11 matches found
CVE-2026-52930
CVE-2026-52930 (Linux kernel) : The issue is in ipc/shm: orphan cleanup cleanup of shm segments. shm_nattch was updated while holding shm_perm.lock, but shm_destroy_orphaned() traversed shm_ids(ns).rwsem, leading to a race where an orphaned segment could be considered removable before the destina...
CVE-2026-52930 ipc/shm: serialize orphan cleanup with shm_nattch updates
In the Linux kernel, the following vulnerability has been resolved: ipc/shm: serialize orphan cleanup with shmnattch updates shmdestroyorphaned walks the shm idr under shmidsns.rwsem, but that does not serialize all fields tested by shmmaydestroy. In particular, shmnattch is updated while holding...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002393)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002393 advisory. Multiple race conditions in ipc/shm.c in the Linux kernel before 3.12.2 allow local users to cause a denial of service use-after-free and system crash or possibly ha...
The vulnerability of the do_shmat function in the ipc/shm.c component of the Linux operating system’s kernel, which stems from insufficient validation of input data, allows a privileged user to circumvent existing security restrictions.
The vulnerability of the doshmat function in the ipc/shm.c component of the Linux operating system’s kernel is related to insufficient validation of input data. Exploiting this vulnerability could allow an attacker to circumvent existing security restrictions...
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2019-1524)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2017-3566)
The remote Oracle Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2017-3566 advisory. - nfsd: stricter decoding of write-like NFSv2/v3 ops J. Bruce Fields Orabug: 25986990 CVE-2017-7895 - KVM: x86: fix emulation of 'MOV SS, null...
OracleVM 3.3 : Unbreakable / etc (OVMSA-2017-0105)
The remote OracleVM system is missing necessary patches to address critical security updates : - nfsd: stricter decoding of write-like NFSv2/v3 ops J. Bruce Fields Orabug: 25986990 CVE-2017-7895 - fnic: Update fnic driver version to 1.6.0.24 John Sobecki Orabug: 24448585 - xen-netfront: Rework th...
Unbreakable Enterprise kernel security update
2.6.39-400.295.2 - nfsd: stricter decoding of write-like NFSv2/v3 ops J. Bruce Fields Orabug: 25986995 CVE-2017-7895 2.6.39-400.295.1 - ocfs2/o2net: o2netlistendataready should do nothing if socket state is not TCPLISTEN Tariq Saeed Orabug: 25510857 - IB/CORE: sync the resouce access in fmrpool...
Linux kernel local security bypass vulnerability (CNVD-2017-02602)
The Linux kernel is the kernel used by the operating system Linux, released by the Linux Foundation in the United States. A security vulnerability exists in the 'doshmat' function in the ipc/shm.c file in Linux kernel versions 4.9.12 and earlier. A local attacker can exploit this vulnerability to...
DEBIAN-CVE-2017-5669
The doshmat function in ipc/shm.c in the Linux kernel through 4.9.12 does not restrict the address calculated by a certain rounding operation, which allows local users to map page zero, and consequently bypass a protection mechanism that exists for the mmap system call, by making crafted shmget a...
kernel: ipc/shm.c: reading uninitialized stack memory
The copyshmidtouser function in ipc/shm.c in the Linux kernel before 2.6.37-rc1 does not initialize a certain structure, which allows local users to obtain potentially sensitive information from kernel stack memory via vectors related to the shmctl system call and the "old shm interface."...