Linux Distros Unpatched Vulnerability : CVE-2026-35361

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The mknod utility in uutils coreutils fails to handle security labels atomically by creating device nodes before setting the SELinux context. If labeling fails,...

Linux Distros Unpatched Vulnerability : CVE-2026-35358

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The cp utility in uutils coreutils, when performing recursive copies -R, incorrectly treats character and block device nodes as stream sources rather than...

uutils coreutils 安全漏洞

uutils coreutils is a cross-platform core command-line toolset developed by Uutils. There is a security vulnerability in uutils coreutils. This vulnerability arises from the process of creating device nodes using mknod and setting SELinux contexts. As a result, nodes with incorrect markings may b...

EUVD-2009-1073

Malware in sbrugna...

EUVD-2015-0809

Malware in sbrugna...

EUVD-2001-1395

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2024-50012

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - cpufreq: Avoid a bad reference count on CPU node In the parseperfdomain function, if the call to ofparsephandlewithargs returns an error, then the reference to...

CVE-2024-58034

CVE-2024-58034 in the Linux kernel fixes an OF node reference bug in memory: tegra20-emc. The issue arises when tegra_emc_find_node_by_ram_code() releases some device nodes while still in use, potentially causing use-after-free (UAF). The description states that the emc-tables node is a child wit...

SUSE CVE-2009-1072

nfsd in the Linux kernel before 2.6.28.9 does not drop the CAPMKNOD capability before handling a user request in a thread, which allows local users to create device nodes, as demonstrated on a filesystem that has been exported with the rootsquash option...

CVE-2020-10781

A flaw was found in the ZRAM kernel module, where a user with a local account and the ability to read the /sys/class/zram-control/hotadd file can create ZRAM device nodes in the /dev/ directory. This read allocates kernel memory and is not accounted for a user that triggers the creation of that...

Google Android Access Privilege Control Vulnerability

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. An access control vulnerability exists in Yocto in Android, which stems from the program not enforcing proper access control. An attacker could exploit the vulnerability to cause...

CVE-2018-11956

In all android releasesAndroid for MSM, Firefox OS for MSM, QRD Android from CAF using the linux kernel, improper mounting lead to device node and executable to be run from /dsp/ which presents a potential security issue...

CVE-2015-0796

In open buildservice 2.6 before 2.6.3, 2.5 before 2.5.7 and 2.4 before 2.4.8 the source service patch application could generate non-standard files like symlinks or device nodes, which could allow buildservice users to break of confinement or cause denial of service attacks on the source service...

Low: Red Hat Security Advisory: busybox security and bug fix update

Updated busybox packages that fix one security issue and several bugs are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

GLSA-201304-01 : NVIDIA Drivers: Privilege escalation

The remote host is affected by the vulnerability described in GLSA-201304-01 NVIDIA Drivers: Privilege escalation Two vulnerabilities have been discovered in NVIDIA drivers: A vulnerability has been found in the way NVIDIA drivers handle read/write access to GPU device nodes, allowing access to...

NVIDIA Drivers: Privilege escalation

Background The NVIDIA drivers provide X11 and GLX support for NVIDIA graphic boards. Description Two vulnerabilities have been discovered in NVIDIA drivers: A vulnerability has been found in the way NVIDIA drivers handle read/write access to GPU device nodes, allowing access to arbitrary system...

GLSA-201206-19 : NVIDIA Drivers: Privilege escalation

The remote host is affected by the vulnerability described in GLSA-201206-19 NVIDIA Drivers: Privilege escalation A vulnerability has been found in the way NVIDIA drivers handle read/write access to GPU device nodes, allowing access to arbitrary system memory locations. NOTE: Exposure to this...

kernel: nfsd should drop CAP_MKNOD for non-root

nfsd in the Linux kernel before 2.6.28.9 does not drop the CAPMKNOD capability before handling a user request in a thread, which allows local users to create device nodes, as demonstrated on a filesystem that has been exported with the rootsquash option...

kernel: nfsd should drop CAP_MKNOD for non-root

nfsd in the Linux kernel before 2.6.28.9 does not drop the CAPMKNOD capability before handling a user request in a thread, which allows local users to create device nodes, as demonstrated on a filesystem that has been exported with the rootsquash option...

CVE-2009-1072

nfsd in the Linux kernel before 2.6.28.9 does not drop the CAPMKNOD capability before handling a user request in a thread, which allows local users to create device nodes, as demonstrated on a filesystem that has been exported with the rootsquash option...