6 matches found
openSUSE Security Update : kernel (openSUSE-SU-2011:0004-1)
The openSUSE 11.3 kernel was updated to fix various bugs and security issues. Following security issues have been fixed: CVE-2010-4347: A local user could inject ACPI code into the kernel via the world-writable 'customdebug' file, allowing local privilege escalation. CVE-2010-4258: A local attack...
openSUSE Security Update : kernel (openSUSE-SU-2010:0655-1)
This update of the openSUSE 11.3 kernel fixes two local root exploits, various other security issues and some bugs. Following security issues are fixed by this update: CVE-2010-3301: Mismatch between 32bit and 64bit register usage in the system call entry path could be used by local attackers to...
SuSE 11.1 Security Update : Linux kernel (SAT Patch Numbers 3068 / 3069 / 3070)
This SUSE Linux Enterprise 11 Service Pack 1 kernel contains various security fixes and lots of other bugfixes. Notable larger bugfixes and changes : - 603464: Fix system freezewhen doing a network crashdump with a netxennic driver - 610828: Avoid kernel failure on connects/disconnects to a novel...
CVE-2010-3084
CVE-2010-3084 refers to a buffer overflow in the Linux kernel 2.6 series (niu_get_ethtool_tcam_all in drivers/net/niu.c) exploitable via the ETHTOOL_GRXCLSRLALL ethtool command. Affected: Linux kernel older than 2.6.36-rc4. Impact described as local denial of service and potential other effects (...
CVE-2010-3084
Buffer overflow in the niugetethtooltcamall function in drivers/net/niu.c in the Linux kernel before 2.6.36-rc4 allows local users to cause a denial of service or possibly have unspecified other impact via the ETHTOOLGRXCLSRLALL ethtool command...
Linux Kernel niu_get_ethtool_tcam_all()函数本地溢出漏洞
Linux Kernel是开放源码操作系统Linux所使用的内核。 drivers/net/niu.c文件中的niugetethtooltcamall函数假设其输出缓冲区已有足够大小,但该缓冲区是受用户控制的,且ETHTOOLGRXCLSRLALL非特权的ethtool命令。这允许本地用户发送特制的ETHTOOLGRXCLSRLALL IOCTL请求导致内核崩溃。 Linux kernel 2.6.x 厂商补丁: Linux ----- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...