory: kernel security, bug fix, and enhancement update
Updated kernel packages that fix multiple security issues, several bugs, and add one enhancement are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores,...
USN-1141-1: Linux kernel vulnerabilities
Brad Spengler discovered that the kernel did not correctly account for userspace memory allocations during exec calls. A local attacker could exploit this to consume all system memory, leading to a denial of service. CVE-2010-4243 Alexander Duyck discovered that the Intel Gigabit Ethernet driver...
Session fixation
The hsogetcount function in drivers/net/usb/hso.c in the Linux kernel before 2.6.36-rc5 does not properly initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel stack memory via a TIOCGICOUNT ioctl call...
Linux Kernel 2.6.26 - Auerswald USB Device Driver Buffer Overflow (PoC)
source: https://www.securityfocus.com/bid/48687/info The Auerswald USB Device Driver for the Linux kernel is prone to a buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data. Attackers can exploit this issue to execute arbitrary code with superus...