DEBIAN-CVE-2017-7558

A kernel data leak due to an out-of-bound read was found in the Linux kernel in inetdiagmsgsctp,laddrfill and sctpgetsctpinfo functions present since version 4.7-rc1 through version 4.13. A data leak happens when these functions fill in sockaddr data structures used to export socket's diagnostic...

UBUNTU-CVE-2017-7558

A kernel data leak due to an out-of-bound read was found in the Linux kernel in inetdiagmsgsctp,laddrfill and sctpgetsctpinfo functions present since version 4.7-rc1 through version 4.13. A data leak happens when these functions fill in sockaddr data structures used to export socket's diagnostic...

kernel: Double free in the inet_csk_clone_lock function in net/ipv4/inet_connection_sock.c

The inetcskclonelock function in net/ipv4/inetconnectionsock.c in the Linux kernel allows attackers to cause a denial of service double free or possibly have unspecified other impact by leveraging use of the accept system call. An unprivileged local user could use this flaw to induce kernel memor...

PT-2017-14963 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux kernel versions through 4.14.6 Description: The issue is related to a race condition in the raw sendmsg function, specifically in the inet-hdrincl component, which leads to the usage of an uninitialized stack pointer. This condition...

kernel: Out of bounds read in inet_diag_msg_sctp{,l}addr_fill() and sctp_get_sctp_info() in SCTP stack

A kernel data leak due to an out-of-bound read was found in the Linux kernel in inetdiagmsgsctp,laddrfill and sctpgetsctpinfo functions present since version 4.7-rc1 through version 4.13. A data leak happens when these functions fill in sockaddr data structures used to export socket's diagnostic...

D-Link DIR-850L REV.A and REV.B DHCP Client Remote Code Execution Vulnerability

D-Link DIR-850L REV.A and REV.B are both wireless router products from AUO D-Link.DHCP client is one of the DHCP clients. A security vulnerability exists in the DHCP client on D-Link DIR-850L REV.A and REV.B devices using firmware FW114WWb07h2abbeta1 and earlier and firmware FW208WWb02 and earlie...

CVE-2017-14429

The DHCP client on D-Link DIR-850L REV. A with firmware through FW114WWb07h2abbeta1 and REV. B with firmware through FW208WWb02 devices allows unauthenticated remote code execution as root because /etc/services/INET/inetipv4.php mishandles shell metacharacters, affecting generated files such as...

PT-2017-2898 · D Link · D-Link Dir-850L

Name of the Vulnerable Software and Affected Versions: D-Link DIR-850L REV. A versions through FW114WWb07 h2ab beta1 D-Link DIR-850L REV. B versions through FW208WWb02 Description: The issue is related to the DHCP service in the D-Link DIR-850L router's firmware, specifically with the handling of...

kernel: Double free in the inet_csk_clone_lock function in net/ipv4/inet_connection_sock.c

The inetcskclonelock function in net/ipv4/inetconnectionsock.c in the Linux kernel allows attackers to cause a denial of service double free or possibly have unspecified other impact by leveraging use of the accept system call. An unprivileged local user could use this flaw to induce kernel memor...

BSA-2017-351

Security Advisory ID : BSA-2017-351 Component : Linux Kernel Revision : 3.0: Interim Theinetcskclonelockfunction in net/ipv4/inetconnectionsock.cin the Linux kernel allows attackers to cause a denial of service double free or possibly have unspecified other impact by leveraging use of the accept...

PT-2017-3733 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux kernel versions 4.7-rc1 through 4.13 Description: A kernel data leak was found due to an out-of-bound read in the Linux kernel. This issue affects the inet diag msg sctp,laddr fill and sctp get sctp info functions, where a data leak...

CVE-2015-1417

The inet module in FreeBSD 10.2x before 10.2-PRERELEASE, 10.2-BETA2-p2, 10.2-RC1-p1, 10.1x before 10.1-RELEASE-p16, 9.x before 9.3-STABLE, 9.3-RELEASE-p21, and 8.x before 8.4-STABLE, 8.4-RELEASE-p35 on systems with VNET enabled and at least 16 VNET instances allows remote attackers to cause a...

CVE-2015-1417

CVE-2015-1417 affects the FreeBSD inet module. When VNET is enabled and 16+ VNETs are present, the TCP reassembly queue limit (1/16 of mbuf clusters) can be reached, allowing remote attackers to exhaust mbufs via multiple concurrent TCP connections and cause a Denial of Service. Affected: FreeBSD...

Linux kernel denial of service vulnerability (CNVD-2017-07386)

The Linux kernel is the kernel used by the operating system Linux, released by the Linux Foundation in the United States. A denial of service vulnerability exists in the inetcskclonelock function in net/ipv4/inetconnectionsock.c in the Linux kernel. A remote attacker could exploit this...

PT-2017-2033 · Linux +5 · Linux Kernel +5

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 4.10.15 Description: The issue is related to the inet csk clone lock function in the Linux kernel, which can be exploited to cause a denial of service due to a double free error. This can be achieved by leveragi...

CVE-2016-2225

The readetchostsr function in libc/inet/resolv.c in uClibc-ng before 1.0.12 allows remote DNS servers to cause a denial of service infinite loop via a crafted packet...

kernel: dccp: crash while sending ipv6 reset packet

It was found that the Linux kernel's Datagram Congestion Control Protocol DCCP implementation used the IPv4-only inetskrebuildheader function for both IPv4 and IPv6 DCCP connections, which could result in memory corruptions. A remote attacker could use this flaw to crash the system...

USN-2997-1: Linux kernel (OMAP4) vulnerabilities

Jann Horn discovered that eCryptfs improperly attempted to use the mmap handler of a lower filesystem that did not implement one, causing a recursive page fault to occur. A local unprivileged attacker could use to cause a denial of service system crash or possibly execute arbitrary code with...

Ubuntu 12.04 LTS : linux vulnerabilities (USN-2996-1)

Jann Horn discovered that eCryptfs improperly attempted to use the mmap handler of a lower filesystem that did not implement one, causing a recursive page fault to occur. A local unprivileged attacker could use to cause a denial of service system crash or possibly execute arbitrary code with...

Ramui Forum Script 9.0 - SQL Injection

Ramui Forum Script 9.0 - SQL Injection Title: Ramui forum script 9.0 SQL Injection Exploit Author: bd0rk Twitter: twitter.com/bd0rk Vendor: http://www.ramui.com/ Download: http://ramui.com/forum-script/download-v9.html Google-Dork: n/a ---Script-Kiddie protection! : Direct SQL-Path: n/a...