EUVD-2013-7210

Malware in sbrugna...

EUVD-2021-20462

Malware in sbrugna...

EUVD-2009-3602

Malware in sbrugna...

CVE-2024-26732 net: implement lockless setsockopt(SO_PEEK_OFF)

In the Linux kernel, the following vulnerability has been resolved: net: implement lockless setsockoptSOPEEKOFF syzbot reported a lockdep violation 1 involving afunix support of SOPEEKOFF. Since SOPEEKOFF is inherently not thread safe it uses a per-socket skpeekoff field, there is really no point...

Microsoft Windows/Windows Server Denial of Service Vulnerability (CNVD-2021-66059)

Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation USA.Microsoft Windows is an operating system for personal devices.Microsoft Windows Server is a server operating system. A denial-of-service vulnerability exists in the AFUNIX Socket Provider in Microsoft...

Denial of service

Windows AFUNIX Socket Provider Denial of Service Vulnerability...

EulerOS 2.0 SP2 : dbus (EulerOS-SA-2020-2339)

According to the version of the dbus packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - An issue was discovered in dbus = 1.3.0 before 1.12.18. The DBusServer in libdbus, as used in dbus-daemon, leaks file descriptors when a message...

Updated dbus packages fix security vulnerability

The updated packages fix a security vulnerability: An issue was discovered in dbus = 1.3.0 before 1.12.18. The DBusServer in libdbus, as used in dbus-daemon, leaks file descriptors when a message exceeds the per-message file descriptor limit. A local attacker with access to the D-Bus system bus o...

Denial Of Service (DoS)

php is vulnerable to denial of service DoS. The vulnerability exists as a stack-based buffer overflow flaw was found in the way the PHP socket extension handled long AFUNIX socket addresses. An attacker able to make a PHP script connect to a long AFUNIX socket address could use this flaw to crash...

F5 Networks BIG-IP : Linux kernel vulnerability (K20022580)

Use-after-free vulnerability in net/unix/afunix.c in the Linux kernel before 4.3.3 allows local users to bypass intended AFUNIX socket permissions or cause a denial of service panic via crafted epollctl calls. CVE-2013-7446 C Tenable Network Security, Inc. The descriptive text and package checks ...

Debian DSA-3426-1 : Linux Security Update

The remote Debian host is running a version of the Linux kernel prior to 3.2.73-2+deb7u1 on Debian 7 or is running a version of the Linux kernel prior to 3.16.7-ckt20-1+deb8u1 on Debian 8. It is, therefore, affected by the following vulnerabilities : - A use-after-free error exists in the...

openSUSE Security Update : the Linux Kernel (openSUSE-2016-753)

The openSUSE Leap 42.1 kernel was updated to 4.1.26 to receive various security and bugfixes. The following security bugs were fixed : - CVE-2016-1583: Prevent the usage of mmap when the lower file system does not allow it. This could have lead to local privilege escalation when ecryptfs-utils wa...

SUSE-SU-2016:0754-1 Security update for kernel live patch 11

This kernel live patch for Linux Kernel 3.12.51-52.39.1 fixes two security issues: Fixes: - CVE-2013-7446: Use-after-free vulnerability in net/unix/afunix.c in the Linux kernel allowed local users to bypass intended AFUNIX socket permissions or cause a denial of service panic via crafted epollctl...

SUSE-SU-2016:0749-1 Security update for kernel live patch 10

This kernel live patch for Linux Kernel 3.12.51-52.34.1 fixes two security issues: Fixes: - CVE-2013-7446: Use-after-free vulnerability in net/unix/afunix.c in the Linux kernel allowed local users to bypass intended AFUNIX socket permissions or cause a denial of service panic via crafted epollctl...

SUSE-SU-2016:0756-1 Security update for kernel live patch 7

This kernel live patch for Linux Kernel 3.12.44-52.18.1 fixes two security issues: Fixes: - CVE-2016-0728: A reference leak in keyring handling with joinsessionkeyring could lead to local attackers gain root privileges. bsc962078. - CVE-2013-7446: Use-after-free vulnerability in net/unix/afunix.c...

Design/Logic Flaw

Use-after-free vulnerability in net/unix/afunix.c in the Linux kernel before 4.3.3 allows local users to bypass intended AFUNIX socket permissions or cause a denial of service panic via crafted epollctl calls...

CVE-2013-7446

Use-after-free vulnerability in net/unix/afunix.c in the Linux kernel before 4.3.3 allows local users to bypass intended AFUNIX socket permissions or cause a denial of service panic via crafted epollctl calls...

CVE-2013-7446

CVE-2013-7446 is a use-after-free vulnerability in the Linux kernel (net/unix/af_unix.c) up to version 4.3.2, fixed in 4.3.3. It allows local attackers to bypass AF_UNIX socket permissions or cause a denial of service (panic) via crafted epoll_ctl calls. Affected: Linux kernel before 4.3.3 (inclu...

CVE-2013-7446

Use-after-free vulnerability in net/unix/afunix.c in the Linux kernel before 4.3.3 allows local users to bypass intended AFUNIX socket permissions or cause a denial of service panic via crafted epollctl calls...

Moderate: Red Hat Security Advisory: php53 and php security update

Updated php53 and php packages that fix several security issues are now available for Red Hat Enterprise Linux 5 and 6 respectively. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detail...