Lucene search
K

19 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2017-1000370

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The offset2lib patch as used in the Linux Kernel contains a vulnerability that allows a PIE binary to be execve'ed with 1GB of arguments or environmental string...

7.8CVSS6.2AI score0.02428EPSS
Exploits9References3
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.29 views

Mageia: Security Advisory (MGASA-2017-0261)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.8AI score0.03763EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2020/06/08 12:0 a.m.66 views

OracleVM 3.4 : Unbreakable / etc (OVMSA-2020-0020) (Stack Clash)

The remote OracleVM system is missing necessary patches to address critical security updates : - Input: ff-memless - kill timer in destroy Oliver Neukum Orabug: 31213691 CVE-2019-19524 - libertas: Fix two buffer overflows at parsing bss descriptor Wen Huang Orabug: 31351307 CVE-2019-14896...

10CVSS6.7AI score0.08667EPSS
Exploits11References15
Oracle linux
Oracle linux
added 2020/06/03 12:0 a.m.112 views

Unbreakable Enterprise kernel security update

4.1.12-124.39.5 - Input: ff-memless - kill timer in destroy Oliver Neukum Orabug: 31213691 CVE-2019-19524 - libertas: Fix two buffer overflows at parsing bss descriptor Wen Huang Orabug: 31351307 CVE-2019-14896 CVE-2019-14897 CVE-2019-14897 - binfmtelf: use ELFETDYNBASE only for PIE Kees Cook...

10CVSS0.1AI score0.08667EPSS
Exploits11
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.40 views

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2019-1536)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.2AI score0.13378EPSS
Exploits16References2
Debian
Debian
added 2017/09/20 9:35 p.m.41 views

[SECURITY] [DSA 3981-1] linux security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3981-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso September 20, 2017 https://www.debian.org/security/faq -...

8.8CVSS9AI score0.20797EPSS
Exploits51
Debian
Debian
added 2017/09/20 9:35 p.m.87 views

[SECURITY] [DSA 3981-1] linux security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3981-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso September 20, 2017 https://www.debian.org/security/faq -...

7.7CVSS1.1AI score0.20797EPSS
Exploits51
Tenable Nessus
Tenable Nessus
added 2017/07/17 12:0 a.m.37 views

Fedora 26 : kernel (2017-d3ed702fe4) (Stack Clash)

The 4.11.6 update contains a number of important fixes across the tree, including the recently announced 'stack clash' Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and...

7.8CVSS6.8AI score0.05186EPSS
Exploits17References6
0day.today
0day.today
added 2017/06/29 12:0 a.m.137 views

Linux Kernel (Debian 7/8/9/10 / Fedora 23/24/25 / CentOS 5.3/5.11/6.0/6.8/7.2.1511) - ldso_hwcap Loc

Exploit for linux platform in category local exploits / Linuxldsohwcap.c for CVE-2017-1000366, CVE-2017-1000370 Copyright C 2017 Qualys, Inc. myimportanthwcaps adapted from elf/dl-hwcaps.c, part of the GNU C Library: Copyright C 2012-2017 Free Software Foundation, Inc. This program is free...

4.4CVSS5.6AI score0.02733EPSS
Exploits24
Circl
Circl
added 2017/06/28 12:0 a.m.13 views

CVE-2017-1000370

creationtimestamp| type| source ---|---|--- 2017-06-28 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/42274 2017-06-28 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/42273...

7.8CVSS6.7AI score0.02253EPSS
Exploits6References2
exploitpack
exploitpack
added 2017/06/28 12:0 a.m.74 views

Linux Kernel - offset2lib Stack Clash

Linux Kernel - offset2lib Stack Clash / Linuxoffset2lib.c for CVE-2017-1000370 and CVE-2017-1000371 Copyright C 2017 Qualys, Inc. This program is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation,...

7.2CVSS0.2AI score0.02428EPSS
Exploits9
Exploit DB
Exploit DB
added 2017/06/28 12:0 a.m.1517 views

Linux Kernel (Debian 7/8/9/10 / Fedora 23/24/25 / CentOS 5.3/5.11/6.0/6.8/7.2.1511) - 'ldso_hwcap Stack Clash' Local Privilege Escalation

/ Linuxldsohwcap.c for CVE-2017-1000366, CVE-2017-1000370 Copyright C 2017 Qualys, Inc. myimportanthwcaps adapted from elf/dl-hwcaps.c, part of the GNU C Library: Copyright C 2012-2017 Free Software Foundation, Inc. This program is free software: you can redistribute it and/or modify it under the...

7.8CVSS7.3AI score0.02733EPSS
Exploits17
Exploit DB
Exploit DB
added 2017/06/28 12:0 a.m.145 views

Linux Kernel - 'offset2lib' Stack Clash

/ Linuxoffset2lib.c for CVE-2017-1000370 and CVE-2017-1000371 Copyright C 2017 Qualys, Inc. This program is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation, either version 3 of the License, or a...

7.8CVSS7.8AI score0.02428EPSS
Exploits9
OSV
OSV
added 2017/06/19 4:29 p.m.11 views

CVE-2017-1000370

The offset2lib patch as used in the Linux Kernel contains a vulnerability that allows a PIE binary to be execve'ed with 1GB of arguments or environmental strings then the stack occupies the address 0x80000000 and the PIE binary is mapped above 0x40000000 nullifying the protection of the offset2li...

7.8CVSS7.4AI score0.02253EPSS
Exploits6References6
NVD
NVD
added 2017/06/19 4:29 p.m.31 views

CVE-2017-1000370

The offset2lib patch as used in the Linux Kernel contains a vulnerability that allows a PIE binary to be execve'ed with 1GB of arguments or environmental strings then the stack occupies the address 0x80000000 and the PIE binary is mapped above 0x40000000 nullifying the protection of the offset2li...

7.8CVSS7.8AI score0.02253EPSS
Exploits6References6
Prion
Prion
added 2017/06/19 4:29 p.m.36 views

Design/Logic Flaw

The offset2lib patch as used by the Linux Kernel contains a vulnerability, if RLIMITSTACK is set to RLIMINFINITY and 1 Gigabyte of memory is allocated the maximum under the 1/4 restriction then the stack will be grown down to 0x80000000, and as the PIE binary is mapped above 0x80000000 the minimu...

7.2CVSS7.4AI score0.02428EPSS
Exploits9References6Affected Software1
Debian CVE
Debian CVE
added 2017/06/19 4:0 p.m.35 views

CVE-2017-1000370

The offset2lib patch as used in the Linux Kernel contains a vulnerability that allows a PIE binary to be execve'ed with 1GB of arguments or environmental strings then the stack occupies the address 0x80000000 and the PIE binary is mapped above 0x40000000 nullifying the protection of the offset2li...

7.8CVSS5.8AI score0.02253EPSS
Exploits6
CVE
CVE
added 2017/06/19 4:0 p.m.180 views

CVE-2017-1000370

CVE-2017-1000370 affects the Linux kernel (4.11.5 and earlier) on i386. The offset2lib patch vulnerability lets a PIE binary be execve’d with an enormous 1 GB argument/environment list, causing the stack to occupy 0x80000000 and the PIE binary to be mapped above 0x40000000, bypassing the patch’s ...

7.8CVSS7.3AI score0.02253EPSS
Exploits6References6Affected Software1
UbuntuCve
UbuntuCve
added 2017/06/19 3:0 p.m.49 views

CVE-2017-1000370

The offset2lib patch as used in the Linux Kernel contains a vulnerability that allows a PIE binary to be execve'ed with 1GB of arguments or environmental strings then the stack occupies the address 0x80000000 and the PIE binary is mapped above 0x40000000 nullifying the protection of the offset2li...

7.8CVSS6.7AI score0.02253EPSS
Exploits6References2
Rows per page
Query Builder