Lucene search
K

73 matches found

OSV
OSV
added 2012/12/27 11:47 a.m.3 views

DEBIAN-CVE-2012-2669

The main function in tools/hv/hvkvpdaemon.c in hypervkvpd, as distributed in the Linux kernel before 3.4.5, does not validate the origin of Netlink messages, which allows local users to spoof Netlink communication via a crafted connector message...

2.1CVSS6.2AI score0.00351EPSS
Exploits0References1
NVD
NVD
added 2012/12/27 11:47 a.m.32 views

CVE-2012-2669

The main function in tools/hv/hvkvpdaemon.c in hypervkvpd, as distributed in the Linux kernel before 3.4.5, does not validate the origin of Netlink messages, which allows local users to spoof Netlink communication via a crafted connector message...

2.1CVSS5.7AI score0.00351EPSS
Exploits0References7
Prion
Prion
added 2012/12/27 11:47 a.m.20 views

Code injection

The main function in tools/hv/hvkvpdaemon.c in hypervkvpd, as distributed in the Linux kernel before 3.8-rc1, allows local users to cause a denial of service daemon exit via a crafted application that sends a Netlink message. NOTE: this vulnerability exists because of an incorrect fix for...

4.9CVSS6.3AI score0.00407EPSS
Exploits1References11Affected Software1
NVD
NVD
added 2012/12/27 11:47 a.m.20 views

CVE-2012-5532

The main function in tools/hv/hvkvpdaemon.c in hypervkvpd, as distributed in the Linux kernel before 3.8-rc1, allows local users to cause a denial of service daemon exit via a crafted application that sends a Netlink message. NOTE: this vulnerability exists because of an incorrect fix for...

4.9CVSS5.7AI score0.00407EPSS
Exploits1References11
Debian CVE
Debian CVE
added 2012/12/27 11:0 a.m.43 views

CVE-2012-2669

The main function in tools/hv/hvkvpdaemon.c in hypervkvpd, as distributed in the Linux kernel before 3.4.5, does not validate the origin of Netlink messages, which allows local users to spoof Netlink communication via a crafted connector message...

2.1CVSS5.7AI score0.00351EPSS
Exploits0
CVE
CVE
added 2012/12/27 11:0 a.m.83 views

CVE-2012-5532

The CVE-2012-5532 issue exists in the Linux kernel hypervkvpd hv_kvp_daemon: the main function in tools/hv/hv_kvp_daemon.c allows a local user to trigger a denial of service (daemon exit) via a crafted Netlink message. It is noted as a consequence of an incorrect fix for CVE-2012-2669, and a patc...

4.9CVSS5.7AI score0.00407EPSS
Exploits1References11Affected Software1
Cvelist
Cvelist
added 2012/12/27 11:0 a.m.34 views

CVE-2012-2669

The main function in tools/hv/hvkvpdaemon.c in hypervkvpd, as distributed in the Linux kernel before 3.4.5, does not validate the origin of Netlink messages, which allows local users to spoof Netlink communication via a crafted connector message...

5.6AI score0.00351EPSS
Exploits0References7
Cvelist
Cvelist
added 2012/12/27 11:0 a.m.28 views

CVE-2012-5532

The main function in tools/hv/hvkvpdaemon.c in hypervkvpd, as distributed in the Linux kernel before 3.8-rc1, allows local users to cause a denial of service daemon exit via a crafted application that sends a Netlink message. NOTE: this vulnerability exists because of an incorrect fix for...

5.5AI score0.00407EPSS
Exploits1References11
CVE
CVE
added 2012/12/27 11:0 a.m.86 views

CVE-2012-2669

CVE-2012-2669 affects the Linux kernel up to 3.4.5 in hv_kvp_daemon (tools/hv/hv_kvp_daemon.c) where Netlink message origin is not validated, allowing a local user to spoof Netlink communication via a crafted connector message. The issue is addressed by a patch included in Linux kernel 3.4.5 (via...

2.1CVSS5.7AI score0.00351EPSS
Exploits0References7Affected Software1
UbuntuCve
UbuntuCve
added 2012/12/27 12:0 a.m.34 views

CVE-2012-2669

The main function in tools/hv/hvkvpdaemon.c in hypervkvpd, as distributed in the Linux kernel before 3.4.5, does not validate the origin of Netlink messages, which allows local users to spoof Netlink communication via a crafted connector message...

2.1CVSS5.9AI score0.00351EPSS
Exploits0References12
OSV
OSV
added 2012/12/27 12:0 a.m.2 views

UBUNTU-CVE-2012-5532

The main function in tools/hv/hvkvpdaemon.c in hypervkvpd, as distributed in the Linux kernel before 3.8-rc1, allows local users to cause a denial of service daemon exit via a crafted application that sends a Netlink message. NOTE: this vulnerability exists because of an incorrect fix for...

4.9CVSS5.8AI score0.00407EPSS
Exploits1References10
seebug.org
seebug.org
added 2012/11/30 12:0 a.m.296 views

Linux Kernel hypervkvpd 'hv_kvp_daemon.c' Netlink报文处理拒绝服务漏洞

Bugtraq ID:56710 CVE ID:CVE-2012-5532 Linux是一款开源的操作系统。 当处理伪造的Netlink报文时,会导致hypervkvpd退出,本地攻击者可以利用漏洞发送非零nlpid源地址Netlink消息使系统崩溃。 0 Linux kernel 2.6.x 厂商解决方案 用户可参考如下厂商提供的安全公告获得补丁信息: https://git.kernel.org/?p=linux/kernel/git/gregkh/char-misc.git;a=commit;h=95a69adab9acfc3981c504737a2b6578e4d846ef...

4.9CVSS6.4AI score0.00407EPSS
Exploits1
OpenVAS
OpenVAS
added 2012/08/14 12:0 a.m.42 views

Ubuntu: Security Advisory (USN-1529-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.5AI score0.08738EPSS
Exploits11References2
Rows per page
Query Builder