47 matches found
K91025336: Linux kernel vulnerability CVE-2019-13272
Security Advisory Description In the Linux kernel before 5.1.17, ptracelink in kernel/ptrace.c mishandles the recording of the credentials of a process that wants to create a ptrace relationship, which allows local users to obtain root access by leveraging certain scenarios with a parent-child...
Slackware: Security Advisory (SSA:2019-202-01)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Linux Kernel 5.1.x - (PTRACE_TRACEME) pkexec Local Privilege Escalation Exploit (2)
Exploit Title: Linux Kernel 5.1.x - 'PTRACETRACEME' pkexec Local Privilege Escalation 2 Exploit Author: Ujas Dhami Version: 4.19 - 5.2.1 Platform: Linux Tested on: Ubuntu 19.04 kernel 5.0.0-15-generic Parrot OS 4.5.1 kernel 4.19.0-parrot1-13t-amd64 Kali Linux kernel 4.19.0-kali5-amd64 CVE:...
Linux Kernel 5.1.x PTRACE_TRACEME pkexec Local Privilege Escalation
Exploit Title: Linux Kernel 5.1.x - 'PTRACETRACEME' pkexec Local Privilege Escalation 2 Date: 11/22/21 Exploit Author: Ujas Dhami Version: 4.19 - 5.2.1 Platform: Linux Tested on: Ubuntu 19.04 kernel 5.0.0-15-generic Parrot OS 4.5.1 kernel 4.19.0-parrot1-13t-amd64 Kali Linux kernel...
SUSE: Security Advisory (SUSE-SU-2019:3258-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2019:3232-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2019:3228-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2019:3260-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2019:3261-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CentOS 8 : kernel (CESA-2019:2411)
The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2019:2411 advisory. - kernel: hw: Spectre SWAPGS gadget vulnerability CVE-2019-1125 - kernel: broken permission and object lifetime handling for PTRACETRACEME CVE-2019-132...
Linux PTRACE_TRACEME Local Root
Exploit Title: Ubuntu 16.04.6-Kernel-PTRACETRACEME-allowslocaluserstoobtainrootaccess - Local Author: nu11secur1ty Date: 2020-03-26 Vendor: Ubuntu Linux kernel before 5.1.17 Link: https://github.com/nu11secur1ty/Ubuntu/tree/master/CVE-2019-13272 CVE: CVE-2019-13272 + Credits: Ventsislav Varbanovs...
Linux PTRACE_TRACEME Local Root Exploit
Linux kernel versions starting at 4.10 and below 5.1.7 PTRACETRACEME local root exploit that uses the pkexec technique. Exploit Title: Ubuntu 16.04.6-Kernel-PTRACETRACEME-allowslocaluserstoobtainrootaccess - Local Author: nu11secur1ty Vendor: Ubuntu Linux kernel before 5.1.17 Link:...
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2020-1186)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2019-1926)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLES12 Security Update : kernel (SUSE-SU-2019:3228-1)
This update for the Linux Kernel 4.4.180-94100 fixes several issues. The following security issues were fixed : CVE-2018-20856: Fixed a use-after-free in blkdrainqueue due to an improper error handling bsc1156331. CVE-2019-13272: Fixed a privilege escalation from user to root due to improper...
SUSE SLES12 Security Update : kernel (SUSE-SU-2019:3230-1)
This update for the Linux Kernel 4.4.180-94103 fixes several issues. The following security issues were fixed : CVE-2019-13272: Fixed a privilege escalation from user to root due to improper handling of credentials by leveraging certain scenarios with a parent-child process relationship bsc115632...
SUSE SLES12 Security Update : kernel (SUSE-SU-2019:3260-1)
This update for the Linux Kernel 4.4.121-92109 fixes several issues. The following security issues were fixed : CVE-2018-20856: Fixed a use-after-free in blkdrainqueue due to an improper error handling bsc1156331. CVE-2019-13272: Fixed a privilege escalation from user to root due to improper...
SUSE SLES12 Security Update : kernel (SUSE-SU-2019:3258-1)
This update for the Linux Kernel 4.4.178-9491 fixes several issues. The following security issues were fixed : CVE-2018-20856: Fixed a use-after-free in block/blk-core.c due to improper error handling bsc1156331. CVE-2019-13272: Fixed a privilege escalation from user to root due to improper...
SUSE SLES12 Security Update : kernel (SUSE-SU-2019:2984-1)
The SUSE Linux Enterprise 12 SP2 kernel was updated to receive various security and bugfixes. The following security bugs were fixed : CVE-2018-12207: Untrusted virtual machines on Intel CPUs could exploit a race condition in the Instruction Fetch Unit of the Intel CPU to cause a Machine Exceptio...
Linux Polkit - pkexec helper PTRACE_TRACEME local root (Metasploit)
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Linux Polkit pkexec helper PTRACETRACEME local root exploit', 'Description' = %q This module exploits an issue in ptracelink in kernel/ptrace.c...