6 matches found
Ubuntu 7.10 / 8.04 LTS / 8.10 : linux, linux-source-2.6.22 vulnerabilities (USN-751-1)
NFS did not correctly handle races between fcntl and interrupts. A local attacker on an NFS mount could consume unlimited kernel memory, leading to a denial of service. Ubuntu 8.10 was not affected. CVE-2008-4307 Sparc syscalls did not correctly check mmap regions. A local attacker could cause a...
Ubuntu 6.06 LTS : linux-source-2.6.15 vulnerabilities (USN-752-1)
NFS did not correctly handle races between fcntl and interrupts. A local attacker on an NFS mount could consume unlimited kernel memory, leading to a denial of service. CVE-2008-4307 Sparc syscalls did not correctly check mmap regions. A local attacker could cause a system panic, leading to a...
USN-752-1: Linux kernel vulnerabilities
NFS did not correctly handle races between fcntl and interrupts. A local attacker on an NFS mount could consume unlimited kernel memory, leading to a denial of service. CVE-2008-4307 Sparc syscalls did not correctly check mmap regions. A local attacker could cause a system panic, leading to a...
USN-751-1: Linux kernel vulnerabilities
NFS did not correctly handle races between fcntl and interrupts. A local attacker on an NFS mount could consume unlimited kernel memory, leading to a denial of service. Ubuntu 8.10 was not affected. CVE-2008-4307 Sparc syscalls did not correctly check mmap regions. A local attacker could cause a...
kernel: skfp_ioctl inverted logic flaw
The skfpioctl function in drivers/net/skfp/skfddi.c in the Linux kernel before 2.6.28.6 permits SKFPCLRSTATS requests only when the CAPNETADMIN capability is absent, instead of when this capability is present, which allows local users to reset the driver statistics, related to an "inverted logic"...
Linux Kernel SysKonnect FDDI驱动非授权重置统计漏洞
CVECAN ID: CVE-2009-0675 Linux Kernel是开放源码操作系统Linux所使用的内核。 Linux Kernel的drivers/net/skfp/skfddi.c文件中的skfpioctl函数中存在错误的逻辑,本地用户在缺少CAPNETADMIN权限而不是拥有这个权限的时候才可以执行SKFPCLRSTATS请求,因此无需授权便可以重置驱动统计。 Linux kernel 2.6.x 厂商补丁: Linux ----- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...