15 matches found
Oracle Linux 5 : kernel (ELSA-2008-0957)
The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2008-0957 advisory. - i386 vDSO: use installspecialmapping Peter Zijlstra 460275 460276 CVE-2008-3527 - fs remove SUID when splicing into an inode Eric Sandeen 464451 4644...
VMSA-2009-0014 : VMware ESX patches for DHCP, Service Console kernel, and JRE resolve multiple security issues
a. Service Console update for DHCP and third-party library update for DHCP client. DHCP is an Internet-standard protocol by which a computer can be connected to a local network, ask to be given configuration information, and receive from a server enough information to configure itself as a member...
SLES10: Security update for Linux kernel
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: kernel-bigsmp kernel-debug kernel-default kernel-kdump kernel-smp kernel-source kernel-syms kernel-vmi kernel-vmipae kernel-xen kernel-xenpae More details ma...
CentOS Security Advisory CESA-2009:0001-01 (kernel)
The remote host is missing updates to kernel announced in advisory CESA-2009:0001-01. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR...
SuSE Update for kernel SUSE-SA:2008:051
Check for the Version of kernel OpenVAS Vulnerability Test $Id: gbsuse2008051.nasl 8050 2017-12-08 09:34:29Z santu $ SuSE Update for kernel SUSE-SA:2008:051 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software;...
RHEL 2.1 : kernel (RHSA-2009:0001)
Updated kernel packages that fix a number of security issues are now available for Red Hat Enterprise Linux 2.1 running on 32-bit architectures. This update has been rated as having important security impact by the Red Hat Security Response Team. The kernel packages contain the Linux kernel, the...
RHEL 3 : kernel (RHSA-2008:0973)
Updated kernel packages that resolve several security issues and fix various bugs are now available for Red Hat Enterprise Linux 3. This update has been rated as having important security impact by the Red Hat Security Response Team. The kernel packages contain the Linux kernel, the core of any...
Debian Security Advisory DSA 1653-1 (linux-2.6)
The remote host is missing an update to linux-2.6 announced via advisory DSA 1653-1. OpenVAS Vulnerability Test $Id: deb16531.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1653-1 linux-2.6 Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
Debian: Security Advisory (DSA-1653-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian DSA-1653-1 : linux-2.6 - denial of service/privilege escalation
Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or privilege escalation. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2007-6716 Joe Jin reported a local denial of service vulnerability that allows...
[SECURITY] [DSA 1653-1] New Linux 2.6.18 packages fix several vulnerabilities
---------------------------------------------------------------------- Debian Security Advisory DSA-1653-1 [email protected] http://www.debian.org/security/ dann frazier Oct 13, 2008 http://www.debian.org/security/faq - ----------------------------------------------------------------------...
CVE-2008-4210
fs/open.c in the Linux kernel before 2.6.22 does not properly strip setuid and setgid bits when there is a write to a file, which allows local users to gain the privileges of a different group, and obtain sensitive information or possibly have unspecified other impact, by creating an executable...
CVE-2008-4210
fs/open.c in the Linux kernel before 2.6.22 does not properly strip setuid and setgid bits when there is a write to a file, which allows local users to gain the privileges of a different group, and obtain sensitive information or possibly have unspecified other impact, by creating an executable...
CVE-2008-4210
CVE-2008-4210 affects the Linux kernel prior to 2.6.22. fs/open.c does not properly strip setuid/setgid bits on writes, allowing local users to gain privileges of a different group and access sensitive information by creating an executable file in a setgid directory via truncate/ftruncate with me...
Linux Kernel 'truncate()'本地特权提升漏洞
BUGTRAQ ID: 31368 CVE ID:CVE-2008-4210 CNCVE ID:CNCVE-20084210 Linux是一款开放源代码的操作系统。 Linux内核'truncate'和'ftruncate'函数存在设计错误,本地攻击者可以利用漏洞提升特权。 当建立文件时,open/creat允许通过模式参数设置setgid位,由于bsdgroups mount选项或在setgid目录中建立文件,用户不属于新文件的组的成员。用户可以使用ftruncate和memory-mapped I/O使新文件成为任意两进制,获得此组的特权,原因是这些操作没有清除setgid位。...