[SECURITY] Fedora 13 Update: hplip-3.10.9-14.fc13

The Hewlett-Packard Linux Imaging and Printing Project provides drivers for HP printers and multi-function peripherals...

CVE-2011-0636

The CVE-2011-0636 entry/issue affects NVIDIA CUDA Toolkit 3.2 developer drivers for Linux (260.19.26) and possibly other versions, where the functions cudaHostAlloc and cuMemHostAlloc do not initialize pinned memory. This can allow local users to read potentially sensitive memory (e.g., file frag...

CVE-2010-2743

The kernel-mode drivers in Microsoft Windows XP SP3 do not properly perform indexing of a function-pointer table during the loading of keyboard layouts from disk, which allows local users to gain privileges via a crafted application, as demonstrated in the wild in July 2010 by the Stuxnet worm, a...

CVE-2010-4263

The CVE-2010-4263 issue involves the Intel igb driver (drivers/net/igb/igb_main.c) in the Linux kernel and its handling of VLAN-tagged frames when SR-IOV and promiscuous mode are enabled but no VLANs are registered. In kernels before 2.6.34, processing such frames could trigger a NULL pointer der...

kernel: drivers/usb/serial/mos*.c: reading uninitialized stack memory

The USB subsystem in the Linux kernel before 2.6.36-rc5 does not properly initialize certain structure members, which allows local users to obtain potentially sensitive information from kernel stack memory via vectors related to TIOCGICOUNT ioctl calls, and the 1 mos7720ioctl function in...

CVE-2010-4247

The doblockioop function in 1 drivers/xen/blkback/blkback.c and 2 drivers/xen/blktap/blktap.c in Xen before 3.4.0 for the Linux kernel 2.6.18, and possibly other versions, allows guest OS users to cause a denial of service infinite loop and CPU consumption via a large production request index to...

Information disclosure

The doblockioop function in 1 drivers/xen/blkback/blkback.c and 2 drivers/xen/blktap/blktap.c in Xen before 3.4.0 for the Linux kernel 2.6.18, and possibly other versions, allows guest OS users to cause a denial of service infinite loop and CPU consumption via a large production request index to...

openSite 0.2.2 Beta Local File Inclusion

opensite-v0.2.2-beta === Local File Include vuln By n0n0x Homepage: http://priasantai.uni.cc/ Download script :http://sourceforge.net/projects/contentone/files/openSite/opensite-v0.2.2-beta/opensite-v0.2.2-beta.zip/download ========================================= xpl :...

openSite 0.2.2 Beta - Local File Inclusion

openSite 0.2.2 Beta - Local File Inclusion opensite-v0.2.2-beta === Local File Include vuln By n0n0x Homepage: http://priasantai.uni.cc/ Download script :http://sourceforge.net/projects/contentone/files/openSite/opensite-v0.2.2-beta/opensite-v0.2.2-beta.zip/download...

PT-2011-1486 · Linux +1 · Xen +1

Name of the Vulnerable Software and Affected Versions: Xen versions prior to 3.4.0 for the Linux kernel 2.6.18 Description: The issue allows guest OS users to cause a denial of service, resulting in an infinite loop and CPU consumption. This is achieved by sending a large production request index...

Microsoft Windows "Win32k.sys" 双重释放本地权限提升漏洞(MS10-098)

BUGTRAQ ID: 45287 CVE ID: CVE-2010-3941 Microsoft Windows是微软发布的非常流行的操作系统。 Microsoft Windows的Win32k.sys驱动实现上存在双重释放漏洞，本地攻击者可利用此漏洞以内核级别的权限执行任意代码，从而完全控制受影响的计算机。 Microsoft Windows XP Microsoft Vista Microsoft Server 2008 厂商补丁： Microsoft --------- Microsoft已经为此发布了一个安全公告（MS10-098）以及相应补丁:...

Microsoft Office TIFF Image Converter内存破坏漏洞(MS10-098)

BUGTRAQ ID: 45285 CVE ID: CVE-2010-3950 Microsoft Office是非常流行的办公软件套件。 Microsoft Office处理包含畸形结构数据的TIFF图形文件时存在漏洞，攻击者可利用此漏洞通过诱使用户打开恶意Office文件以当前登录的用户身份执行任意代码或造成拒绝服务。 Microsoft Office XP SP3 Microsoft Works 9.0 厂商补丁： Microsoft --------- Microsoft已经为此发布了一个安全公告（MS10-098）以及相应补丁: MS10-098：Vulnerabilities...

IOCTL Fuzzer v1.2 Download

"IOCTL Fuzzer is a tool designed to automate the task of searching vulnerabilities in Windows kernel drivers by performing fuzz tests on them. The fuzzer's own driver hooks NtDeviceIoControlFile in order to take control of all IOCTL requests throughout the system. While processing IOCTLs, the...

Linux Kernel 'drivers/scsi/gdth.c' IOCTL本地特权提升漏洞

Bugtraq ID: 44648 CVE ID：CVE-2010-4157 CNCVE ID：CNCVE-20104157 Linux是一款开放源代码的操作系统。 gdthioctlalloc接收整数类型大小变量，copyfromuser接收无符长整型大小变量。gen.datalen和gen.senselen为符长整型，在x8664上长型为64位，整数为32位。 传递超大值，内存分配会截断大小为32位而分配较小的缓冲区，在copyfromuser函数中可触发内存破坏。 RedHat Enterprise MRG v1 for Red Hat Enterprise Linux versi...

Double free

Double free vulnerability in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 allows local users to gain privileges via a crafted application, aka "Win32k PFE Pointer...

Memory corruption

win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2008 R2 and Windows 7 does not properly validate user-mode input, which allows local users to gain privileges via a crafted application, aka "Win32k Memory Corruption Vulnerability."...

Design/Logic Flaw

win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 does not properly allocate memory for copies from user mode, which allows local users to gain privileges via a crafte...

CVE-2010-3944

win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2008 R2 and Windows 7 does not properly validate user-mode input, which allows local users to gain privileges via a crafted application, aka "Win32k Memory Corruption Vulnerability."...

CVE-2010-3942

CVE-2010-3942 affects Windows kernel-mode driver win32k.sys, where memory allocation for copies from user mode is flawed, enabling local privilege escalation on affected Windows versions (XP SP2/SP3, 2003 SP2, Vista SP1/SP2, Server 2008 Gold/SP2/R2, and Windows 7). Connected sources corroborate t...

CVE-2010-3939

Buffer overflow in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 allows local users to gain privileges via vectors related to improper memory allocation for copies...