SUSE CVE-2011-1172

net/ipv6/netfilter/ip6tables.c in the IPv6 implementation in the Linux kernel before 2.6.39 does not place the expected '\0' character at the end of string data in the values of certain structure members, which allows local users to obtain potentially sensitive information from kernel memory by...

Oracle Linux 6 : kernel (ELSA-2011-1189)

The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2011-1189 advisory. - net nl80211: missing check for valid SSID size in scan operation Stanislaw Gruszka 718157 718158 CVE-2011-2517 - net bluetooth: l2cap and rfcomm: fix...

CVE-2011-1180

Multiple stack-based buffer overflows in the iriapgetvaluebyclassindication function in net/irda/iriap.c in the Linux kernel before 2.6.39 allow remote attackers to cause a denial of service memory corruption or possibly have unspecified other impact by leveraging connectivity to an IrDA infrared...

PT-2012-1527 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.39 Description: A double free vulnerability exists in the inotify subsystem of the Linux kernel, allowing local users to cause a denial of service, resulting in a system crash. This issue arises from incorre...

PT-2012-1525 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.39 Description: The issue is related to an integer underflow in the Open Sound System OSS subsystem of the Linux kernel. This allows local users with write access to /dev/sequencer to cause a denial of...

PT-2012-1526 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.39 Description: The issue is related to multiple array index errors in the sound/oss/opl3.c file of the Linux kernel. This can be exploited by local users to cause a denial of service, resulting in heap memo...

PT-2012-1532 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.39 Description: The issue is related to an integer overflow in the sys oabi semtimedop function, which can be exploited by local users to gain privileges or cause a denial of service, resulting in heap memor...

PT-2012-1537 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.39 Description: The issue is related to the ip expire function in the Linux kernel, which does not properly construct ICMP TIME EXCEEDED packets after a timeout. This allows remote attackers to cause a denia...

CVE-2011-4611

Integer overflow in the perfeventinterrupt function in arch/powerpc/kernel/perfevent.c in the Linux kernel before 2.6.39 on powerpc platforms allows local users to cause a denial of service unhandled performance monitor exception via vectors that trigger certain outcomes of performance events...

kernel: proc: fix oops on invalid /proc/<pid>/maps access

The mstop function in fs/proc/taskmmu.c in the Linux kernel before 2.6.39 allows local users to cause a denial of service OOPS via vectors that trigger an mstart error...

PT-2012-1728 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.39 Description: The issue allows local users to cause a denial of service via vectors that trigger an m start error in the m stop function. Recommendations: For versions prior to 2.6.39, update to version...

PT-2011-2918 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.39 Description: The issue allows local users to obtain potentially sensitive information from kernel memory by issuing a crafted request and then reading the argument to the resulting modprobe process. This ...