13 matches found
Linux Distros Unpatched Vulnerability : CVE-2016-9178
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The getuserasmex macro in arch/x86/include/asm/uaccess.h in the Linux kernel before 4.7.5 does not initialize a certain integer variable, which allows local use...
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2019-1536)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
OracleVM 3.4 : Unbreakable / etc (OVMSA-2017-0056)
The remote OracleVM system is missing necessary patches to address critical security updates : - Revert 'x86/mm: Expand the exception table logic to allow new handling options' Brian Maly Orabug: 25790387 CVE-2016-9644 - Revert 'fix minor infoleak in getuserex' Brian Maly Orabug: 25790387...
[SECURITY] [DLA 772-1] linux security update
Package : linux Version : 3.2.84-1 CVE ID : CVE-2012-6704 CVE-2015-1350 CVE-2015-8962 CVE-2015-8963 CVE-2015-8964 CVE-2016-7097 CVE-2016-7910 CVE-2016-7911 CVE-2016-7915 CVE-2016-8399 CVE-2016-8633 CVE-2016-8645 CVE-2016-8655 CVE-2016-9178 CVE-2016-9555 CVE-2016-9576 CVE-2016-9756 CVE-2016-9793...
USN-3161-3: Linux kernel (Raspberry Pi 2) vulnerabilities
Tilman Schmidt and Sasha Levin discovered a use-after-free condition in the TTY implementation in the Linux kernel. A local attacker could use this to expose sensitive information kernel memory. CVE-2015-8964 It was discovered that the Video For Linux Two v4l2 implementation in the Linux kernel d...
openSUSE Security Update : the Linux Kernel (openSUSE-2016-1428)
The openSUSE Leap 42.1 kernel was updated to 4.1.36 to receive various security and bugfixes. The following security bugs were fixed : - CVE-2016-8655: A race condition in the afpacket packetsetring function could be used by local attackers to crash the kernel or gain privileges bsc1012754. -...
openSUSE: Security Advisory for kernel (openSUSE-SU-2016:3058-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Security update for the Linux Kernel (important)
The openSUSE Leap 42.1 kernel was updated to 4.1.36 to receive various security and bugfixes. The following security bugs were fixed: - CVE-2016-8655: A race condition in the afpacket packetsetring function could be used by local attackers to crash the kernel or gain privileges bsc1012754. -...
CVE-2016-9178
The getuserasmex macro in arch/x86/include/asm/uaccess.h in the Linux kernel before 4.7.5 does not initialize a certain integer variable, which allows local users to obtain sensitive information from kernel stack memory by triggering failure of a getuserex call...
CVE-2016-9178
CVE-2016-9178 affects the Linux kernel prior to 4.7.5. The macro __get_user_asm_ex in arch/x86/include/asm/uaccess.h does not initialize a certain integer variable, allowing local users to obtain sensitive information from kernel stack memory by triggering a failure of a get_user_ex call. Impact ...
CVE-2016-9178
The getuserasmex macro in arch/x86/include/asm/uaccess.h in the Linux kernel before 4.7.5 does not initialize a certain integer variable, which allows local users to obtain sensitive information from kernel stack memory by triggering failure of a getuserex call...
CVE-2016-9644
CVE-2016-9644 involves the Linux kernel, where the __get_user_asm_ex macro in arch/x86/include/asm/uaccess.h, for kernels 4.4.22–4.4.28, uses extended asm statements that are incompatible with the exception table. This misalignment can allow local attackers to obtain root on non-SMEP platforms by...
CVE-2016-9178
The getuserasmex macro in arch/x86/include/asm/uaccess.h in the Linux kernel before 4.7.5 does not initialize a certain integer variable, which allows local users to obtain sensitive information from kernel stack memory by triggering failure of a getuserex call...