13 matches found
Oracle: Security Advisory (ELSA-2010-2008)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Oracle Linux 5 : Unbreakable enterprise kernel (ELSA-2010-2008)
The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2010-2008 advisory. - fs xfs: always use iget in bulkstat Dave Chinner CVE-2010-2943 - net net sched: fix some kernel memory leaks Eric Dumazet CVE-2010-2942 Tenable has...
CentOS 5 : kernel (CESA-2010:0723)
Updated kernel packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed...
VMSA-2011-0012 : VMware ESXi and ESX updates to third-party libraries and ESX Service Console
a. ESX third-party update for Service Console kernel This update takes the console OS kernel package to kernel-2.6.18-238.9.1 which resolves multiple security issues. The Common Vulnerabilities and Exposures project cve.mitre.org has assigned the names CVE-2010-1083, CVE-2010-2492, CVE-2010-2798,...
VMSA-2011-0012:VMware ESXi and ESX updates to third party libraries and ESX Service Console
VMSA-2011-0012.3 VMware ESX third party updates for Service Console packages glibc and dhcp VMware Security Advisory VMware Security Advisory Advisory ID: VMSA-2011-0012.3 VMware Security Advisory Synopsis: VMware ESX third party updates for Service Console packages glibc and dhcp VMware Security...
SuSE 11.1 Security Update : Linux kernel (SAT Patch Numbers 4039 / 4042 / 4043)
The SUSE Linux Enterprise 11 Service Pack 1 kernel was updated to 2.6.32.29 and fixes various bugs and security issues. - The ax25getname function in net/ax25/afax25.c in the Linux kernel did not initialize a certain structure, which allowed local users to obtain potentially sensitive information...
Ubuntu: Security Advisory (USN-1083-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 6.06 LTS : linux-source-2.6.15 vulnerabilities (USN-1057-1)
Dave Chinner discovered that the XFS filesystem did not correctly order inode lookups when exported by NFS. A remote attacker could exploit this to read or write disk blocks that had changed file assignment or had become unlinked, leading to a loss of privacy. CVE-2010-2943 Dan Rosenberg discover...
Ubuntu: Security Advisory (USN-1057-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-1057-1: Linux kernel vulnerabilities
Dave Chinner discovered that the XFS filesystem did not correctly order inode lookups when exported by NFS. A remote attacker could exploit this to read or write disk blocks that had changed file assignment or had become unlinked, leading to a loss of privacy. CVE-2010-2943 Dan Rosenberg discover...
USN-1041-1: Linux kernel vulnerabilities
Louis Rilling and Matthieu Fertré reported a use after free error in the Linux kernel's futexwait function. A local user could exploit this flaw to cause a denial of service system crash or possibly gain privileges via a specially crafted application. CVE-2014-0205 Ben Hawkes discovered that the...
Unbreakable enterprise kernel security update
2.6.32-100.20.1.el5 - fs xfs: return inode fork offset in bulkstat for fsr Dave Chinner - fs xfs: always use iget in bulkstat Dave Chinner CVE-2010-2943 - fs xfs: validate untrusted inode numbers during lookup Dave Chinner CVE-2 010-2943 - fs xfs: rename XFSIGETBULKSTAT to XFSIGETUNTRUSTED Dave...
CVE-2010-2943
CVE-2010-2943 affects the Linux kernel's XFS implementation up to version 2.6.34, where inode allocation B-trees are not consulted before reading inode buffers. This allows remote authenticated users to read unlinked files or read/overwrite disk blocks that were previously allocated to an unlinke...