691 matches found
RedHat Security Advisory RHSA-2009:0326
The remote host is missing updates to the kernel announced in advisory RHSA-2009:0326. Security fixes: memory leaks were found on some error paths in the icmpsend function in the Linux kernel. This could, potentially, cause the network connectivity to cease. CVE-2009-0778, Important Chris Evans...
kernel security update
CentOS Errata and Security Advisory CESA-2009:0326 Updated kernel packages that fix several security issues and several bugs are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. The kernel packages...
Important: Red Hat Security Advisory: kernel security and bug fix update
Updated kernel packages that fix several security issues and several bugs are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. The kernel packages contain the Linux kernel, the core of any Linux...
kernel: ecryptfs readlink flaw
fs/ecryptfs/inode.c in the eCryptfs subsystem in the Linux kernel before 2.6.28.1 allows local users to cause a denial of service fault or memory corruption, or possibly have unspecified other impact, via a readlink call that results in an error, leading to use of a -1 return value as an array...
kernel security and bug fix update
2.6.18-128.1.6.0.1.el5 - NET Add entropy support to e1000 and bnx2 John Sobecki,Guru Anbalagane orabug 6045759 - MM shrink zone patch John Sobecki,Chris Mason orabug 6086839 - NET Add xen pv/bonding netconsole support Tina yang orabug 6993043 bz 7258 - nfs convert ENETUNREACH to ENOTCONN Guru...
RHEL 5 : kernel (RHSA-2009:0326)
Updated kernel packages that fix several security issues and several bugs are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. The kernel packages contain the Linux kernel, the core of any Linux...
RedHat Security Advisory RHSA-2009:0360
The remote host is missing updates announced in advisory RHSA-2009:0360. The kernel-rt packages contain the Linux kernel, the core of any Linux operating system. These updated packages address the following security issues: a memory leak exists in keyctl handling. A local, unprivileged user could...
RedHat Security Advisory RHSA-2009:0360
The remote host is missing updates announced in advisory RHSA-2009:0360. The kernel-rt packages contain the Linux kernel, the core of any Linux operating system. These updated packages address the following security issues: a memory leak exists in keyctl handling. A local, unprivileged user could...
Important: Red Hat Security Advisory: kernel-rt security and bug fix update
Updated kernel-rt packages that fix several security issues and several bugs are now available for Red Hat Enterprise MRG 1.1. This update has been rated as having important security impact by the Red Hat Security Response Team. The kernel-rt packages contain the Linux kernel, the core of any Lin...
kernel: ecryptfs readlink flaw
fs/ecryptfs/inode.c in the eCryptfs subsystem in the Linux kernel before 2.6.28.1 allows local users to cause a denial of service fault or memory corruption, or possibly have unspecified other impact, via a readlink call that results in an error, leading to use of a -1 return value as an array...
CVE-2009-0787
The ecryptfswritemetadatatocontents function in the eCryptfs functionality in the Linux kernel 2.6.28 before 2.6.28.9 uses an incorrect size when writing kernel memory to an eCryptfs file header, which triggers an out-of-bounds read and allows local users to obtain portions of kernel memory...
Out-of-bounds
The ecryptfswritemetadatatocontents function in the eCryptfs functionality in the Linux kernel 2.6.28 before 2.6.28.9 uses an incorrect size when writing kernel memory to an eCryptfs file header, which triggers an out-of-bounds read and allows local users to obtain portions of kernel memory...
CVE-2009-0787
The ecryptfswritemetadatatocontents function in the eCryptfs functionality in the Linux kernel 2.6.28 before 2.6.28.9 uses an incorrect size when writing kernel memory to an eCryptfs file header, which triggers an out-of-bounds read and allows local users to obtain portions of kernel memory...
CVE-2009-0787
The ecryptfswritemetadatatocontents function in the eCryptfs functionality in the Linux kernel 2.6.28 before 2.6.28.9 uses an incorrect size when writing kernel memory to an eCryptfs file header, which triggers an out-of-bounds read and allows local users to obtain portions of kernel memory...
CVE-2009-0787
The CVE-2009-0787 issue affects the Linux kernel 2.6.28 series (before 2.6.28.9) in the eCryptfs component. The root cause is an incorrect size being used when writing kernel memory to the eCryptfs file header, which triggers an out-of-bounds read and allows a local user to obtain portions of ker...
PT-2009-3395 · Linux +1 · Linux Kernel +1
Name of the Vulnerable Software and Affected Versions: Linux kernel versions 2.6.28 through 2.6.28.8 Description: The issue is related to the eCryptfs functionality in the Linux kernel. It involves the ecryptfs write metadata to contents function, which incorrectly sizes kernel memory when writin...
DSA-1749-1 linux-2.6 - several vulnerabilities
Bulletin has no description...
Linux Kernel readlink本地权限提升漏洞
BUGTRAQ ID: 33412 CVECAN ID: CVE-2009-0269 Linux Kernel是开放源码操作系统Linux所使用的内核。 Linux Kernel的eCryptfs子系统的fs/ecryptfs/inode.c文件没有正确地检查readlink调用的返回结果。如果readlink调用生成的错误导致将-1返回值用作了数组索引,本地用户就可以导致拒绝服务或获得权限提升。 Linux kernel 2.6.x 厂商补丁: Linux ----- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...
CVE-2009-0269
fs/ecryptfs/inode.c in the eCryptfs subsystem in the Linux kernel before 2.6.28.1 allows local users to cause a denial of service fault or memory corruption, or possibly have unspecified other impact, via a readlink call that results in an error, leading to use of a -1 return value as an array...
Memory corruption
fs/ecryptfs/inode.c in the eCryptfs subsystem in the Linux kernel before 2.6.28.1 allows local users to cause a denial of service fault or memory corruption, or possibly have unspecified other impact, via a readlink call that results in an error, leading to use of a -1 return value as an array...