7 matches found
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000889)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000889 advisory. Stack consumption vulnerability in the parserockridgeinodeinternal function in fs/isofs/rock.c in the Linux kernel through 3.16.1 allows local users to cause a denia...
SUSE CVE-2017-14501
An out-of-bounds read flaw exists in parsefileinfo in archivereadsupportformatiso9660.c in libarchive 3.3.2 when extracting a specially crafted iso9660 iso file, related to archivereadformatiso9660readheader...
The vulnerability of the archive_read_format_iso9660_read_header function in the libarchive library allows a hacker to gain unauthorized access to information.
The vulnerability of the archivereadformatiso9660readheader function in the archivereadsupportformatiso9660.c library of the libarchive library is related to reading beyond the allowed boundaries. Exploiting this vulnerability could allow a remote attacker to gain unauthorized access to informati...
Design/Logic Flaw
libarchive version commit 5a98dcf8a86364b3c2c469c85b93647dfb139961 onwards version v2.8.0 onwards contains a CWE-835: Loop with Unreachable Exit Condition 'Infinite Loop' vulnerability in ISO9660 parser, archivereadsupportformatiso9660.c, readCE/parserockridge that can result in DoS by infinite...
Ubuntu 10.04 LTS : linux vulnerabilities (USN-2511-1)
A race condition was discovered in the Linux kernel's key ring. A local user could cause a denial of service memory corruption or panic or possibly have unspecified impact via the keyctl commands. CVE-2014-9529 A memory leak was discovered in the ISO 9660 CDROM file system when parsing rock ridge...
CVE-2014-9584
The parserockridgeinodeinternal function in fs/isofs/rock.c in the Linux kernel before 3.18.2 does not validate a length value in the Extensions Reference ER System Use Field, which allows local users to obtain sensitive information from kernel memory via a crafted iso9660 image...
DEBIAN-CVE-2014-9420
The rockcontinue function in fs/isofs/rock.c in the Linux kernel through 3.18.1 does not restrict the number of Rock Ridge continuation entries, which allows local users to cause a denial of service infinite loop, and system crash or hang via a crafted iso9660 image...