86 matches found
GSD-2022-1006535 mm/slub: fix to return errno if kmalloc() fails
mm/slub: fix to return errno if kmalloc fails This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.12 by commit...
GSD-2022-1006491 mm/slub: fix to return errno if kmalloc() fails
mm/slub: fix to return errno if kmalloc fails This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0 by commit...
SUSE-SU-2022:0909-1 Security update for glibc
This update for glibc fixes the following issues: - CVE-2022-23219: Fixed buffer overflow in sunrpc clntcreate for 'unix' bsc1194768 - CVE-2022-23218: Fixed buffer overflow in sunrpc svcunixcreate bsc1194770 - CVE-2021-3999: Fixed getcwd to set errno to ERANGE for size == 1 bsc1194640...
SUSE-SU-2022:0441-1 Security update for glibc
glibc was updated to fix the following issues: Security issues fixed: - CVE-2021-3999: Fixed incorrect errno in getcwd bsc1194640 - CVE-2022-23219: Fixed buffer overflow in sunrpc clntcreate for 'unix' bsc1194768 - CVE-2022-23218: Fixed buffer overflow in sunrpc svcunixcreate bsc1194770 Bugs fixe...
SUSE-SU-2022:0330-1 Security update for glibc
This update for glibc fixes the following issues: - CVE-2021-3999: Fixed incorrect errno in getcwd bsc1194640 - CVE-2022-23219: Fixed buffer overflow in sunrpc clntcreate for 'unix' bsc1194768 - CVE-2022-23218: Fixed buffer overflow in sunrpc svcunixcreate bsc1194770 Features added: - IBM Power 1...
glibc security, bug fix, and enhancement update
2.28-127.0.1 - add Ampere emag to tunable cpu list Patrick McGehearty - add optimized memset for emag - add an ASIMD variant of strlen for falkor - Orabug: 2700101. - Modify glibc-ora28849085.patch so it works with RHCK kernels. - Orabug: 28849085. - Make IOfunlockfile match funlockfile and...
glibc security, bug fix, and enhancement update
2.17-317.0.1 - Merge RH el7 u8 patches with Oracle patches Review-exception: Simple merge - Adding Mike Fabians C.utf-8 patch C.utf-8 is a unicode-aware version of the C locale Orabug 29784239. Reviewed-by: Jose E. Marchesi - Remove glibc-ora28641867.patch as duplicate of glibc-rh1705899-4.patch ...
dovecot security and bug fix update
1:2.2.36-10 - fix CVE-2019-11500: IMAP protocol parser does not properly handle NUL byte when scanning data in quoted strings, leading to out of bounds heap memory writes 1741788 1:2.2.36-9 - reset errno before iterating through users 1630410 1:2.2.36-8 - fix CVE-2019-3814: improper certificate...
Apple macOS 10.13 - 'workq_kernreturn' Denial of Service (PoC)
/ Exploit Title: MacOS 10.13 - 'workqkernreturn' Denial of Service PoC Date: 2018-07-30 Exploit Author: Fabiano Anemone Vendor Homepage: https://www.apple.com/ Version: iOS 11.4.1 / MacOS 10.13.6 Tested on: iOS / MacOS CVE: Not assigned Tweet: https://twitter.com/anoane/status/1048549170217451520...
DEBIAN-CVE-2017-5577
The vc4getbcl function in drivers/gpu/drm/vc4/vc4gem.c in the VideoCore DRM driver in the Linux kernel before 4.9.7 does not set an errno value upon certain overflow detections, which allows local users to cause a denial of service incorrect pointer dereference and OOPS via inconsistent size valu...
The vulnerability of the Debian GNU/Linux operating system and the DBD::mysql driver allows attackers to exert undefined effects.
The vulnerability of the mylogin function in the Debian GNU/Linux operating system and the DBD::mysql driver is related to the use of memory after it is freed. Exploiting this vulnerability allows a malicious actor to have unpredictable effects by using the mysqlerrno function after the mylogin...
Debian DLA-598-1 : suckless-tools security update
It was discovered that the slock screen locking tool would segfault when the user's account had been disabled. slock called crypt3 and used the return value for strcmp3 without checking to see if the return value of crypt3 was a NULL pointer. If the hash returned by getspnam-sppwdp was invalid,...
UBUNTU-CVE-2015-8949
Use-after-free vulnerability in the mylogin function in DBD::mysql before 4.03301 allows attackers to have unspecified impact by leveraging a call to mysqlerrno after a failure of mylogin...
OpenLDAP <= 2.4.3 (KBIND) Remote Buffer Overflow Exploit
No description provided by source. / openldap-kbind-p00f.c - OpenLDAP kbind remote exploit Only works on servers compiled with --enable-kbind enable LDAPv2+ Kerberos IV bind deprecated no by Solar Eclipse [email protected] Shoutouts to LSD for their l33t asm code and to all 0dd people...
Call of Duty <= 1.4 - Denial of Service Exploit
No description provided by source. / winerr.h / / Header file used for manage errors in Windows It support socket and errno too this header replace the previous sockerrX.h / include string.h include errno.h void stderrvoid char error; switchWSAGetLastError case 10004: error = Interrupted system...
GenBroker <= 9.21.201.01 multiple memory free vulnerabilities
Exploit for windows platform in category local exploits -------- winerr.h -------- / Header file used for manage errors in Windows It support socket and errno too this header replace the previous sockerrX.h / include include void stderrvoid char error; switchWSAGetLastError case 10004: error =...
Solaris/Open Solaris UCODE_GET_VERSION IOCTL - Denial of Service
/ cve-2010-0453.c -- Patroklos Argyroudis, argp at domain census-labs.com Denial of service kernel panic PoC exploit for the UCODEGETVERSION ioctl NULL pointer dereference vulnerability on Solaris/OpenSolaris: http://www.trapkit.de/advisories/TKADV2010-001.txt...
Linux Kernel "mremap()"#2 Local Proof-of-concept
No description provided by source. / Proof-of-concept exploit code for domremap 2 Copyright C 2004 Christophe Devine This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either versi...
Call of Duty <= 1.4 Denial of Service Exploit
No description provided by source. / winerr.h / / Header file used for manage errors in Windows It support socket and errno too this header replace the previous sockerrX.h / include string.h include errno.h void stderrvoid char error; switchWSAGetLastError case 10004: error = "Interrupted system...
Kaillera 0.86 - Message Buffer Overflow
Kaillera 0.86 - Message Buffer Overflow // source: https://www.securityfocus.com/bid/18871/info Kaillera is prone to a buffer-overflow vulnerability because it fails to properly bounds-check messages before copying them to an insufficiently sized memory buffer. Successful exploits can allow remot...