Lucene search
K

89 matches found

RedHat Linux
RedHat Linux
added 2019/09/04 12:28 p.m.2 views

kernel: brcmfmac heap buffer overflow in brcmf_wowl_nd_results

If the Wake-up on Wireless LAN functionality is configured in the brcmfmac driver, which only works with Broadcom FullMAC chipsets, a malicious event frame can be constructed to trigger a heap buffer overflow in the brcmfwowlndresults function. This vulnerability can be exploited by compromised...

8.3CVSS7.4AI score0.03844EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2019/05/31 12:0 a.m.46 views

Amazon Linux AMI : kernel (ALAS-2019-1214)

A flaw was found in the Linux kernel's freescale hypervisor manager implementation. A parameter passed via to an ioctl was incorrectly validated and used in size calculations for the page size calculation. An attacker can use this flaw to crash the system or corrupt memory or, possibly, create...

8.3CVSS6.3AI score0.03844EPSS
Exploits2References6
Tenable Nessus
Tenable Nessus
added 2019/05/31 12:0 a.m.250 views

Amazon Linux 2 : kernel (ALAS-2019-1214)

A flaw was found in the Linux kernel's freescale hypervisor manager implementation. A parameter passed via to an ioctl was incorrectly validated and used in size calculations for the page size calculation. An attacker can use this flaw to crash the system or corrupt memory or, possibly, create...

8.3CVSS6.4AI score0.03844EPSS
Exploits2References7
myhack58
myhack58
added 2019/01/25 12:0 a.m.61 views

Impact of 62 million devices: the interpretation I is how to find the Marvell Avastar Wi-Fi remote code execution vulnerability-vulnerability warning-the black bar safety net

One, overview In the present study, I will mainly analyze the Marvell WiFi-FullMAC SoC security. Since we have not yet completed the product with a chip of a wireless device of research, and therefore which may contain large amounts of unaudited code, which might appear serious security problems...

7.4AI score
Exploits0
Cloud Foundry
Cloud Foundry
added 2017/09/21 12:0 a.m.70 views

USN-3405-2: Linux kernel (Xenial HWE) vulnerabilities | Cloud Foundry

Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 14.04 Description USN-3405-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.04 LTS. This update provides the corresponding updates for the Linux Hardware Enablement HWE kernel from Ubuntu 16.04 LTS for Ubuntu 14.0...

7.8CVSS8.2AI score0.03631EPSS
Exploits8
Tenable Nessus
Tenable Nessus
added 2017/09/19 12:0 a.m.61 views

Ubuntu 16.04 LTS : Linux kernel (HWE) vulnerabilities (USN-3419-2)

The remote Ubuntu 16.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-3419-2 advisory. USN-3419-1 fixed vulnerabilities in the Linux kernel for Ubuntu 17.04. This update provides the corresponding updates for the Linux Hardware Enablement H...

8CVSS7.5AI score0.16181EPSS
Exploits12References3
OpenVAS
OpenVAS
added 2017/09/19 12:0 a.m.41 views

Ubuntu: Security Advisory (USN-3419-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8CVSS8.3AI score0.16181EPSS
Exploits12References2
OpenVAS
OpenVAS
added 2017/09/19 12:0 a.m.46 views

Ubuntu: Security Advisory (USN-3419-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8CVSS8.3AI score0.16181EPSS
Exploits12References2
OSV
OSV
added 2017/09/18 10:38 p.m.3 views

USN-3419-2 linux-hwe vulnerabilities

USN-3419-1 fixed vulnerabilities in the Linux kernel for Ubuntu 17.04. This update provides the corresponding updates for the Linux Hardware Enablement HWE kernel from Ubuntu 17.04 for Ubuntu 16.04 LTS. It was discovered that a buffer overflow existed in the Bluetooth stack of the Linux kernel wh...

8CVSS7.4AI score0.16181EPSS
Exploits12References3
Ubuntu
Ubuntu
added 2017/09/18 10:38 p.m.110 views

USN-3419-2: Linux kernel (HWE) vulnerabilities

USN-3419-1 fixed vulnerabilities in the Linux kernel for Ubuntu 17.04. This update provides the corresponding updates for the Linux Hardware Enablement HWE kernel from Ubuntu 17.04 for Ubuntu 16.04 LTS. It was discovered that a buffer overflow existed in the Bluetooth stack of the Linux kernel wh...

8CVSS7.5AI score0.16181EPSS
Exploits12
Ubuntu
Ubuntu
added 2017/09/18 10:29 p.m.71 views

USN-3419-1: Linux kernel vulnerabilities

It was discovered that a buffer overflow existed in the Bluetooth stack of the Linux kernel when handling L2CAP configuration responses. A physically proximate attacker could use this to cause a denial of service system crash. CVE-2017-1000251 It was discovered that a buffer overflow existed in t...

8CVSS7.5AI score0.16181EPSS
Exploits12
Tenable Nessus
Tenable Nessus
added 2017/08/29 12:0 a.m.102 views

Ubuntu 16.04 LTS : Linux kernel vulnerabilities (USN-3405-1)

The remote Ubuntu 16.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-3405-1 advisory. It was discovered that a use-after-free vulnerability existed in the POSIX message queue implementation in the Linux kernel. A local attacker could use...

7.8CVSS7.4AI score0.03631EPSS
Exploits8References5
Tenable Nessus
Tenable Nessus
added 2017/08/29 12:0 a.m.63 views

Ubuntu 14.04 LTS : Linux kernel (Xenial HWE) vulnerabilities (USN-3405-2)

The remote Ubuntu 14.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-3405-2 advisory. USN-3405-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.04 LTS. This update provides the corresponding updates for the Linux Hardware Enableme...

7.8CVSS7.5AI score0.03631EPSS
Exploits8References5
Ubuntu
Ubuntu
added 2017/08/28 10:45 p.m.89 views

USN-3405-2: Linux kernel (Xenial HWE) vulnerabilities

USN-3405-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.04 LTS. This update provides the corresponding updates for the Linux Hardware Enablement HWE kernel from Ubuntu 16.04 LTS for Ubuntu 14.04 LTS. It was discovered that a use-after-free vulnerability existed in the POSIX message que...

7.8CVSS7.1AI score0.03631EPSS
Exploits8
Ubuntu
Ubuntu
added 2017/08/28 8:37 p.m.277 views

USN-3405-1: Linux kernel vulnerabilities

It was discovered that a use-after-free vulnerability existed in the POSIX message queue implementation in the Linux kernel. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2017-11176 Huang Weller discovered that the ext4 filesyste...

7.8CVSS7.1AI score0.03631EPSS
Exploits8
OSV
OSV
added 2017/08/28 8:37 p.m.5 views

USN-3405-1 linux, linux-aws, linux-gke, linux-raspi2, linux-snapdragon vulnerabilities

It was discovered that a use-after-free vulnerability existed in the POSIX message queue implementation in the Linux kernel. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2017-11176 Huang Weller discovered that the ext4 filesyste...

7.8CVSS7.2AI score0.03631EPSS
Exploits8References5
GoogleProjectZero
GoogleProjectZero
added 2017/04/11 12:0 a.m.40 views

Over The Air: Exploiting Broadcom’s Wi-Fi Stack (Part 2)

Posted by Gal Beniamini, Project Zero In this blog post we'll continue our journey into gaining remote kernel code execution, by means of Wi-Fi communication alone. Having previously developed a remote code execution exploit giving us control over Broadcom’s Wi-Fi SoC, we are now left with the ta...

7.6AI score
Exploits0
GoogleProjectZero
GoogleProjectZero
added 2017/04/04 12:0 a.m.67 views

Over The Air: Exploiting Broadcom’s Wi-Fi Stack (Part 1)

Posted by Gal Beniamini, Project Zero It’s a well understood fact that platform security is an integral part of the security of complex systems. For mobile devices, this statement rings even truer; modern mobile platforms include multiple processing units, all elaborately communicating with one...

7.4AI score
Exploits0
Cloud Foundry
Cloud Foundry
added 2016/12/27 12:0 a.m.58 views

USN-3146-2: Linux kernel (Xenial HWE) vulnerabilities | Cloud Foundry

USN-3146-2: Linux kernel Xenial HWE vulnerabilities Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 14.04 LTS Description It was discovered that the getuserasmex implementation in the Linux kernel for x86/x8664 contained extended asm statements that were incompatible with the...

9.3CVSS7.3AI score0.01454EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2016/12/21 12:0 a.m.256 views

Ubuntu 16.04 LTS : Linux kernel (Raspberry Pi 2) vulnerabilities (USN-3161-3)

The remote Ubuntu 16.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-3161-3 advisory. Tilman Schmidt and Sasha Levin discovered a use-after-free condition in the TTY implementation in the Linux kernel. A local attacker could use this to...

10CVSS7.7AI score0.09144EPSS
Exploits0References13
Rows per page
Query Builder