Lucene search
+L

80 matches found

susecve
susecve
added 2023/02/15 5:29 a.m.4 views

SUSE CVE-2014-3153

The futexrequeue function in kernel/futex.c in the Linux kernel through 3.14.5 does not ensure that calls have two different futex addresses, which allows local users to gain privileges via a crafted FUTEXREQUEUE command that facilitates unsafe waiter modification...

7.8CVSS7AI score0.37233EPSS
Exploits15References14
susecve
susecve
added 2023/02/15 4:30 a.m.4 views

SUSE CVE-2018-6927

The futexrequeue function in kernel/futex.c in the Linux kernel before 4.14.15 might allow attackers to cause a denial of service integer overflow or possibly have unspecified other impact by triggering a negative wake or requeue value...

5.5CVSS7.9AI score0.00653EPSS
Exploits0References9
veracode
veracode
added 2019/05/16 2:50 a.m.35 views

Denial Of Service (DoS)

Linux kernel is vulnerable to denial of service attacks. A local authenticated attacker could cause denial of service conditions or possibly have unspecified other impact by triggering a negative wake or requeue value. Affected by this issue is the function futexrequeue of the file kernel/futex.c...

7.8CVSS7.4AI score0.00653EPSS
Exploits0References32Affected Software2
redhat
redhat
added 2018/04/10 3:23 p.m.6 views

kernel: Integer overflow in futex.c:futux_requeue can lead to denial of service or unspecified impact

The futexrequeue function in kernel/futex.c in the Linux kernel, before 4.14.15, might allow attackers to cause a denial of service integer overflow or possibly have unspecified other impacts by triggering a negative wake or requeue value. Due to the nature of the flaw, privilege escalation canno...

7.8CVSS7.1AI score0.00653EPSS
Exploits0References4
redhat
redhat
added 2018/04/10 3:34 a.m.7 views

kernel: Integer overflow in futex.c:futux_requeue can lead to denial of service or unspecified impact

The futexrequeue function in kernel/futex.c in the Linux kernel, before 4.14.15, might allow attackers to cause a denial of service integer overflow or possibly have unspecified other impacts by triggering a negative wake or requeue value. Due to the nature of the flaw, privilege escalation canno...

7.8CVSS7.1AI score0.00653EPSS
Exploits0References4
cnvd
cnvd
added 2018/02/13 12:0 a.m.6 views

Linux kernel 'futex_requeue' function denial of service vulnerability

Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. A security vulnerability exists in the 'futexrequeue' function in the kernel/futex.c file in versions of Linux kernel prior to 4.14.15. An attacker can exploit this...

7.8CVSS7.2AI score0.00653EPSS
Exploits0References1
osv
osv
added 2018/02/12 7:29 p.m.2 views

DEBIAN-CVE-2018-6927

The futexrequeue function in kernel/futex.c in the Linux kernel before 4.14.15 might allow attackers to cause a denial of service integer overflow or possibly have unspecified other impact by triggering a negative wake or requeue value...

7.8CVSS8AI score0.00653EPSS
Exploits0References1
osv
osv
added 2018/02/12 12:0 a.m.4 views

UBUNTU-CVE-2018-6927

The futexrequeue function in kernel/futex.c in the Linux kernel before 4.14.15 might allow attackers to cause a denial of service integer overflow or possibly have unspecified other impact by triggering a negative wake or requeue value...

7.8CVSS6.8AI score0.00653EPSS
Exploits0References11
bdu_fstec
bdu_fstec
added 2016/07/11 12:0 a.m.7 views

The vulnerability of the Linux operating system’s kernel allows a hacker to increase their privileges or cause a service failure.

The vulnerability of the futexrequeue function in the Linux kernel/futex.c file is related to the lack of checks for the presence of two different futex addresses. Exploiting this vulnerability allows a local attacker to enhance their privileges by using the special command FUTEXREQUEUE, or to ga...

7.2CVSS7.2AI score0.37233EPSS
Exploits15References18Affected Software1
packetstorm
packetstorm
added 2015/02/09 12:0 a.m.97 views

Android Futex Requeue Kernel Exploit

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' require 'rex' class Metasploit4 'Android futex requeue...

7.2CVSS1AI score0.37233EPSS
Exploits15
metasploit
metasploit
added 2014/12/01 3:49 a.m.146 views

Android 'Towelroot' Futex Requeue Kernel Exploit

This module exploits a bug in futexrequeue in the Linux kernel, using similar techniques employed by the towelroot exploit. Any Android device with a kernel built before June 2014 is likely to be vulnerable. This module requires Metasploit: https://metasploit.com/download Current source:...

7.8CVSS6.9AI score0.37233EPSS
Exploits15
redhat
redhat
added 2014/10/07 4:31 p.m.4 views

kernel: futex: refcount issue in case of requeue

A flaw was found in the way the Linux kernel's futex subsystem handled reference counting when requeuing futexes during futexwait. A local, unprivileged user could use this flaw to zero out the reference counter of an inode or an mm struct that backs up the memory area of the futex, which could...

6.9CVSS5.7AI score0.00661EPSS
Exploits1References4
mageia
mageia
added 2014/08/18 9:14 a.m.71 views

Updated kernel-tmb package fixes security vulnerabilities

Updated kernel-tmb provides upstream 3.10.51 kernel and fixes the following security issues: Array index error in the aioreadeventsring function in fs/aio.c in the Linux kernel through 3.15.1 allows local users to obtain sensitive information from kernel memory via a large head value CVE-2014-020...

7.8CVSS7AI score0.37233EPSS
Exploits22References12
cloudfoundry
cloudfoundry
added 2014/08/18 12:0 a.m.74 views

CVE-2014-3153 Futex requeue exploit | Cloud Foundry

CVE-2014-3153 Futex requeue exploit Important to Low Vendor Canonical Ubuntu Versions Affected Linux kernel through 3.14.5 Description The futexrequeue function in kernel/futex.c in the Linux kernel through 3.14.5 does not ensure that calls have two different futex addresses, which allows local...

7.8CVSS6.8AI score0.37233EPSS
Exploits15
redhat
redhat
added 2014/07/22 6:0 p.m.4 views

kernel: futex: pi futexes requeue issue

A flaw was found in the way the Linux kernel's futex subsystem handled the requeuing of certain Priority Inheritance PI futexes. A local, unprivileged user could use this flaw to escalate their privileges on the system...

7.8CVSS6.9AI score0.37233EPSS
Exploits15References5
redhat
redhat
added 2014/06/26 5:7 p.m.4 views

kernel: futex: pi futexes requeue issue

A flaw was found in the way the Linux kernel's futex subsystem handled the requeuing of certain Priority Inheritance PI futexes. A local, unprivileged user could use this flaw to escalate their privileges on the system...

7.8CVSS6.9AI score0.37233EPSS
Exploits15References5
mageia
mageia
added 2014/06/22 9:13 p.m.84 views

Updated kernel packages fixes security vulnerabilities

The kernel has been updated to the upstream 3.10.44 longterm kernel, and fixes the following security issues: The Netlink implementation in the Linux kernel through 3.14.1 does not provide a mechanism for authorizing socket operations based on the opener of a socket, which allows local users to...

7.8CVSS7AI score0.37233EPSS
Exploits22References5
osv
osv
added 2014/06/07 2:55 p.m.2 views

DEBIAN-CVE-2014-3153

The futexrequeue function in kernel/futex.c in the Linux kernel through 3.14.5 does not ensure that calls have two different futex addresses, which allows local users to gain privileges via a crafted FUTEXREQUEUE command that facilitates unsafe waiter modification...

7.8CVSS8AI score0.37233EPSS
Exploits15References1
osv
osv
added 2014/06/05 12:0 a.m.6 views

UBUNTU-CVE-2014-3153

The futexrequeue function in kernel/futex.c in the Linux kernel through 3.14.5 does not ensure that calls have two different futex addresses, which allows local users to gain privileges via a crafted FUTEXREQUEUE command that facilitates unsafe waiter modification...

7.8CVSS6.4AI score0.37233EPSS
Exploits15References13
ptsecurity
ptsecurity
added 1970/01/01 12:0 a.m.7 views

PT-2014-9084 · Linux +5 · Linux Kernel +6

Name of the Vulnerable Software and Affected Versions: openSUSE versions prior to the fixed version Linux kernel versions through 3.14.5 Description: The issue is related to a vulnerability in the Linux kernel, specifically in the futex requeue function, which does not ensure that calls have two...

9.3CVSS6.5AI score0.37233EPSS
Exploits72References525
Rows per page
Query Builder