80 matches found
SUSE CVE-2014-3153
The futexrequeue function in kernel/futex.c in the Linux kernel through 3.14.5 does not ensure that calls have two different futex addresses, which allows local users to gain privileges via a crafted FUTEXREQUEUE command that facilitates unsafe waiter modification...
SUSE CVE-2018-6927
The futexrequeue function in kernel/futex.c in the Linux kernel before 4.14.15 might allow attackers to cause a denial of service integer overflow or possibly have unspecified other impact by triggering a negative wake or requeue value...
Denial Of Service (DoS)
Linux kernel is vulnerable to denial of service attacks. A local authenticated attacker could cause denial of service conditions or possibly have unspecified other impact by triggering a negative wake or requeue value. Affected by this issue is the function futexrequeue of the file kernel/futex.c...
kernel: Integer overflow in futex.c:futux_requeue can lead to denial of service or unspecified impact
The futexrequeue function in kernel/futex.c in the Linux kernel, before 4.14.15, might allow attackers to cause a denial of service integer overflow or possibly have unspecified other impacts by triggering a negative wake or requeue value. Due to the nature of the flaw, privilege escalation canno...
kernel: Integer overflow in futex.c:futux_requeue can lead to denial of service or unspecified impact
The futexrequeue function in kernel/futex.c in the Linux kernel, before 4.14.15, might allow attackers to cause a denial of service integer overflow or possibly have unspecified other impacts by triggering a negative wake or requeue value. Due to the nature of the flaw, privilege escalation canno...
Linux kernel 'futex_requeue' function denial of service vulnerability
Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. A security vulnerability exists in the 'futexrequeue' function in the kernel/futex.c file in versions of Linux kernel prior to 4.14.15. An attacker can exploit this...
DEBIAN-CVE-2018-6927
The futexrequeue function in kernel/futex.c in the Linux kernel before 4.14.15 might allow attackers to cause a denial of service integer overflow or possibly have unspecified other impact by triggering a negative wake or requeue value...
UBUNTU-CVE-2018-6927
The futexrequeue function in kernel/futex.c in the Linux kernel before 4.14.15 might allow attackers to cause a denial of service integer overflow or possibly have unspecified other impact by triggering a negative wake or requeue value...
The vulnerability of the Linux operating system’s kernel allows a hacker to increase their privileges or cause a service failure.
The vulnerability of the futexrequeue function in the Linux kernel/futex.c file is related to the lack of checks for the presence of two different futex addresses. Exploiting this vulnerability allows a local attacker to enhance their privileges by using the special command FUTEXREQUEUE, or to ga...
Android Futex Requeue Kernel Exploit
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' require 'rex' class Metasploit4 'Android futex requeue...
Android 'Towelroot' Futex Requeue Kernel Exploit
This module exploits a bug in futexrequeue in the Linux kernel, using similar techniques employed by the towelroot exploit. Any Android device with a kernel built before June 2014 is likely to be vulnerable. This module requires Metasploit: https://metasploit.com/download Current source:...
kernel: futex: refcount issue in case of requeue
A flaw was found in the way the Linux kernel's futex subsystem handled reference counting when requeuing futexes during futexwait. A local, unprivileged user could use this flaw to zero out the reference counter of an inode or an mm struct that backs up the memory area of the futex, which could...
Updated kernel-tmb package fixes security vulnerabilities
Updated kernel-tmb provides upstream 3.10.51 kernel and fixes the following security issues: Array index error in the aioreadeventsring function in fs/aio.c in the Linux kernel through 3.15.1 allows local users to obtain sensitive information from kernel memory via a large head value CVE-2014-020...
CVE-2014-3153 Futex requeue exploit | Cloud Foundry
CVE-2014-3153 Futex requeue exploit Important to Low Vendor Canonical Ubuntu Versions Affected Linux kernel through 3.14.5 Description The futexrequeue function in kernel/futex.c in the Linux kernel through 3.14.5 does not ensure that calls have two different futex addresses, which allows local...
kernel: futex: pi futexes requeue issue
A flaw was found in the way the Linux kernel's futex subsystem handled the requeuing of certain Priority Inheritance PI futexes. A local, unprivileged user could use this flaw to escalate their privileges on the system...
kernel: futex: pi futexes requeue issue
A flaw was found in the way the Linux kernel's futex subsystem handled the requeuing of certain Priority Inheritance PI futexes. A local, unprivileged user could use this flaw to escalate their privileges on the system...
Updated kernel packages fixes security vulnerabilities
The kernel has been updated to the upstream 3.10.44 longterm kernel, and fixes the following security issues: The Netlink implementation in the Linux kernel through 3.14.1 does not provide a mechanism for authorizing socket operations based on the opener of a socket, which allows local users to...
DEBIAN-CVE-2014-3153
The futexrequeue function in kernel/futex.c in the Linux kernel through 3.14.5 does not ensure that calls have two different futex addresses, which allows local users to gain privileges via a crafted FUTEXREQUEUE command that facilitates unsafe waiter modification...
UBUNTU-CVE-2014-3153
The futexrequeue function in kernel/futex.c in the Linux kernel through 3.14.5 does not ensure that calls have two different futex addresses, which allows local users to gain privileges via a crafted FUTEXREQUEUE command that facilitates unsafe waiter modification...
PT-2014-9084 · Linux +5 · Linux Kernel +6
Name of the Vulnerable Software and Affected Versions: openSUSE versions prior to the fixed version Linux kernel versions through 3.14.5 Description: The issue is related to a vulnerability in the Linux kernel, specifically in the futex requeue function, which does not ensure that calls have two...