12 matches found
CVE-2022-49197 af_netlink: Fix shift out of bounds in group mask calculation
In the Linux kernel, the following vulnerability has been resolved: afnetlink: Fix shift out of bounds in group mask calculation When a netlink message is received, netlinkrecvmsg fills in the address of the sender. One of the fields is the 32-bit bitfield nlgroups, which carries the multicast...
CVE-2022-49197
CVE-2022-49197 affects the Linux kernel’s netlink af_netlink path. When netlink messages are received, netlink_recvmsg() fills sender info including a 32-bit nl_groups bitfield that indicates multicast group membership. The issue is a shift-out-of-bounds in computing the group mask for high-numbe...
CVE-2021-47606 net: netlink: af_netlink: Prevent empty skb by adding a check on len.
In the Linux kernel, the following vulnerability has been resolved: net: netlink: afnetlink: Prevent empty skb by adding a check on len. Adding a check on len parameter to avoid empty skb. This prevents a division error in netemenqueue function which is caused when skb-len=0 and skb-datalen=0 in...
GSD-2022-1002497 af_netlink: Fix shift out of bounds in group mask calculation
afnetlink: Fix shift out of bounds in group mask calculation This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.9.311 by commit...
GSD-2022-1002432 af_netlink: Fix shift out of bounds in group mask calculation
afnetlink: Fix shift out of bounds in group mask calculation This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.14.276 by commit...
GSD-2022-1002349 af_netlink: Fix shift out of bounds in group mask calculation
afnetlink: Fix shift out of bounds in group mask calculation This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.19.238 by commit...
GSD-2022-1002238 af_netlink: Fix shift out of bounds in group mask calculation
afnetlink: Fix shift out of bounds in group mask calculation This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.189 by commit...
GSD-2022-1002075 af_netlink: Fix shift out of bounds in group mask calculation
afnetlink: Fix shift out of bounds in group mask calculation This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.110 by commit...
GSD-2022-1001194 af_netlink: Fix shift out of bounds in group mask calculation
afnetlink: Fix shift out of bounds in group mask calculation This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.17.2 by commit...
Linux Kernel 2.6 UDEV < 141 - Local Privilege Escalation Exploit
No description provided by source. / cve-2009-1185.c udev 141 Local Privilege Escalation Exploit Jon Oberheide [email protected] http://jon.oberheide.org Information: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1185 udev before 1.4.1 does not verify whether a NETLINK message originates...
Linux Kernel 3.7.10 (Ubuntu 12.10 x64) - sock_diag_handlers Local Privilege Escalation (2)
Linux Kernel 3.7.10 Ubuntu 12.10 x64 - sockdiaghandlers Local Privilege Escalation 2 include include include include include include include include include include include include include include typedef int attributeregparm3 commitcredsunsigned long cred; typedef unsigned long attributeregparm3...
Ordinary users by udev vulnerability to elevate to root permissions demo-vulnerability warning-the black bar safety net
Recently exposed by the udev permissions hint of vulnerability, as long as with normal user permissions, you can elevate to root privileges, the experiment a handful, really easy to upgrade. Put the following code saved as test. sh file !/ bin/sh Linux 2.6 bug found by Sebastian Krahmer lame splo...