8 matches found
SUSE CVE-2008-3915
Buffer overflow in nfsd in the Linux kernel before 2.6.26.4, when NFSv4 is enabled, allows remote attackers to have an unknown impact via vectors related to decoding an NFSv4 acl...
Linux Kernel nfsd Subsystem Buffer Overflow (CVE-2008-3915)
Linux is a popular open-source operating system in which the kernel and other programs related to the operating systems are developed by a group of volunteers. The Linux Kernel supports a great number of features, including networking, file system and graphics protocols and standards. A remote...
Debian: Security Advisory (DSA-1636-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Linux kernel NFSv4 ACL缓冲区溢出漏洞
BUGTRAQ ID: 31133 CVE ID:CVE-2008-3915 CNCVE ID:CNCVE-20083915 Linux是一款开放源代码的操作系统。 当NFSv4启用时Linux内核中的NFSD存在一个缓冲区溢出,远程攻击者可以利用漏洞对系统进行拒绝服务攻击,可能导致任意代码执行。 问题存在于对NFSv4 ACL解码处理中,initstate函数分配数组时不足够大,构建特殊的NFSv4 acl可触发缓冲区溢出。 Linux kernel 2.6.26 3 Linux kernel 2.6.26 -rc6 Linux kernel 2.6.25 .9 Linux kerne...
[SECURITY] [DSA 1636-1] New Linux 2.6.24 packages fix several vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ---------------------------------------------------------------------- Debian Security Advisory DSA-1636-1 [email protected] http://www.debian.org/security/ dann frazier Sep 11, 2008 http://www.debian.org/security/faq -...
[SECURITY] [DSA 1636-1] New Linux 2.6.24 packages fix several vulnerabilities
---------------------------------------------------------------------- Debian Security Advisory DSA-1636-1 [email protected] http://www.debian.org/security/ dann frazier Sep 11, 2008 http://www.debian.org/security/faq - ----------------------------------------------------------------------...
DSA-1636-1 linux-2.6.24 - several vulnerabilities
Bulletin has no description...
CVE-2008-3915
CVE-2008-3915 is a buffer overflow in the Linux kernel’s nfsd when NFSv4 is enabled. The issue can allow remote triggering of a denial of service via crafted NFSv4 ACL decoding; affected are kernels older than 2.6.26.4. The Debian/Ubuntu advisories in the connected set reference this CVE among a ...