CVE-2013-6399

CVE-2013-6399 affects QEMU prior to 1.7.2, due to an array index error in virtio_load (hw/virtio/virtio.c) that can allow remote code execution via a crafted savevm image. Remediation per description is to update to a fixed version (QEMU 1.7.2 or newer). Technical details in connected docs are li...

libXv: Array Index error leading to heap-based OOB write

Buffer overflow in X.org libXv 1.0.7 and earlier allows X servers to cause a denial of service crash and possibly execute arbitrary code via crafted length or index values to the XvQueryPortAttributes function...

libXvMC: Array Index error leading to heap-based OOB write

Buffer overflow in X.org libXvMC 1.0.7 and earlier allows X servers to cause a denial of service crash and possibly execute arbitrary code via crafted length or index values to the XvMCGetDRInfo function...

libXt: Array Index error leading to heap-based OOB write

Buffer overflow in X.org libXt 1.1.3 and earlier allows X servers to cause a denial of service crash and possibly execute arbitrary code via crafted length or index values to the XtResourceConfigurationEH function...

DEBIAN-CVE-2014-3182

Array index error in the logidjrawevent function in drivers/hid/hid-logitech-dj.c in the Linux kernel before 3.16.2 allows physically proximate attackers to execute arbitrary code or cause a denial of service invalid kfree via a crafted device that provides a malformed REPORTTYPENOTIFDEVICEUNPAIR...

CVE-2014-3182

Array index error in the logidjrawevent function in drivers/hid/hid-logitech-dj.c in the Linux kernel before 3.16.2 allows physically proximate attackers to execute arbitrary code or cause a denial of service invalid kfree via a crafted device that provides a malformed REPORTTYPENOTIFDEVICEUNPAIR...

CVE-2014-3182

CVE-2014-3182 affects the Linux kernel up to version 3.16.1, where an array index error in the logi_dj_raw_event function of drivers/hid/hid-logitech-dj.c can be exploited by a physically proximate attacker using a malformed REPORT_TYPE_NOTIF_DEVICE_UNPAIRED value to execute arbitrary code or cau...

CVE-2014-3182

Array index error in the logidjrawevent function in drivers/hid/hid-logitech-dj.c in the Linux kernel before 3.16.2 allows physically proximate attackers to execute arbitrary code or cause a denial of service invalid kfree via a crafted device that provides a malformed REPORTTYPENOTIFDEVICEUNPAIR...

CVE-2014-3182

Array index error in the logidjrawevent function in drivers/hid/hid-logitech-dj.c in the Linux kernel before 3.16.2 allows physically proximate attackers to execute arbitrary code or cause a denial of service invalid kfree via a crafted device that provides a malformed REPORTTYPENOTIFDEVICEUNPAIR...

CVE-2014-3182

Array index error in the logidjrawevent function in drivers/hid/hid-logitech-dj.c in the Linux kernel before 3.16.2 allows physically proximate attackers to execute arbitrary code or cause a denial of service invalid kfree via a crafted device that provides a malformed REPORTTYPENOTIFDEVICEUNPAIR...

PT-2014-5122 · Linux +5 · Linux Kernel +5

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 3.16.2 Description: The issue is related to an array index error in the logi dj raw event function in drivers/hid/hid-logitech-dj.c. This error allows physically proximate attackers to execute arbitrary code or...

Updated kernel-tmb package fixes security vulnerabilities

Updated kernel-tmb provides upstream 3.10.51 kernel and fixes the following security issues: Array index error in the aioreadeventsring function in fs/aio.c in the Linux kernel through 3.15.1 allows local users to obtain sensitive information from kernel memory via a large head value CVE-2014-020...

Updated kernel-linus package fixes security vulnerabilities

Updated kernel-linus provides upstream 3.12.26 kernel and fixes the following security issues: Array index error in the aioreadeventsring function in fs/aio.c in the Linux kernel through 3.15.1 allows local users to obtain sensitive information from kernel memory via a large head value...

Medium: kernel

Issue Overview: arch/x86/kernel/entry32.S in the Linux kernel through 3.15.1 on 32-bit x86 platforms, when syscall auditing is enabled and the sep CPU feature flag is set, allows local users to cause a denial of service OOPS and system crash via an invalid syscall number, as demonstrated by numbe...

CVE-2014-1371

Array index error in Dock in Apple OS X before 10.9.4 allows attackers to execute arbitrary code or cause a denial of service incorrect function-pointer dereference and application crash by leveraging access to a sandboxed application for sending a message...

Code injection

Array index error in IOAcceleratorFamily in Apple OS X before 10.9.4 allows attackers to execute arbitrary code via a crafted application...

CVE-2014-1377

CVE-2014-1377 concerns the IOAcceleratorFamily in Apple OS X prior to 10.9.4. The vulnerability is an array indexing/bounds issue in the IOAccelerator driver that could allow an attacker to execute arbitrary code via a crafted application. Apple’s published fix (OS X 10.9.4 Security Update) addre...

CVE-2014-1371

The CVE-2014-1371 issue affects Apple OS X Dock prior to 10.9.4. An unvalidated array index in the Dock’s handling of messages from applications could lead to an invalid function-pointer dereference, enabling arbitrary code execution or a crash when a sandboxed app sends a message. The exploit re...

CVE-2014-1371

Array index error in Dock in Apple OS X before 10.9.4 allows attackers to execute arbitrary code or cause a denial of service incorrect function-pointer dereference and application crash by leveraging access to a sandboxed application for sending a message...

CVE-2014-4616

Array index error in the scanstring function in the json module in Python 2.7 through 3.5 and simplejson before 2.6.1 allows context-dependent attackers to read arbitrary process memory via a negative index value in the idx argument to the rawdecode function...