34 matches found
PT-2025-33104
Name of the Vulnerable Software and Affected Versions: Helm versions prior to 3.18.5 Description: Helm, a package manager for Kubernetes Charts, is susceptible to a denial-of-service issue. A crafted JSON Schema file can cause Helm to exhaust available memory, leading to an out-of-memory OOM...
SUSE CVE-2011-2479
The Linux kernel before 2.6.39 does not properly create transparent huge pages in response to a MAPPRIVATE mmap system call on /dev/zero, which allows local users to cause a denial of service system crash via a crafted application...
SUSE CVE-2014-7843
The clearuser function in arch/arm64/lib/clearuser.S in the Linux kernel before 3.17.4 on the ARM64 platform allows local users to cause a denial of service system crash by reading one byte beyond a /dev/zero page boundary...
UBUNTU-CVE-2020-16127
An Ubuntu-specific modification to AccountsService in versions before 0.6.55-0ubuntu13.2, among other earlier versions, would perform unbounded read operations on user-controlled /.pamenvironment files, allowing an infinite loop if /dev/zero is symlinked to this location...
Denial Of Service (DoS)
The kernel packages is vulnerable to denial of service DoS.It was found that an mmap call with the MAPPRIVATE flag on "/dev/zero" would create transparent hugepages and trigger a certain robustness check. A local, unprivileged user could use this flaw to cause a denial of service...
Linux 3.16.0-28 Integer Overflow
Title: Linux kernel 3.16.0-28 - Integer overflow + Credits / Discovery: Nassim Asrir + Author Email: [email protected] || https://www.linkedin.com/in/nassim-asrir-b73a57122/ + Author Company: Henceforth + CVE: CVE-2017-7286 Vendor: =============== https://www.kernel.org/ Vulnerability Type:...
Arbitrary File Read And Denial Of Service (DoS)
fury-adapter-swagger is vulnerable to arbitrary file reads off the file system and denial of service DoS attacks. This could be used to retrieve sensitive data, or fill the entire available memory and cause a denial of service by reading/dev/zero...
DEBIAN-CVE-2014-7843
The clearuser function in arch/arm64/lib/clearuser.S in the Linux kernel before 3.17.4 on the ARM64 platform allows local users to cause a denial of service system crash by reading one byte beyond a /dev/zero page boundary...
UBUNTU-CVE-2014-7843
The clearuser function in arch/arm64/lib/clearuser.S in the Linux kernel before 3.17.4 on the ARM64 platform allows local users to cause a denial of service system crash by reading one byte beyond a /dev/zero page boundary...
PT-2014-8309 · Linux +2 · Linux Kernel +2
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 3.17.4 Description: The issue allows local users to cause a denial of service, resulting in a system crash, by reading one byte beyond a /dev/zero page boundary. This is due to a problem in the clear user...
linux/x86 setuid(0) and dd of=/dev/sda if=/dev/zero shellcode 74 bytes
Exploit for linux/x86 platform in category shellcode ====================================================================== linux/x86 setuid0 and dd of=/dev/sda if=/dev/zero shellcode 74 bytes ====================================================================== / Title : Linux x86 shellcode...
Code injection
The Chroot server in rMake 1.0.11 creates a /dev/zero device file with read/write permissions for the rMake user and the same minor device number as /dev/port, which might allow local users to gain root privileges...
CVE-2007-5194
The Chroot server in rMake 1.0.11 creates a /dev/zero device file with read/write permissions for the rMake user and the same minor device number as /dev/port, which might allow local users to gain root privileges...
RMake privilege escalation
/dev/zero device works as /dev/port in chrooted environment...