NetBSD if_bridge information leak

ioctl call exposes content of uninitialized memory...

FreeBSD Security Advisory FreeBSD-SA-06:06.kmem

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-06:06.kmem Security Advisory The FreeBSD Project Topic: Local kernel memory disclosure Category: core Module: kernel Announced: 2006-01-25 Credits: Xin LI, Karl...

security flaw

Multiple vulnerabilities in Linux kernel before 2.6.13.2 allow local users to cause a denial of service kernel OOPS from null dereference via 1 fput in a 32-bit ioctl on 64-bit x86 systems or 2 sockfdput in the 32-bit routingioctl function on 64-bit systems...

Important: Red Hat Security Advisory: kernel security update

Updated kernel packages that fix several security issues in the Red Hat Enterprise Linux 3 kernel are now available. This security advisory has been rated as having important security impact by the Red Hat Security Response Team. The Linux kernel handles the basic functions of the operating syste...

security flaw

Multiple vulnerabilities in Linux kernel before 2.6.13.2 allow local users to cause a denial of service kernel OOPS from null dereference via 1 fput in a 32-bit ioctl on 64-bit x86 systems or 2 sockfdput in the 32-bit routingioctl function on 64-bit systems...

Important: Red Hat Security Advisory: kernel security update

Updated kernel packages that fix several security issues in the Red Hat Enterprise Linux 4 kernel are now available. This security advisory has been rated as having important security impact by the Red Hat Security Response Team. The Linux kernel handles the basic functions of the operating syste...

Mandrake Linux Security Advisory : kernel (MDKSA-2005:235)

Multiple vulnerabilities in the Linux 2.6 kernel have been discovered and corrected in this update : A stack-based buffer overflow in the sendmsg function call in versions prior to 2.6.13.1 allow local users to execute arbitrary code by calling sendmsg and modifying the message contents in anothe...

Ubuntu 4.10 / 5.04 : linux-source-2.6.10, linux-source-2.6.8.1 vulnerabilities (USN-187-1)

A Denial of Service vulnerability was detected in the stack segment fault handler. A local attacker could exploit this by causing stack fault exceptions under special circumstances scheduling, which lead to a kernel crash. CAN-2005-1767 Vasiliy Averin discovered a Denial of Service vulnerability ...

MDKSA-2005:218 - Updated kernel packages fix numerous vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDKSA-2005:218 http://www.mandriva.com/security/ Package : kernel Date : November 30, 2005 Affected: Corporate 3.0, Multi Network Firewall 2.0 Problem Description: Multiple vulnerabilities in the Linux 2.6 kernel have...

Linux Kernel 2.4/2.6 bluez Local Root Privilege Escalation Exploit (update)

Exploit for linux platform in category local exploits =========================================================================== Linux Kernel 2.4/2.6 bluez Local Root Privilege Escalation Exploit update =========================================================================== / Due to many...

CVE-2005-3257

The VT implementation vtioctl.c in Linux kernel 2.6.12, and possibly other versions including 2.6.14.4, allows local users to use the KDSKBSENT ioctl on terminals of other users and gain privileges, as demonstrated by modifying key bindings using loadkeys...

CVE-2005-3257

The VT implementation vtioctl.c in Linux kernel 2.6.12, and possibly other versions including 2.6.14.4, allows local users to use the KDSKBSENT ioctl on terminals of other users and gain privileges, as demonstrated by modifying key bindings using loadkeys...

CVE-2005-3257

The VT implementation vtioctl.c in Linux kernel 2.6.12, and possibly other versions including 2.6.14.4, allows local users to use the KDSKBSENT ioctl on terminals of other users and gain privileges, as demonstrated by modifying key bindings using loadkeys...

USN-187-1: Linux kernel vulnerabilities

A Denial of Service vulnerability was detected in the stack segment fault handler. A local attacker could exploit this by causing stack fault exceptions under special circumstances scheduling, which lead to a kernel crash. CAN-2005-1767 Vasiliy Averin discovered a Denial of Service vulnerability ...

lk26.txt

Synopsis: Linux kernel pktcdvd and rawdevice ioctl break user space limit vulnerability Product: Linux kernel Version: 2.6 up to and including 2.6.12-rc4 Vendor: http://www.kernel.org/ URL: CVE: CAN-2005-1589 Severity: local7 Date: May 16, 2005 Issue: ====== Two locally exploitable flaws have bee...

CVE-2005-2134

The vulnerability CVE-2005-2134 affects NetBSD 1.6–2.0.2, specifically the clcs and emuxki audio drivers. A local attacker can trigger a denial-of-service (kernel crash) by issuing the set-parameters ioctl to an audio device to simultaneously change the block size and set the pause state to unpau...

NetBSD audio drivers ioctl DoS

Division by zero during ioctl processing fo few audio cards types...

security flaw

Raw character devices raw.c in the Linux kernel 2.6.x call the wrong function before passing an ioctl to the block device, which crosses security boundaries by making kernel address space accessible from user space, a similar vulnerability to CVE-2005-1589...

CVE-2005-1589

The CVE-2005-1589 issue affects the Linux kernel’s pktcdvd (and raw device) ioctl handler. In kernel 2.6.12-rc4 and earlier, pkt_ioctl in pktcdvd.c calls the wrong function when issuing an ioctl to the block device, which can leak kernel address space to user space. This local-privilege scenario ...

CVE-2005-1589

The pktioctl function in the pktcdvd block device ioctl handler pktcdvd.c in Linux kernel 2.6.12-rc4 and earlier calls the wrong function before passing an ioctl to the block device, which crosses security boundaries by making kernel address space accessible from user space and allows local users...