13 matches found
Oracle Linux 5 : kernel (ELSA-2010-0046)
The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2010-0046 advisory. - firewire ohci: handle receive packets with zero data Jay Fenlason 547241 547242 CVE-2009-4138 - fs respect flag in docoredump Danny Feng 544188 54418...
SuSE 11 Security Update : Linux kernel (SAT Patch Number 1753)
Indications Everyone using the Linux Kernel on s390x architecture should update. Contraindications None. Problem description The SUSE Linux Enterprise 11 Kernel was updated to 2.6.27.42 fixing various bugs and security issues. The following security issues were fixed : - A underflow in the e1000...
Important: Red Hat Security Advisory: kernel-rt security and bug fix update
Updated kernel-rt packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise MRG 1.2. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed...
VMSA-2010-0009 : ESXi ntp and ESX Service Console third-party updates
a. Service Console update for COS kernel Updated COS package 'kernel' addresses the security issues that are fixed through versions 2.6.18-164.11.1. The Common Vulnerabilities and Exposures project cve.mitre.org has assigned the names CVE-2009-2695, CVE-2009-2908, CVE-2009-3228, CVE-2009-3286,...
Debian DSA-2005-1 : linux-2.6.24 - privilege escalation/denial of service/sensitive memory leak
NOTE: This kernel update marks the final planned kernel security update for the 2.6.24 kernel in the Debian release 'etch'. Although security support for 'etch' officially ended on Feburary 15th, 2010, this update was already in preparation before that date. Several vulnerabilities have been...
[SECURITY] [DSA 2004-1] New Linux 2.6.24 packages fix several vulnerabilities
---------------------------------------------------------------------- Debian Security Advisory DSA-2004-1 [email protected] http://www.debian.org/security/ Dann Frazier February 27, 2010 http://www.debian.org/security/faq - ----------------------------------------------------------------------...
SuSE Update for kernel SUSE-SA:2010:012
Check for the Version of kernel OpenVAS Vulnerability Test SuSE Update for kernel SUSE-SA:2010:012 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...
openSUSE Security Update : kernel (kernel-1908)
This kernel update for openSUSE 11.0 fixes some bugs and several security problems. The following security issues are fixed: CVE-2009-4536: drivers/net/e1000/e1000main.c in the e1000 driver in the Linux kernel handles Ethernet frames that exceed the MTU by processing certain trailing payload data...
CentOS 5 : kernel (CESA-2010:0046)
Updated kernel packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. The kernel packages contain the Linux kernel, the core of any Linux...
Important: Red Hat Security Advisory: kernel security and bug fix update
Updated kernel packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. The kernel packages contain the Linux kernel, the core of any Linux...
openSUSE Security Update : kernel (kernel-1749)
The openSUSE 11.1 Kernel was updated to 2.6.27.42 fixing various bugs and security issues. Following security issues were fixed: CVE-2009-4536: A underflow in the e1000 jumbo ethernet frame handling could be use by link-local remote attackers to crash the machine or potentially execute code in...
Linux Kernel 'drivers/firewire/ohci.c'空指针引用拒绝服务漏洞
Bugraq ID: 37339 CVE ID:CVE-2009-4138 Linux是一款开放源代码的操作系统。 ohci接口在处理数据长度为零的报文时存在问题,本地攻击者可以利用漏洞对系统进行拒绝服务攻击。 可以打开新1394栈新版本中的任意/dev/fw文件的用户,发送部分ioctls可导致使用ohci 1.0控制器或由于硬件缺陷ohci 1.0模式中使用ohci 1.1控制器的机器崩溃。这可导致fw-,ohci.c中引用空指针。 在那些使用不被列入黑名单的ohci1.1控制器的机器,调用不会发生任何事情,虽然是个缺陷,但不会导致崩溃。 在Red Hat Enterprise...
CVE-2009-4138
CVE-2009-4138 affects Linux kernels with the FireWire OHCI driver (drivers/firewire/ohci.c) prior to 2.6.32-git9. In packet-per-buffer mode, a local user can trigger a NULL pointer dereference via an ioctl associated with receiving an ISO packet with a zero payload-length field, potentially leadi...