13 matches found
EUVD-2011-1060
Malware in sbrugna...
SUSE CVE-2011-1044
The ibuverbspollcq function in drivers/infiniband/core/uverbscmd.c in the Linux kernel before 2.6.37 does not initialize a certain response buffer, which allows local users to obtain potentially sensitive information from kernel memory via vectors that cause this buffer to be only partially fille...
Information Disclosure
kernel is vulnerable to information disclosure. A flaw in ibuverbspollcq could allow a local, unprivileged user to cause an information leak...
Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2011-2015)
The remote Oracle Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2011-2015 advisory. - sctp: fix to calc the INIT/INIT-ACK chunk length correctly is set CVE-2011-1573 - dccp: fix oops on Reset after close CVE-2011-1093 - bridge:...
Linux Kernel "ib_uverbs_poll_cq()"整数溢出漏洞
BUGTRAQ ID: 46073 CVE ID: CVE-2010-4649 Linux Kernel是开放源码操作系统Linux所使用的内核。 Linux Kernel的"ibuverbspollcq"在实现上存在整数溢出漏洞,攻击者可利用此漏洞以提升的权限执行任意代码,使受影响内核崩溃,拒绝服务合法用户。 如果用户空间计入较大的cmd.ne,ibuverbspollcq代码会出现整数溢出。对kmalloc的调用将分配较小的缓冲区,导致内存破坏。如果没有使用完resp,也会造成信息泄露。虽然目前仅存在使用此函数的RDMA设备,无权限用户空间也将调用此函数。 Debian Linux...
CVE-2011-1044
The ibuverbspollcq function in drivers/infiniband/core/uverbscmd.c in the Linux kernel before 2.6.37 does not initialize a certain response buffer, which allows local users to obtain potentially sensitive information from kernel memory via vectors that cause this buffer to be only partially fille...
CVE-2010-4649
Integer overflow in the ibuverbspollcq function in drivers/infiniband/core/uverbscmd.c in the Linux kernel before 2.6.37 allows local users to cause a denial of service memory corruption or possibly have unspecified other impact via a large value of a certain structure member...
Integer overflow
Integer overflow in the ibuverbspollcq function in drivers/infiniband/core/uverbscmd.c in the Linux kernel before 2.6.37 allows local users to cause a denial of service memory corruption or possibly have unspecified other impact via a large value of a certain structure member...
CVE-2010-4649
The CVE-2010-4649 issue affects the Linux kernel up to 2.6.37, where an Integer overflow in ib_uverbs_poll_cq (drivers/infiniband/core/uverbs_cmd.c) allows a local user to cause memory corruption and a possible DoS or other unspecified impact when a structure member is large. The vulnerability re...
CVE-2011-1044
CVE-2011-1044 affects the Linux kernel (pre-2.6.37) and is caused by ib_uverbs_poll_cq in drivers/infiniband/core/uverbs_cmd.c not initializing a certain response buffer. This allows local attackers to read potentially sensitive data from kernel memory via vectors that fill the buffer only partia...
CVE-2010-4649
Integer overflow in the ibuverbspollcq function in drivers/infiniband/core/uverbscmd.c in the Linux kernel before 2.6.37 allows local users to cause a denial of service memory corruption or possibly have unspecified other impact via a large value of a certain structure member...
CVE-2011-1044
The ibuverbspollcq function in drivers/infiniband/core/uverbscmd.c in the Linux kernel before 2.6.37 does not initialize a certain response buffer, which allows local users to obtain potentially sensitive information from kernel memory via vectors that cause this buffer to be only partially fille...
CVE-2010-4649
Integer overflow in the ibuverbspollcq function in drivers/infiniband/core/uverbscmd.c in the Linux kernel before 2.6.37 allows local users to cause a denial of service memory corruption or possibly have unspecified other impact via a large value of a certain structure member...