18 matches found
Important: kernel
Issue Overview: In the Linux kernel, the following vulnerability has been resolved: tls: fix race between tx work scheduling and socket close Similarly to previous commit, the submitting thread recvmsg/sendmsg may exit as soon as the async crypto handler calls complete. Reorder scheduling the wor...
kernel: net: nexthop: Initialize all fields in dumped nexthops
In the Linux kernel, the following vulnerability has been resolved: net: nexthop: Initialize all fields in dumped nexthops struct nexthopgrp contains two reserved fields that are not initialized by nlaputnhgroup, and carry garbage. This can be observed e.g. with strace edited for clarity: ip...
net: nexthop: Initialize all fields in dumped nexthops
...
SUSE CVE-2024-42283
In the Linux kernel, the following vulnerability has been resolved: net: nexthop: Initialize all fields in dumped nexthops struct nexthopgrp contains two reserved fields that are not initialized by nlaputnhgroup, and carry garbage. This can be observed e.g. with strace edited for clarity: ip...
Oracle Linux 8 : python39:3.9 / and / python39-devel:3.9 (ELSA-2024-2985)
The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-2985 advisory. - Update to 3.5 to fix CVE-2014-0240 1101863 - Fix CVE-2014-1858, CVE-2014-1859: 1062009, 1062359 - Security fix for CVE-2023-27043 Resolves: RHEL-5561...
segmentation fault in regexp.c:1788
Description SIGSEGV raised on regtilde function at regexp.c. As the function processes the tainted string inside the poc file, constant calls to the alloc function with ever-increasing size actually exhausts memory and the process terminates. At last negative size value is assigned. Version $ git...
Keimpx - Check For Valid Credentials Across A Network Over SMB
keimpx is an open source tool, released under the Apache License 2.0. It can be used to quickly check for valid credentials across a network over SMB. Credentials can be: Combination of user / plain-text password. Combination of user / NTLM hash. Combination of user / NTLM logon session token. If...
OGUsers hacking forum hacked; entire database dumped on rival forum
By Waqas OGUsers hacking forum has been hacked AGAIN and this time, hackers have dumped its database on a rival hacking forum. This is a post from HackRead.com Read the original post: OGUsers hacking forum hacked; entire database dumped on rival forum...
JapsPer pointer undefined vulnerability analysis-vulnerability warning-the black bar safety net
0×01: introduction JapsPer project is an open source project, it provides a method based on the jpeg-2000 part of the standard. This project was originally developed by Image Power and University of British Columbia collaboration. Currently, the ongoing JapsPer software maintenance and developmen...
RTMPDump librtmp AMF3 MemberName Denial of Service Vulnerability
Talos Vulnerability Report TALOS-2016-0066 RTMPDump librtmp AMF3 MemberName Denial of Service Vulnerability January 7, 2016 CVE Number CVE-2015-8270 Description The vulnerability occurs within the AMF3ReadString function within amf.c. If an attacker sets up a malicious RTMP Media server that...
Sun SunVTS 4.x PTExec Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2898/info SunVTS is the Sun Validation Test Suite, distributed and maintained by Sun Microsystems. The SunVTS is used to test various components of OEM Sun hardware, and can also be used to stress-test components and...
The Council on Governmental Ethics Laws (COGEL) hacked and complete database dumped
The Council on Governmental Ethics Laws COGEL hacked and complete database dumped Hacker With Name snc0pe claim to hack official website of The Council on Governmental Ethics Laws COGEL. He post a message on pastebin , along with the database download link 1.88MB...
Indishell.net forum Hacked by Pakistan hackers
Indishell.net forum Hacked by Pakistan hackers Indian Hackers forum, Indishell.net has been hacked by Pakistani hackers. This is not that orginal Indishell hackers group of India. The domain is somewhere similar to them. Paki Hackers Provide More details here https://pastebin.com/k0XYZQCW .They...
Creative CMS Blind SQL Injection
. . | / | | \ \ | / / |\ \ \ |/ // / /\ \ / |/ \ / // | / | | / \ /|\ / / / / \ / \ / / / \ | | /\ /\ / \ | \ // est.2007 / / forum.darkc0de.com d3hydr8 - rsauron - baltazar - low1z - houbysoft - beenu and all darkc0de members Author: p47r1ck Home : www.darkc0de.com Email :...
Apple MACOS X xnu <= 1228.x Local Kernel Memory Disclosure Exploit
No description provided by source. / xnu-getldt.c Copyright c 2008 by [email protected] Apple MACOS X xnu = 1228.x local kernel memory disclosure by mu-b - Wed 17 Dec 2008 - Tested on: Apple MACOS X 10.5.5 xnu-1228.8.201/RELEASEI386 props to christer who originally found the bug in FreeBSD...
*BSD user-ppp local root (when conditions permit)
// / pppx.conf - Point to Point Protocol a.k.a. user-ppp exploit by sipher / / 2003 / 12 /23 - PRIVATE CODE / / Program terminated with signal 11, Segmentation fault. / / 0 0xbeefdead in ?? / // I just tested this on FreeBSD 6.3. This bug was discovered on NetBSD. It also works on OpenBSD...
traceSolaris.txt
/usr/sbin/traceroute from Solaris 10 is vulnerable to buffer overflow in handling -g argument. After supplying 10 -g parameters, return address is overwritten by IP address argument: atari:root:/home/venglin /usr/sbin/traceroute -g 1 -g 2 -g 3 -g 4 -g 5 -g 6 -g 7 -g 8 -g 9 -g 10 127.0.0.1...
Microsoft Windows XP/2000/2003 - Graphical Device Interface Library Denial of Service
source: https://www.securityfocus.com/bid/12834/info Reportedly, a denial of service vulnerability affects Microsoft Windows GDI library 'gdi32.dll'. This issue is due to a failure of the application to securely copy data from malformed EMF image files. An attacker may leverage this issue to...