Oracle: Security Advisory (ELSA-2013-2525)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Security fix for the ALT Linux 7 package kernel-image-el-def version 2.6.32-alt13

Nov. 24, 2013 Led 2.6.32-alt13 - 2.6.32-431.el6: + CVE-2013-0228 + CVE-2013-0268 + CVE-2013-0343 + CVE-2013-0349 + CVE-2013-0871 + CVE-2013-0913 + CVE-2013-1767 + CVE-2013-1773 + CVE-2013-1774 + CVE-2013-1792 + CVE-2013-1796 + CVE-2013-1797 + CVE-2013-1798 + CVE-2013-1826 + CVE-2013-1827 +...

Important: Red Hat Security Advisory: Red Hat Enterprise Linux 6 kernel update

Updated kernel packages that fix multiple security issues, address several hundred bugs, and add numerous enhancements are now available as part of the ongoing support and maintenance of Red Hat Enterprise Linux version 6. This is the fifth regular update. The Red Hat Security Response Team has...

Oracle Linux 5 : kernel (ELSA-2013-0747)

The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2013-0747 advisory. - virt xen-netback: backports Andrew Jones 910884 910885 CVE-2013-0216 - virt xen-netback: netifschedulable should take a netif Andrew Jones 910884...

Oracle Linux 5 / 6 : Unbreakable Enterprise kernel Security (ELSA-2013-2525)

The remote Oracle Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2013-2525 advisory. - net: fix incorrect credentials passing Linus Torvalds Orabug: 16836975 CVE-2013-1979 - tg3: fix length overflow in VPD firmware parsing Kees Cook...

Debian DSA-2668-1 : linux-2.6 - privilege escalation/denial of service/information leak

Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service, information leak or privilege escalation. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2012-2121 Benjamin Herrenschmidt and Jason Baron discovered...

DSA-2668-1 linux-2.6 - several

Bulletin has no description...

Debian Security Advisory DSA 2668-1 (linux-2.6 - privilege escalation/denial of service/information leak)

Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service, information leak or privilege escalation. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2012-2121 Benjamin Herrenschmidt and Jason Baron discovered issu...

Ubuntu: Security Advisory (USN-1805-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-1805-1: Linux kernel vulnerabilities

Mathias Krause discovered an information leak in the Linux kernel's getsockname implementation for Logical Link Layer llc sockets. A local user could exploit this flaw to examine some of the kernel's stack memory. CVE-2012-6542 Mathias Krause discovered information leaks in the Linux kernel's...

kernel security and bug fix update

kernel 2.6.18-348.4.1 - virt xen-netback: backports Andrew Jones 910884 910885 CVE-2013-0216 - virt xen-netback: netifschedulable should take a netif Andrew Jones 910884 910885 CVE-2013-0216 - virt pciback: rate limit error mess from pcibackenablemsi Igor Mammedov 910876 910877 CVE-2013-0231 - ne...

CVE-2012-6542

The llcuigetname function in net/llc/afllc.c in the Linux kernel before 3.6 has an incorrect return value in certain circumstances, which allows local users to obtain sensitive information from kernel stack memory via a crafted application that leverages an uninitialized pointer argument...

CVE-2012-6542

The llcuigetname function in net/llc/afllc.c in the Linux kernel before 3.6 has an incorrect return value in certain circumstances, which allows local users to obtain sensitive information from kernel stack memory via a crafted application that leverages an uninitialized pointer argument...

BELL-CVE-2012-6542 CVE-2012-6542 does not affect BellSoft software

Bulletin has no description...

CVE-2012-6542

The CVE-2012-6542 issue affects the Linux kernel prior to 3.6. It involves the function llc_ui_getname in net/llc/af_llc.c returning an incorrect value under certain circumstances, enabling local users to read sensitive data from kernel stack memory via an application that uses an uninitialized p...

CVE-2012-6542

The llcuigetname function in net/llc/afllc.c in the Linux kernel before 3.6 has an incorrect return value in certain circumstances, which allows local users to obtain sensitive information from kernel stack memory via a crafted application that leverages an uninitialized pointer argument...

UBUNTU-CVE-2012-6542

The llcuigetname function in net/llc/afllc.c in the Linux kernel before 3.6 has an incorrect return value in certain circumstances, which allows local users to obtain sensitive information from kernel stack memory via a crafted application that leverages an uninitialized pointer argument...

USN-1648-1: Linux kernel vulnerabilities

Brad Spengler discovered a flaw in the Linux kernel's uname system call. An unprivileged user could exploit this flaw to read kernel stack memory. CVE-2012-0957 Rodrigo Freire discovered a flaw in the Linux kernel's TCP illinois congestion control algorithm. A local attacker could use this to cau...

Ubuntu: Security Advisory (USN-1610-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-1610-1: Linux kernel vulnerability

Pablo Neira Ayuso discovered a flaw in the credentials of netlink messages. An unprivileged local attacker could exploit this by getting a netlink based service, that relies on netlink credentials, to perform privileged actions. CVE-2012-3520 Mathias Krause discovered information leak in the Linu...