Lucene search
K

65 matches found

OpenVAS
OpenVAS
added 2016/05/17 12:0 a.m.40 views

CentOS Update for kernel CESA-2016:1033 centos7

Check the version of kernel SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.882493";...

7.8CVSS6.5AI score0.00397EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2016/05/16 7:6 p.m.74 views

USN-2979-4: Linux kernel (Qualcomm Snapdragon) vulnerability

Philip Pettersson discovered that the Linux kernel's ASN.1 DER decoder did not properly process certificate files with tags of indefinite length. A local unprivileged attacker could use this to cause a denial of service system crash or possibly execute arbitrary code with administrative privilege...

7.8CVSS7.3AI score0.00397EPSS
Exploits0
Ubuntu
Ubuntu
added 2016/05/16 7:1 p.m.84 views

USN-2979-3: Linux kernel (Raspberry Pi 2) vulnerability

Philip Pettersson discovered that the Linux kernel's ASN.1 DER decoder did not properly process certificate files with tags of indefinite length. A local unprivileged attacker could use this to cause a denial of service system crash or possibly execute arbitrary code with administrative privilege...

7.8CVSS7.3AI score0.00397EPSS
Exploits0
OSV
OSV
added 2016/05/16 6:54 p.m.4 views

USN-2979-2 linux-lts-xenial vulnerabilities

USN-2979-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.04 LTS. This update provides the corresponding updates for the Linux Hardware Enablement HWE kernel from Ubuntu 16.04 LTS for Ubuntu 14.04 LTS. David Matlack discovered that the Kernel-based Virtual Machine KVM implementation in t...

7.8CVSS7AI score0.00397EPSS
Exploits0References3
Ubuntu
Ubuntu
added 2016/05/16 6:54 p.m.70 views

USN-2979-2: Linux kernel (Xenial HWE) vulnerabilities

USN-2979-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.04 LTS. This update provides the corresponding updates for the Linux Hardware Enablement HWE kernel from Ubuntu 16.04 LTS for Ubuntu 14.04 LTS. David Matlack discovered that the Kernel-based Virtual Machine KVM implementation in t...

7.8CVSS7.2AI score0.00397EPSS
Exploits0
Ubuntu
Ubuntu
added 2016/05/16 6:45 p.m.73 views

USN-2979-1: Linux kernel vulnerabilities

David Matlack discovered that the Kernel-based Virtual Machine KVM implementation in the Linux kernel did not properly restrict variable Memory Type Range Registers MTRR in KVM guests. A privileged user in a guest VM could use this to cause a denial of service system crash in the host, expose...

7.8CVSS7.2AI score0.00397EPSS
Exploits0
Ubuntu
Ubuntu
added 2016/05/16 6:34 p.m.99 views

USN-2978-3: Linux kernel (Raspberry Pi 2) vulnerability

Philip Pettersson discovered that the Linux kernel's ASN.1 DER decoder did not properly process certificate files with tags of indefinite length. A local unprivileged attacker could use this to cause a denial of service system crash or possibly execute arbitrary code with administrative privilege...

7.8CVSS7.3AI score0.00397EPSS
Exploits0
Ubuntu
Ubuntu
added 2016/05/16 5:46 p.m.75 views

USN-2978-2: Linux kernel (Wily HWE) vulnerabilities

USN-2978-1 fixed vulnerabilities in the Linux kernel for Ubuntu 15.10. This update provides the corresponding updates for the Linux Hardware Enablement HWE kernel from Ubuntu 15.10 for Ubuntu 14.04 LTS. David Matlack discovered that the Kernel-based Virtual Machine KVM implementation in the Linux...

7.8CVSS7.2AI score0.00397EPSS
Exploits0
Ubuntu
Ubuntu
added 2016/05/16 5:31 p.m.85 views

USN-2978-1: Linux kernel vulnerabilities

David Matlack discovered that the Kernel-based Virtual Machine KVM implementation in the Linux kernel did not properly restrict variable Memory Type Range Registers MTRR in KVM guests. A privileged user in a guest VM could use this to cause a denial of service system crash in the host, expose...

7.8CVSS7.2AI score0.00397EPSS
Exploits0
Ubuntu
Ubuntu
added 2016/05/16 5:17 p.m.83 views

USN-2976-1: Linux kernel (Utopic HWE) vulnerability

Philip Pettersson discovered that the Linux kernel's ASN.1 DER decoder did not properly process certificate files with tags of indefinite length. A local unprivileged attacker could use this to cause a denial of service system crash or possibly execute arbitrary code with administrative privilege...

7.8CVSS7.3AI score0.00397EPSS
Exploits0
Ubuntu
Ubuntu
added 2016/05/16 5:9 p.m.90 views

USN-2975-2: Linux kernel (Trusty HWE) vulnerability

USN-2975-1 fixed vulnerabilities in the Linux kernel for Ubuntu 14.04 LTS. This update provides the corresponding updates for the Linux Hardware Enablement HWE kernel from Ubuntu 14.04 LTS for Ubuntu 12.04 LTS. Philip Pettersson discovered that the Linux kernel's ASN.1 DER decoder did not properl...

7.8CVSS7.3AI score0.00397EPSS
Exploits0
Ubuntu
Ubuntu
added 2016/05/16 4:45 p.m.65 views

USN-2975-1: Linux kernel vulnerability

Philip Pettersson discovered that the Linux kernel's ASN.1 DER decoder did not properly process certificate files with tags of indefinite length. A local unprivileged attacker could use this to cause a denial of service system crash or possibly execute arbitrary code with administrative privilege...

7.8CVSS7.3AI score0.00397EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2016/05/12 7:58 a.m.6 views

kernel: tags with indefinite length can corrupt pointers in asn1_find_indefinite_length()

A flaw was found in the way the Linux kernel's ASN.1 DER decoder processed certain certificate files with tags of indefinite length. A local, unprivileged user could use a specially crafted X.509 certificate DER file to crash the system or, potentially, escalate their privileges on the system...

7.8CVSS6.8AI score0.00397EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2015/04/20 12:0 a.m.29 views

Fedora 20 : libtasn1-3.8-3.fc20 (2015-5182)

backported fix for stack overflow in DER decoder Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...

10CVSS6.9AI score0.07801EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2015/02/25 12:0 a.m.245 views

RHEL 5 / 6 : Red Hat Satellite IBM Java Runtime (RHSA-2015:0264)

The remote Redhat Enterprise Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2015:0264 advisory. This update corrects several security vulnerabilities in the IBM Java Runtime Environment shipped as part of Red Hat Satellite 5.6. In a...

10CVSS7.1AI score0.99999EPSS
Exploits12References83
RedHat Linux
RedHat Linux
added 2015/02/24 1:44 p.m.4 views

OpenJDK: DER decoder infinite loop (Security, 8059485)

A flaw was found in the way the DER Distinguished Encoding Rules decoder in the Security component in OpenJDK handled negative length values. A specially crafted, DER-encoded input could cause a Java application to enter an infinite loop when decoded...

5CVSS6.6AI score0.05032EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2015/02/24 12:0 a.m.66 views

AIX Java Advisory : java_feb2015_advisory.asc (POODLE)

The version of Java SDK installed on the remote host is affected by the following vulnerabilities : - A man-in-the-middle MitM information disclosure vulnerability known as POODLE. The vulnerability is due to the way SSL 3.0 handles padding bytes when decrypting messages encrypted using block...

10CVSS6.8AI score0.99999EPSS
Exploits12References27
Tenable Nessus
Tenable Nessus
added 2015/02/12 12:0 a.m.50 views

Oracle Java SE 5 < Update 76 / 6 < Update 86 / 7 < Update 73 / 8 < Update 26 Multiple Vulnerabilities

Binary data 8897.prm...

10CVSS5.2AI score0.67234EPSS
Exploits5References10
Tenable Nessus
Tenable Nessus
added 2015/02/06 12:0 a.m.54 views

RHEL 5 / 6 : java-1.5.0-ibm (RHSA-2015:0136)

The remote Redhat Enterprise Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2015:0136 advisory. - ICU: font parsing OOB read OpenJDK 2D, 8055489 CVE-2014-6585 - ICU: font parsing OOB read OpenJDK 2D, 8056276 CVE-2014-6591 - OpenJDK:...

10CVSS7.2AI score0.67234EPSS
Exploits5References21
RedHat Linux
RedHat Linux
added 2015/02/05 7:34 p.m.4 views

OpenJDK: DER decoder infinite loop (Security, 8059485)

A flaw was found in the way the DER Distinguished Encoding Rules decoder in the Security component in OpenJDK handled negative length values. A specially crafted, DER-encoded input could cause a Java application to enter an infinite loop when decoded...

5CVSS6.6AI score0.05032EPSS
Exploits0References5
Rows per page
Query Builder