Lucene search
K

10 matches found

Tenable Nessus
Tenable Nessus
added 2010/02/24 12:0 a.m.53 views

Debian DSA-1929-1 : linux-2.6 - privilege escalation/denial of service/sensitive memory leak

Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service, sensitive memory leak or privilege escalation. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2009-1883 Solar Designer discovered a missing capability...

7.8CVSS6.5AI score0.0493EPSS
Exploits23References21
Tenable Nessus
Tenable Nessus
added 2010/02/18 12:0 a.m.58 views

SuSE9 Security Update : the Linux kernel (YOU Patch Number 12578)

This update fixes various security issues and some bugs in the SUSE Linux Enterprise 9 kernel. - The collectrxframe function in drivers/isdn/hisax/hfcusb.c in the Linux kernel allows attackers to have an unspecified impact via a crafted HDLC packet that arrives over ISDN and triggers a buffer...

7.8CVSS7AI score0.05227EPSS
Exploits8References18
OSV
OSV
added 2009/11/05 12:0 a.m.81 views

DSA-1929-1 linux-2.6 - several vulnerabilities

Bulletin has no description...

7.8CVSS7.1AI score0.0493EPSS
Exploits23
Tenable Nessus
Tenable Nessus
added 2009/10/22 12:0 a.m.40 views

Ubuntu 6.06 LTS / 8.04 LTS / 8.10 / 9.04 : linux, linux-source-2.6.15 vulnerabilities (USN-852-1)

Solar Designer discovered that the z90crypt driver did not correctly check capabilities. A local attacker could exploit this to shut down the device, leading to a denial of service. Only affected Ubuntu 6.06. CVE-2009-1883 Michael Buesch discovered that the SGI GRU driver did not correctly check...

7.8CVSS6.6AI score0.08156EPSS
Exploits45References18
seebug.org
seebug.org
added 2009/09/22 12:0 a.m.35 views

Linux Kernel z90crypt驱动本地权限提升漏洞

CVE ID: CVE-2009-1883 Linux Kernel是开放源码操作系统Linux所使用的内核。 Linux Kernel的z90crypt驱动中的z90cryptunlockedioctl函数没有对Z90QUIESCE操作执行权限检查,这可能允许拥有有效用户ID(euid)为0的本地用户绕过预期的功能限制,执行非授权操作。 Linux kernel 2.6.9 厂商补丁: RedHat ------ RedHat已经为此发布了一个安全公告(RHSA-2009:1438-01)以及相应补丁: RHSA-2009:1438-01:Important: kernel...

4.4CVSS1.7AI score0.00342EPSS
Exploits1
OpenVAS
OpenVAS
added 2009/09/21 12:0 a.m.42 views

CentOS Security Advisory CESA-2009:1438 (kernel)

The remote host is missing updates to kernel announced in advisory CESA-2009:1438. CESA-2009:1438 64940 2 $Id: ovcesa20091438.nasl 6650 2017-07-10 11:43:12Z cfischer $ Description: Auto-generated from advisory CESA-2009:1438 kernel Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

7.2CVSS0.8AI score0.00938EPSS
Exploits4
OpenVAS
OpenVAS
added 2009/09/21 12:0 a.m.36 views

CentOS Security Advisory CESA-2009:1438 (kernel)

The remote host is missing updates to kernel announced in advisory CESA-2009:1438. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-on...

7.2CVSS6.4AI score0.00439EPSS
Exploits1References2
CVE
CVE
added 2009/09/18 10:0 a.m.94 views

CVE-2009-1883

CVE-2009-1883 affects the Linux kernel z90crypt driver, where a missing capability check in the z90crypt_unlocked_ioctl for the Z90QUIESCE operation can let a local user with an effective UID of 0 bypass restrictions, potentially forcing a driver outage and enabling privilege escalation. The issu...

4.4CVSS5.5AI score0.00342EPSS
Exploits1References9Affected Software1
Oracle linux
Oracle linux
added 2009/09/15 12:0 a.m.51 views

kernel security and bug fix update

2.6.9-89.0.11.0.1.EL - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug 6845794 fix enomem due to larger mtu size page alloc Zach Brown orabug 5486128 - backout patch sysrq-b that queues upto keventd thread Guru Anbalagane orabug 6125546 - netrx/netpoll race avoidan...

7.8CVSS6.6AI score0.01632EPSS
Exploits6
OpenVAS
OpenVAS
added 2009/09/15 12:0 a.m.38 views

RedHat Security Advisory RHSA-2009:1438

The remote host is missing updates to the Linux kernel announced in advisory RHSA-2009:1438. This update fixes the following security issues: the ADDRCOMPATLAYOUT and MMAPPAGEZERO flags were not cleared when a setuid or setgid program was executed. A local, unprivileged user could use this flaw t...

7.2CVSS6.5AI score0.00938EPSS
Exploits4References2
Rows per page
Query Builder