5904 matches found
CVE-2014-1445
The wanxlioctl function in drivers/net/wan/wanxl.c in the Linux kernel before 3.11.7 does not properly initialize a certain data structure, which allows local users to obtain sensitive information from kernel memory via an ioctl call...
UBUNTU-CVE-2014-1444
The fstgetiface function in drivers/net/wan/farsync.c in the Linux kernel before 3.11.7 does not properly initialize a certain data structure, which allows local users to obtain sensitive information from kernel memory by leveraging the CAPNETADMIN capability for an SIOCWANDEV ioctl call...
Qualcomm out of bounds camera
Out of bounds array access in camera driver CVE-2013-6123: The camera driver provides an ioctl system call interface to user space clients for communication. When processing this communication, the msmioctlserver, msmserversendctrl, and msmctrlcmddone functions use a user-supplied value as an ind...
USN-2066-1: Linux kernel vulnerabilities
A flaw was discovered in the Linux kernel's dm snapshot facility. A remote authenticated user could exploit this flaw to obtain sensitive information or modify/corrupt data. CVE-2013-4299 Hannes Frederic Sowa discovered a flaw in the Linux kernel's UDP Fragmentation Offload UFO. An unprivileged...
CVE-2013-3705
The VBA32 AntiRootKit component for Novell Client 2 SP3 before IR5 on Windows allows local users to cause a denial of service bugcheck and BSOD via an IOCTL call for an invalid IOCTL...
Denial of service
The VBA32 AntiRootKit component for Novell Client 2 SP3 before IR5 on Windows allows local users to cause a denial of service bugcheck and BSOD via an IOCTL call for an invalid IOCTL...
CVE-2013-3705
CVE-2013-3705 affects Novell Client 2 SP3 on Windows, specifically the VBA32 AntiRootKit component. The issue is a local DoS via an invalid IOCTL call to the IOCTL handling, potentially causing a bugcheck/BSOD. The vulnerability is described as affecting SP3 prior to IR5; Nessus/Vulnerability fee...
CVE-2013-3705
The VBA32 AntiRootKit component for Novell Client 2 SP3 before IR5 on Windows allows local users to cause a denial of service bugcheck and BSOD via an IOCTL call for an invalid IOCTL...
Mandriva Linux Security Advisory : kernel (MDVSA-2013:291)
Multiple vulnerabilities has been found and corrected in the Linux kernel : The Linux kernel before 3.12.2 does not properly use the getdumpable function, which allows local users to bypass intended ptrace restrictions or obtain sensitive information from IA64 scratch registers via a crafted...
PT-2013-1028 · Linux +2 · Linux Kernel +2
Name of the Vulnerable Software and Affected Versions: Linux kernel versions through 3.12.5 Description: The issue allows local users to gain privileges via a large id value, specifically through an array index error in the kvm vm ioctl create vcpu function in the KVM subsystem. This can be...
Low: kernel
Issue Overview: Multiple buffer underflows in the XFS implementation in the Linux kernel through 3.12.1 allow local users to cause a denial of service memory corruption or possibly have unspecified other impact by leveraging the CAPSYSADMIN capability for a 1 XFSIOCATTRLISTBYHANDLE or 2...
CVE-2013-6431
The fib6add function in net/ipv6/ip6fib.c in the Linux kernel before 3.11.5 does not properly implement error-code encoding, which allows local users to cause a denial of service NULL pointer dereference and system crash by leveraging the CAPNETADMIN capability for an IPv6 SIOCADDRT ioctl call...
UBUNTU-CVE-2013-6431
The fib6add function in net/ipv6/ip6fib.c in the Linux kernel before 3.11.5 does not properly implement error-code encoding, which allows local users to cause a denial of service NULL pointer dereference and system crash by leveraging the CAPNETADMIN capability for an IPv6 SIOCADDRT ioctl call...
CVE-2013-6409
Debian adequate before 0.8.1, when run by root with the --user option, allows local users to hijack the tty and possibly gain privileges via the TIOCSTI ioctl...
CVE-2013-6409
Debian adequate before 0.8.1, when run by root with the --user option, allows local users to hijack the tty and possibly gain privileges via the TIOCSTI ioctl...
CVE-2013-6409
Debian adequate before 0.8.1, when run by root with the --user option, allows local users to hijack the tty and possibly gain privileges via the TIOCSTI ioctl...
Code injection
Debian adequate before 0.8.1, when run by root with the --user option, allows local users to hijack the tty and possibly gain privileges via the TIOCSTI ioctl...
CVE-2013-6409
Debian adequate before 0.8.1, when run by root with the --user option, allows local users to hijack the tty and possibly gain privileges via the TIOCSTI ioctl...
USN-2049-1: Linux kernel vulnerabilities
Miroslav Vadkerti discovered a flaw in how the permissions for network sysctls are handled in the Linux kernel. An unprivileged local user could exploit this flaw to have privileged access to files in /proc/sys/net/. CVE-2013-4270 A flaw was discovered in the Linux kernel's dm snapshot facility. ...
Ubuntu: Security Advisory (USN-2040-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...