14 matches found
Linux Distros Unpatched Vulnerability : CVE-2014-9710
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Btrfs implementation in the Linux kernel before 3.19 does not ensure that the visible xattr state is consistent with a requested replacement, which allows...
SUSE: Security Advisory (SUSE-SU-2019:14089-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2019-1526)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2019:14089-1 Security update for the Linux Kernel
The SUSE Linux Enterprise 11 SP4 kernel version 3.0.101 was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2019-11477: A sequence of SACKs may have been crafted such that one can trigger an integer overflow, leading to a kernel panic. bsc1137586 -...
Security Bulletin: PowerKVM is affected by Linux Kernel vulnerabilities (multiple CVEs)
Summary PowerKVM is affected by several Linux Kernel vulnerabilities multiple CVEs . Vulnerability Details CVEID: CVE-2015-2041 DESCRIPTION: Linux Kernel could allow a local attacker to obtain sensitive information, caused by an information leak in llc2timeouttable. An attacker could exploit this...
Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2017-3597)
The remote Oracle Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2017-3597 advisory. - HID: hid-cypress: validate length of report Greg Kroah-Hartman Orabug: 25891914 CVE-2017-7273 - udf: Remove repeated loads blocksize Jan Kara...
Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2017-3590)
The remote Oracle Linux 6 / 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2017-3590 advisory. - nfsd: check for oversized NFSv2/v3 arguments J. Bruce Fields Orabug: 26366022 CVE-2017-7645 - HID: hid-cypress: validate length of report Greg Kroah-Hartm...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.19.2 - nfsd: check for oversized NFSv2/v3 arguments J. Bruce Fields Orabug: 26366022 CVE-2017-7645 3.8.13-118.19.1 - selinux: quiet the filesystem labeling behavior message Paul Moore Orabug: 25290650 - HID: hid-cypress: validate length of report Greg Kroah-Hartman Orabug:...
Ubuntu: Security Advisory (USN-2662-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu: Security Advisory (USN-2616-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2014-9710
The Btrfs implementation in the Linux kernel before 3.19 does not ensure that the visible xattr state is consistent with a requested replacement, which allows local users to bypass intended ACL settings and gain privileges via standard filesystem operations 1 during an xattr-replacement time...
CVE-2014-9710
The Btrfs implementation in the Linux kernel before 3.19 does not ensure that the visible xattr state is consistent with a requested replacement, which allows local users to bypass intended ACL settings and gain privileges via standard filesystem operations 1 during an xattr-replacement time...
CVE-2014-9710
CVE-2014-9710 affects the Linux kernel’s Btrfs xattr handling prior to 3.19. The vulnerability arises because the visible xattr state may not be consistent with a requested replacement, enabling local attackers to bypass ACLs and gain privileges through standard filesystem operations during an xa...
Ubuntu 14.10 : linux vulnerabilities (USN-2616-1)
Alexandre Oliva reported a race condition flaw in the btrfs file system's handling of extended attributes xattrs. A local attacker could exploit this flaw to bypass ACLs and potentially escalate privileges. CVE-2014-9710 A memory corruption issue was discovered in AES decryption when using the...