How to Make the Provisioning Services Server Client Coexist with Third-party Network Drivers

This article describes how to run the Provisioning Server client on a target device along with third-party network applications that also occupy the network device driver stack. Background In the Windows Driver Model WDM, systems manage a device through a linked stack of layered device drivers. T...

LSN-0091-1: Kernel Live Patch Security Notice

It was discovered that a race condition existed in the memory address space accounting implementation in the Linux kernel, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code.CVE-2022-41222 Sönke...

LSN-0090-1: Kernel Live Patch Security Notice

David Bouman discovered that the netfilter subsystem in the Linux kernel did not properly validate passed user register indices. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. CVE-2022-1015 David Bouman and Billy Jheng Bing Jhong discovered that a...

Ubuntu: Security Advisory (USN-5700-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-5700-1: Linux kernel vulnerabilities

David Bouman and Billy Jheng Bing Jhong discovered that a race condition existed in the iouring subsystem in the Linux kernel, leading to a use- after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2022-2602...

USN-4226-1: Linux kernel vulnerabilities

Michael Hanselmann discovered that the CIFS implementation in the Linux kernel did not sanitize paths returned by an SMB server. An attacker controlling an SMB server could use this to overwrite arbitrary files. CVE-2019-10220 It was discovered that a heap-based buffer overflow existed in the...

Ubuntu 18.04 LTS : Linux kernel vulnerabilities (USN-4226-1)

The remote Ubuntu 18.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4226-1 advisory. Michael Hanselmann discovered that the CIFS implementation in the Linux kernel did not sanitize paths returned by an SMB server. An attacker controlling ...

Ubuntu: Security Advisory (USN-4211-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-4211-1: Linux kernel vulnerabilities

Zhipeng Xie discovered that an infinite loop could be triggered in the CFS Linux kernel process scheduler. A local attacker could possibly use this to cause a denial of service. CVE-2018-20784 Nicolas Waisman discovered that the WiFi driver stack in the Linux kernel did not properly validate SSID...

USN-4210-1: Linux kernel vulnerabilities

It was discovered that a buffer overflow existed in the 802.11 Wi-Fi configuration interface for the Linux kernel when handling beacon settings. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2019-16746 Nicolas Waisman discovered...

USN-4208-1: Linux kernel vulnerabilities

Jann Horn discovered that the OverlayFS and ShiftFS Drivers in the Linux kernel did not properly handle reference counting during memory mapping operations when used in conjunction with AUFS. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary...

Intel QuickAssist Technology for Linux Access Control Error Vulnerability

Intel QuickAssist Technology for Linux is a Linux-based data management technology from Intel Corporation that enhances the security and compression of dynamic and static data in cloud, network, big data and storage applications. An Access Control Error vulnerability exists in the driver stack in...

Improper access control

Insufficient access control in driver stack for Intel QuickAssist Technology for Linux before version 4.2 may allow an unprivileged user to potentially disclose information via local access...

CVE-2018-12193

CVE-2018-12193 describes an insufficient access control in the Intel QuickAssist Technology (QAT) Linux driver stack . The vulnerability permits an unprivileged local user to potentially disclose information. Affected software is the Intel QAT Linux driver prior to version 4.2. The description in...

CVE-2018-12193

Insufficient access control in driver stack for Intel QuickAssist Technology for Linux before version 4.2 may allow an unprivileged user to potentially disclose information via local access...

BIOS Boots What? Finding Evil in Boot Code at Scale!

The second issue is that reverse engineering all boot records is impractical. Given the job of determining if a single system is infected with a bootkit, a malware analyst could acquire a disk image and then reverse engineer the boot bytes to determine if anything malicious is present in the boot...

SuSE 10 Security Update : Intel i810 chips (ZYPP Patch Number 4728)

The drm i915 component in the kernel before 2.6.22.2, when used with i965G and later chips ets, allows local users with access to an X11 session and Direct Rendering Manager DRM t o write to arbitrary memory locations and gain privileges via a crafted batchbuffer. This update also provides the...