EulerOS Virtualization 2.5.3 : kernel (EulerOS-SA-2019-1244)

According to the versions of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A flaw was found In the Linux kernel, through version 4.19.6, where a local user could exploit a use-after-free in the ALSA drive...

macOS XNU - Copy-on-Write Behaviour Bypass via Partial-Page Truncation of File Exploit

/ XNU has various interfaces that permit creating copy-on-write copies of data between processes, including out-of-line message descriptors in mach messages. It is important that the copied memory is protected against later modifications by the source process; otherwise, the source process might ...

openSUSE: Security Advisory for kernel (openSUSE-SU-2018:4133-1)

The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Design/Logic Flaw

Since Linux kernel version 3.2, the mremap syscall performs TLB flushes after dropping pagetable locks. If a syscall such as ftruncate removes entries from the pagetables of a task that is in the middle of mremap, a stale TLB entry can remain for a short time that permits access to a physical pag...

CVE-2018-18281

Since Linux kernel version 3.2, the mremap syscall performs TLB flushes after dropping pagetable locks. If a syscall such as ftruncate removes entries from the pagetables of a task that is in the middle of mremap, a stale TLB entry can remain for a short time that permits access to a physical pag...

glibc, nscd security update

CentOS Errata and Security Advisory CESA-2015:0327 Updated glibc packages that fix two security issues and several bugs are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS bas...

RedHat Update for glibc RHSA-2015:0327-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

RHEL 7 : glibc (RHSA-2015:0327)

Updated glibc packages that fix two security issues and several bugs are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...

FreeBSD 6.0/6.1 Ftrucante Local Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/20522/info FreeBSD is prone to a local denial-of-service vulnerability because it fails to handle exceptional conditions. An attacker may leverage this issue to crash the affected computer, denying service to legitimate...

FreeBSD <= 6.1-RELEASE-p10 (ftruncate) Local Denial of Service Exploit

No description provided by source. / FreeBSD cvs commit: src/sys/ufs/ufs/ufsvnops.c maxim 2006-05-31 13:15:29 UTC Log: According to POSIX, the result of ftruncate2 is unspecified for file types other than VREG, VDIR and shared memory objects. We already handle VREG, VLNK and VDIR cases. Silently...

Linux Kernel < 2.6.22 ftruncate()/open() Local Exploit

No description provided by source. / gw-ftrex.c: Linux kernel 2.6.22 open/ftruncate local exploit by gat3way at gat3way dot eu bug information: http://osvdb.org/49081 !!!This is for educational purposes only!!! To use it, you've got to find a sgid directory you've got permissions to write into...

kernel: open() call allows setgid bit when user is not in new file's group

fs/open.c in the Linux kernel before 2.6.22 does not properly strip setuid and setgid bits when there is a write to a file, which allows local users to gain the privileges of a different group, and obtain sensitive information or possibly have unspecified other impact, by creating an executable...

Linux Kernel &lt; 2.6.22 ftruncate()/open() Local Exploit

No description provided by source. / gw-ftrex.c: Linux kernel 2.6.22 open/ftruncate local exploit by gat3way at gat3way dot eu bug information: http://osvdb.org/49081 !!!This is for educational purposes only!!! To use it, you've got to find a sgid directory you've got permissions to write into...

Linux Kernel < 2.6.22 ftruncate()/open() Local Exploit

Exploit for linux platform in category local exploits ====================================================== Linux Kernel bug information: http://osvdb.org/49081 !!!This is for educational purposes only!!! To use it, you've got to find a sgid directory you've got permissions to write into obvious...

Linux Kernel &lt; 2.6.22 - &#039;ftruncate()&#039;/&#039;open()&#039; Local Privilege Escalation

/ gw-ftrex.c: Linux kernel bug information: http://osvdb.org/49081 !!!This is for educational purposes only!!! To use it, you've got to find a sgid directory you've got permissions to write into obviously world-writable, e.g: find / -perm -2000 -type d 2/dev/null|xargs ls -ld|grep "rwx" which...

Linux Kernel 2.6.22 - ftruncate()open() Local Privilege Escalation

Linux Kernel 2.6.22 - ftruncateopen Local Privilege Escalation / gw-ftrex.c: Linux kernel bug information: http://osvdb.org/49081 !!!This is for educational purposes only!!! To use it, you've got to find a sgid directory you've got permissions to write into obviously world-writable, e.g: find /...

Linux Kernel 'truncate()'本地特权提升漏洞

BUGTRAQ ID: 31368 CVE ID：CVE-2008-4210 CNCVE ID：CNCVE-20084210 Linux是一款开放源代码的操作系统。 Linux内核'truncate'和'ftruncate'函数存在设计错误，本地攻击者可以利用漏洞提升特权。 当建立文件时，open/creat允许通过模式参数设置setgid位，由于bsdgroups mount选项或在setgid目录中建立文件，用户不属于新文件的组的成员。用户可以使用ftruncate和memory-mapped I/O使新文件成为任意两进制，获得此组的特权，原因是这些操作没有清除setgid位。...

CVE-2006-5482

ufsvnops.c in FreeBSD 6.1 allows local users to cause an unspecified denial of service by calling the ftruncate function on a file type that is not VREG, VLNK or VDIR, which is not defined in POSIX...

CVE-2006-5482

ufsvnops.c in FreeBSD 6.1 allows local users to cause an unspecified denial of service by calling the ftruncate function on a file type that is not VREG, VLNK or VDIR, which is not defined in POSIX...

FreeBSD &lt;= 6.1-RELEASE-p10 (ftruncate) Local Denial of Service Exploit

No description provided by source. / FreeBSD cvs commit: src/sys/ufs/ufs/ufsvnops.c maxim 2006-05-31 13:15:29 UTC Log: According to POSIX, the result of ftruncate2 is unspecified for file types other than VREG, VDIR and shared memory objects. We already handle VREG, VLNK and VDIR cases. Silently...