Mandriva Linux Security Advisory : kernel (MDVSA-2013:194)

Multiple vulnerabilities has been found and corrected in the Linux kernel : net/ceph/authnone.c in the Linux kernel through 3.10 allows remote attackers to cause a denial of service NULL pointer dereference and system crash or possibly have unspecified other impact via an authreply message that...

Oracle Linux 5 : scsi-target-utils (ELSA-2010-0362)

The remote Oracle Linux 5 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2010-0362 advisory. 0.0-6.20091205snap.2 - 576359 Fix format string vulnerability CVE-2010-0743 Tenable has extracted the preceding description block directly from the Oracle Linux...

Oracle Linux 4 : wireshark (ELSA-2006-0726 / ELSA-2006-0658 / ELSA-2006-0602)

New Wireshark packages that fix various security vulnerabilities are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Wireshark is a program for monitoring network traffic. Users of Wireshark should upgrade to these updated packag...

Oracle Linux 3 / 4 : php (ELSA-2007-0076)

From Red Hat Security Advisory 2007:0076 : Updated PHP packages that fix several security issues are now available for Red Hat Enterprise Linux 3 and 4. This update has been rated as having important security impact by the Red Hat Security Response Team. PHP is an HTML-embedded scripting language...

MGASA-2013-0204 Updated kernel packages fix multiple security vulnerabilities

This kernel update provides the extended stable 3.8.13.4 kernel and fixes the follwing security issues: The pcibackenablemsi function in the PCI backend driver drivers/xen/pciback/confspacecapabilitymsi.c in Xen for the Linux kernel 2.6.18 and 3.8 allows guest OS users with PCI device access to...

kernel: ext3: format string issues

fs/ext3/super.c in the Linux kernel before 3.8.4 uses incorrect arguments to functions in certain circumstances related to printk input, which allows local users to conduct format-string attacks and possibly gain privileges via a crafted application...

Ubuntu Update for linux-ec2 USN-1900-1

Check for the Version of linux-ec2 OpenVAS Vulnerability Test $Id: gbubuntuUSN19001.nasl 8494 2018-01-23 06:57:55Z teissa $ Ubuntu Update for linux-ec2 USN-1900-1 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free...

Ubuntu 10.04 LTS : linux vulnerabilities (USN-1899-1)

Dmitry Monakhov reported a race condition flaw the Linux ext4 filesystem that can expose stale data. An unprivileged user could exploit this flaw to cause an information leak. CVE-2012-4508 An information leak was discovered in the Linux kernel's tkill and tgkill system calls when used from compa...

Ubuntu: Security Advisory (USN-1900-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 10.04 LTS : linux-ec2 vulnerabilities (USN-1900-1)

Dmitry Monakhov reported a race condition flaw the Linux ext4 filesystem that can expose stale data. An unprivileged user could exploit this flaw to cause an information leak. CVE-2012-4508 An information leak was discovered in the Linux kernel's tkill and tgkill system calls when used from compa...

USN-1900-1: Linux kernel (EC2) vulnerabilities

Dmitry Monakhov reported a race condition flaw the Linux ext4 filesystem that can expose stale data. An unprivileged user could exploit this flaw to cause an information leak. CVE-2012-4508 Dave Jones discovered that the Linux kernel's socket subsystem does not correctly ensure the keepalive acti...

USN-1899-1: Linux kernel vulnerabilities

Dmitry Monakhov reported a race condition flaw the Linux ext4 filesystem that can expose stale data. An unprivileged user could exploit this flaw to cause an information leak. CVE-2012-4508 Dave Jones discovered that the Linux kernel's socket subsystem does not correctly ensure the keepalive acti...

YardRadius - Multiple Local Format String Vulnerabilities

YardRadius - Multiple Local Format String Vulnerabilities source: https://www.securityfocus.com/bid/61356/info YardRadius is prone to multiple local format-string vulnerabilities. Local attackers can leverage these issues to cause denial-of-service conditions. Due to nature of these issues,...

YardRadius - Multiple Local Format String Vulnerabilities

source: https://www.securityfocus.com/bid/61356/info YardRadius is prone to multiple local format-string vulnerabilities. Local attackers can leverage these issues to cause denial-of-service conditions. Due to nature of these issues, arbitrary code-execution within the context of the vulnerable...

CentOS 5 : php53 (CESA-2012:1047)

Updated php53 packages that fix multiple security issues are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...

Important: Red Hat Security Advisory: kernel security and bug fix update

Updated kernel packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 6.3 Extended Update Support. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores...

kernel: ext3: format string issues

fs/ext3/super.c in the Linux kernel before 3.8.4 uses incorrect arguments to functions in certain circumstances related to printk input, which allows local users to conduct format-string attacks and possibly gain privileges via a crafted application...

format_string

This plugin finds format string bugs. Users have to know that detecting a format string vulnerability will be only possible if the server is configured to return errors, and the application is developed in cgi-c or some other language that allows the programmer to do this kind of mistakes. Plugin...

CVE-2013-2851

Format string vulnerability in the registerdisk function in block/genhd.c in the Linux kernel through 3.9.4 allows local users to gain privileges by leveraging root access and writing format string specifiers to /sys/module/mdmod/parameters/newarray in order to create a crafted /dev/md device nam...

DEBIAN-CVE-2013-2851

Format string vulnerability in the registerdisk function in block/genhd.c in the Linux kernel through 3.9.4 allows local users to gain privileges by leveraging root access and writing format string specifiers to /sys/module/mdmod/parameters/newarray in order to create a crafted /dev/md device nam...