14 matches found
Linux Distros Unpatched Vulnerability : CVE-2017-16535
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The usbgetbosdescriptor function in drivers/usb/core/config.c in the Linux kernel before 4.13.10 allows local users to cause a denial of service out-of-bounds...
SUSE: Security Advisory (SUSE-SU-2017:3249-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.20.3 - gre: fix a possible skb leak Eric Dumazet Orabug: 26403972 CVE-2017-9074 - ipv6: Fix leak in ipv6gsosegment. David S. Miller Orabug: 26403972 CVE-2017-9074 - ipv6: xfrm: Handle errors reported by xfrm6find1stfragopt Ben Hutchings Orabug: 26403972 CVE-2017-9074 - ipv6:...
Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2018-4001)
The remote Oracle Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2018-4001 advisory. - USB: serial: console: fix use-after-free after failed setup Johan Hovold Orabug: 27206830 CVE-2017-16525 - uwb: properly check kthreadrun return...
Unbreakable Enterprise kernel security update
4.1.12-112.14.2 - fuse: Call endqueuedrequests after releasing fc-lock in fusedevrelease Ashish Samant Orabug: 26431550 - rds: Fix inaccurate accounting of unsignaled wrs in rdsibxmitrdma Hakon Bugge Orabug: 27097105 - rds: Fix inaccurate accounting of unsignaled wrs Hakon Bugge Orabug: 27097105 ...
SUSE SLES11 Security Update : kernel (SUSE-SU-2017:3265-1) (KRACK)
The SUSE Linux Enterprise 11 SP4 kernel was updated to receive various security and bugfixes. The following security bugs were fixed : - CVE-2017-16649: The usbnetgenericcdcbind function in drivers/net/usb/cdcether.c in the Linux kernel allowed local users to cause a denial of service...
SUSE SLES12 Security Update : kernel (SUSE-SU-2017:3249-1) (Dirty COW)
The SUSE Linux Enterprise 12 kernel was updated to 3.12.61 to receive various security and bugfixes. The following security bugs were fixed : - CVE-2017-16939: The XFRM dump policy implementation in net/xfrm/xfrmuser.c in the Linux kernel allowed local users to gain privileges or cause a denial o...
SUSE SLES12 Security Update : kernel (SUSE-SU-2017:3210-1) (Dirty COW)
The SUSE Linux Enterprise 12 SP1 kernel was updated to receive various security and bugfixes. The following security bugs were fixed : - CVE-2017-16939: The XFRM dump policy implementation in net/xfrm/xfrmuser.c in the Linux kernel allowed local users to gain privileges or cause a denial of servi...
SUSE-SU-2017:3210-1 Security update for the Linux Kernel
The SUSE Linux Enterprise 12 SP1 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2017-16939: The XFRM dump policy implementation in net/xfrm/xfrmuser.c in the Linux kernel allowed local users to gain privileges or cause a denial of servic...
Ubuntu 14.04 LTS : Linux kernel (AWS) vulnerabilities (USN-3485-3)
The remote Ubuntu 14.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-3485-3 advisory. It was discovered that a race condition existed in the ALSA subsystem of the Linux kernel when creating and deleting a port via ioctl. A local attacker...
USN-3485-1: Linux kernel vulnerabilities
It was discovered that a race condition existed in the ALSA subsystem of the Linux kernel when creating and deleting a port via ioctl. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2017-15265 Eric Biggers discovered that the key...
Ubuntu 16.04 LTS : Linux kernel vulnerabilities (USN-3485-1)
The remote Ubuntu 16.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-3485-1 advisory. It was discovered that a race condition existed in the ALSA subsystem of the Linux kernel when creating and deleting a port via ioctl. A local attacker...
CVE-2017-16535
The usbgetbosdescriptor function in drivers/usb/core/config.c in the Linux kernel before 4.13.10 allows local users to cause a denial of service out-of-bounds read and system crash or possibly have unspecified other impact via a crafted USB device...
CVE-2017-16535
CVE-2017-16535 affects the Linux kernel up to version 4.13.9, where usb_get_bos_descriptor in drivers/usb/core/config.c improperly handles crafted USB devices, enabling a local attacker to trigger an out-of-bounds read that can cause denial of service or a system crash. The issue stems from readi...