Linux Distros Unpatched Vulnerability : CVE-2016-2547

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - sound/core/timer.c in the Linux kernel before 4.4.1 employs a locking approach that does not consider slave timer instances, which allows local users to cause a...

EulerOS Virtualization 3.0.1.0 : kernel (EulerOS-SA-2019-1492)

According to the versions of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - The sndtimerinterrupt function in sound/core/timer.c in the Linux kernel before 4.4.1 does not properly maintain a certain linked...

OracleVM 3.3 : Unbreakable / etc (OVMSA-2018-0231)

The remote OracleVM system is missing necessary patches to address critical security updates : - x86/fpu: Make eager FPU default Mihai Carabas Orabug: 28156176 CVE-2018-3665 - KVM: Fix stack-out-of-bounds read in writemmio Wanpeng Li Orabug: 27951287 CVE-2017-17741 CVE-2017-17741 - xfs: set forma...

Unbreakable Enterprise kernel security update

kernel-uek 3.8.13-118.21.4 - x86/fpu: Make eager FPU default Mihai Carabas Orabug: 28156176 CVE-2018-3665 3.8.13-118.21.3 - KVM: Fix stack-out-of-bounds read in writemmio Wanpeng Li Orabug: 27951287 CVE-2017-17741 CVE-2017-17741 - xfs: set format back to extents if xfsbmapextentstobtree Eric...

Ubuntu 12.04 LTS : linux vulnerabilities (USN-2967-1)

It was discovered that the Linux kernel did not properly enforce rlimits for file descriptors sent over UNIX domain sockets. A local attacker could use this to cause a denial of service. CVE-2013-4312 Ralf Spenneberg discovered that the Aiptek Tablet USB device driver in the Linux kernel did not...

Design/Logic Flaw

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2016-2547, CVE-2016-2548. Reason: This candidate is a duplicate of CVE-2016-2547 and CVE-2016-2548. Notes: All CVE users should reference CVE-2016-2547 and/or CVE-2016-2548 instead of this candidate. All references and description...

CVE-2016-2547

sound/core/timer.c in the Linux kernel before 4.4.1 employs a locking approach that does not consider slave timer instances, which allows local users to cause a denial of service race condition, use-after-free, and system crash via a crafted ioctl call...

CVE-2016-2547

The CVE-2016-2547 issue affects Linux kernel sound/core/timer.c prior to 4.4.1. The root cause is a locking approach that ignores slave timer instances, enabling a local attacker to trigger a denial-of-service via a crafted ioctl (race condition/use-after-free leading to system crash). Public adv...

Ubuntu: Security Advisory (USN-2930-3)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu: Security Advisory (USN-2930-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu: Security Advisory (USN-2930-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu: Security Advisory (USN-2929-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu: Security Advisory (USN-2929-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian Security Advisory DSA 3503-1 (linux - security update)

Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service, information leak or data loss. CVE-2013-4312 Tetsuo Handa discovered that users can use pipes queued on local Unix sockets to allocate an unfair share of kernel memory,...

[SECURITY] [DSA 3503-1] linux security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3503-1 [email protected] https://www.debian.org/security/ Ben Hutchings March 03, 2016 https://www.debian.org/security/faq -...

CVE-2016-2547

sound/core/timer.c in the Linux kernel before 4.4.1 employs a locking approach that does not consider slave timer instances, which allows local users to cause a denial of service race condition, use-after-free, and system crash via a crafted ioctl call...