Denial Of Service (DoS)

kernel is vulnerable to denial of service DoS. The vulnerability exists as the fix for CVE-2011-2482 provided by RHSA-2011:1212 introduced a regression: on systems that do not have Security-Enhanced Linux SELinux in Enforcing mode, a socket lock race could occur between sctprcv and sctpaccept. A...

VMware ESX / ESXi Multiple Vulnerabilities (VMSA-2012-0006) (remote check)

The remote VMware ESX / ESXi host is missing a security-related patch. It is, therefore, affected by multiple vulnerabilities, including remote code execution vulnerabilities, in the following components : - Kernel - krb5 telnet daemon %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

Race condition

Race condition in the sctprcv function in net/sctp/input.c in the Linux kernel before 2.6.29 allows remote attackers to cause a denial of service system hang via SCTP packets. NOTE: in some environments, this issue exists because of an incomplete fix for CVE-2011-2482...

CVE-2011-2482

Mode C (Normal, details available) CVE-2011-2482 is referenced in connected documentation tied to MiracleLinux 3: kernel-2.6.18-274.2.AXS3. The vulnerability affects the Linux kernel as used by that distribution, and stems from a Red Hat patch to the sctp_sock_migrate function in net/sctp/socket....

CVE-2011-4348

Technical details for CVE-2011-4348 are not publicly provided in the connected documents. The material references the CVE in advisories but does not describe affected products, versions, root causes, or fixes. Monitor for updates.

RHEL 5 : kernel (RHSA-2011:1813)

The remote Redhat Enterprise Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2011:1813 advisory. - kernel: sctp dos CVE-2011-2482 - kernel: rpc task leak after flocking NFS share CVE-2011-2491 - kernel: /proc/PID/io infoleak CVE-2011-249...

VMSA-2012-0006 VMware ESXi and ESX address several security issues

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ----------------------------------------------------------------------- VMware Security Advisory Advisory ID: VMSA-2012-0006 Synopsis: VMware ESXi and ESX address several security issues Issue date: 2012-03-29 Updated on: 2012-03-29 initial advisory C...

VMSA-2012-0006 : VMware Workstation, ESXi, and ESX address several security issues

a. VMware ROM Overwrite Privilege Escalation A flaw in the way port-based I/O is handled allows for modifying Read-Only Memory that belongs to the Virtual DOS Machine. Exploitation of this issue may lead to privilege escalation on Guest Operating Systems that run Windows 2000, Windows XP 32-bit,...

CentOS 5 : kernel (CESA-2012:0007)

Updated kernel packages that fix multiple security issues, several bugs, and add one enhancement are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores,...

RHEL 5 : kernel (RHSA-2011:1212)

The remote Redhat Enterprise Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2011:1212 advisory. - kernel: sctp dos CVE-2011-2482 - kernel: rpc task leak after flocking NFS share CVE-2011-2491 - kernel: /proc/PID/io infoleak CVE-2011-249...