35 matches found
Mandrake Linux Security Advisory : kernel (MDKSA-2004:087)
A race condition was discovered in the 64bit file offset handling by Paul Starzetz from iSEC. The file offset pointer fpos is changed during reading, writing, and seeking through a file in order to point to the current position of a file. The value conversion between both the 32bit and 64bit API ...
Important: Red Hat Security Advisory: kernel security update
Updated Itanium kernel packages that fix a number of security issues are now available. The Linux kernel handles the basic functions of the operating system. This kernel updates several important drivers and fixes a number of bugs including potential security vulnerabilities. Paul Starzetz...
Fedora Core 1 : kernel-2.4.22-1.2199.nptl (2004-251)
Paul Starzetz discovered flaws in the Linux kernel when handling file offset pointers. These consist of invalid conversions of 64 to 32-bit file offset pointers and possible race conditions. A local unprivileged user could make use of these flaws to access large portions of kernel memory. The...
SUSE-SA:2004:024: kernel
The remote host is missing the patch for the advisory SUSE-SA:2004:024 kernel. This kernel is vulnerable to a race condition in the 64-bit file offset handling code. The file offset pointer fpos is changed during reading, writing, and seeking through a file to point to the current position in a...
RHEL 3 : kernel (RHSA-2004:413)
Updated kernel packages that fix several security issues in Red Hat Enterprise Linux 3 are now available. The Linux kernel handles the basic functions of the operating system. Paul Starzetz discovered flaws in the Linux kernel when handling file offset pointers. These consist of invalid conversio...
RHEL 2.1 : kernel (RHSA-2004:418)
Updated kernel packages that fix potential information leaks and a incorrect driver permission for Red Hat Enterprise Linux 2.1 are now available. The Linux kernel handles the basic functions of the operating system. Paul Starzetz discovered flaws in the Linux kernel when handling file offset...
CVE-2004-0415
Linux kernel does not properly convert 64-bit file offset pointers to 32 bits, which allows local users to access portions of kernel memory...
CVE-2004-0415
The CVE-2004-0415 issue affects the Linux kernel where 64-bit file offset pointers are not reliably converted to 32 bits, enabling a local unprivileged user to access portions of kernel memory. An attacker can leverage this through file I/O paths that manipulate 32/64-bit offset conversions, pote...
Linux kernel file offset pointer races
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Synopsis: Linux kernel file offset pointer handling Product: Linux kernel Version: 2.4 up to to and including 2.4.26, 2.6 up to to and including 2.6.7 Vendor: http://www.kernel.org/ URL: http://isec.pl/vulnerabilities/isec-0016-procleaks.txt CVE:...
isec-0016-procleaks.txt
Synopsis: Linux kernel file offset pointer handling Product: Linux kernel Version: 2.4 up to to and including 2.4.26, 2.6 up to to and including 2.6.7 Vendor: http://www.kernel.org/ URL: http://isec.pl/vulnerabilities/isec-0016-procleaks.txt CVE: CAN-2004-0415 Author: Paul Starzetz Date: Aug 04,...
Linux Kernel 2.4.26 - File Offset Pointer Handling Memory Disclosure
/ CAN-2004-0415 / gcc -O3 prockmemdump.c -o prockmemdump Copyright c 2004 iSEC Security Research. All Rights Reserved. THIS PROGRAM IS FOR EDUCATIONAL PURPOSES ONLY IT IS PROVIDED "AS IS" AND WITHOUT ANY WARRANTY. COPYING, PRINTING, DISTRIBUTION, MODIFICATION WITHOUT PERMISSION OF THE AUTHOR IS...
Linux Kernel 2.4.26 - File Offset Pointer Handling Memory Disclosure
Linux Kernel 2.4.26 - File Offset Pointer Handling Memory Disclosure / CAN-2004-0415 / gcc -O3 prockmemdump.c -o prockmemdump Copyright c 2004 iSEC Security Research. All Rights Reserved. THIS PROGRAM IS FOR EDUCATIONAL PURPOSES ONLY IT IS PROVIDED "AS IS" AND WITHOUT ANY WARRANTY. COPYING,...
Linux Kernel File Offset Pointer Handling Memory Disclosure Exploit
Exploit for linux platform in category local exploits =================================================================== Linux Kernel File Offset Pointer Handling Memory Disclosure Exploit =================================================================== / CAN-2004-0415 / gcc -O3 prockmemdump....
security flaw
Linux kernel does not properly convert 64-bit file offset pointers to 32 bits, which allows local users to access portions of kernel memory...
Important: Red Hat Security Advisory: kernel security update
Updated kernel packages that fix potential information leaks and a incorrect driver permission for Red Hat Enterprise Linux 2.1 are now available. The Linux kernel handles the basic functions of the operating system. Paul Starzetz discovered flaws in the Linux kernel when handling file offset...