K95005525: Linux kernel vulnerability CVE-2018-6554

Security Advisory Description Memory leak in the irdabind function in net/irda/afirda.c and later in drivers/staging/irda/net/afirda.c in the Linux kernel before 4.17 allows local users to cause a denial of service memory consumption by repeatedly binding an AFIRDA socket. CVE-2018-6554 Impact...

CVE-2018-6554

A memory leak in the irdabind function in net/irda/afirda.c in the Linux kernel, through 4.16, allows local users to cause a denial of service due to a memory consumption by repeatedly binding an AFIRDA socket...

SUSE SLED15 / SLES15 Security Update : kernel (SUSE-SU-2018:2980-1)

The SUSE Linux Enterprise 15 kernel was updated to receive various security and bugfixes. The following security bugs were fixed : CVE-2018-14617: Prevent NULL pointer dereference and panic in hfspluslookup when opening a file that is purportedly a hard link in an hfs+ filesystem that has malform...

SUSE SLED12 / SLES12 Security Update : kernel (SUSE-SU-2018:2776-1)

The SUSE Linux Enterprise 12 SP3 kernel was updated to 4.4.155 to receive various security and bugfixes. The following security bugs were fixed : CVE-2018-13093: Prevent NULL pointer dereference and panic in lookupslow on a NULL inode-iops pointer when doing pathwalks on a corrupted xfs image. Th...

Memory corruption

Memory leak in the irdabind function in net/irda/afirda.c and later in drivers/staging/irda/net/afirda.c in the Linux kernel before 4.17 allows local users to cause a denial of service memory consumption by repeatedly binding an AFIRDA socket...

CVE-2018-6554

Memory leak in the irdabind function in net/irda/afirda.c and later in drivers/staging/irda/net/afirda.c in the Linux kernel before 4.17 allows local users to cause a denial of service memory consumption by repeatedly binding an AFIRDA socket...

CVE-2018-6554

Memory leak in the irdabind function in net/irda/afirda.c and later in drivers/staging/irda/net/afirda.c in the Linux kernel before 4.17 allows local users to cause a denial of service memory consumption by repeatedly binding an AFIRDA socket...

CVE-2018-6554

CVE-2018-6554 describes a memory leak in the Linux kernel’s irda_bind path (net/irda/af_irda.c and later staging/irda/net/af_irda.c). A local user can cause memory exhaustion by repeatedly binding an AF_IRDA socket, leading to denial of service. The vulnerability exists in kernels prior to 4.17 a...

CVE-2018-6554

Memory leak in the irdabind function in net/irda/afirda.c and later in drivers/staging/irda/net/afirda.c in the Linux kernel before 4.17 allows local users to cause a denial of service memory consumption by repeatedly binding an AFIRDA socket...

CVE-2018-6554

Memory leak in the irdabind function in net/irda/afirda.c and later in drivers/staging/irda/net/afirda.c in the Linux kernel before 4.17 allows local users to cause a denial of service memory consumption by repeatedly binding an AFIRDA socket...

openSUSE Security Update : kernel (openSUSE-SU-2010:0895-2)

This security update of the SUSE Linux Enterprise 11 GA kernel updates the kernel to 2.6.27.54 and fixes various security issues and other bugs. Following security issues were fixed: CVE-2010-3310: Multiple integer signedness errors in net/rose/afrose.c in the Linux kernel allowed local users to...

openSUSE Security Update : kernel (openSUSE-SU-2010:0664-1)

This openSUSE 11.2 kernel was updated to 2.6.31.14, fixing several security issues and bugs. A lot of ext4 filesystem stability fixes were also added. Following security issues have been fixed: CVE-2010-3301: Mismatch between 32bit and 64bit register usage in the system call entry path could be...

Linux kernel 2.6.x irda_bind()对象清除空指针引用漏洞

BUGTRAQ ID: 42900,42936 CVE ID: CVE-2010-2954 Linux Kernel是开放源码操作系统Linux所使用的内核。 Linux Kernel的net/irda/afirda.c文件中的irdabind函数在试图释放某些对象时存在错误，本地用户可以通过尝试绑定AFIRDA套接字并触发错误来导致空指针引用。 如果irdaopentsap失败，irdabind错误的释放了-iasobj对象，具体来讲是没有释放附加到对象上的hashbin并将self-iasobj指针重置为NULL。 Linux kernel 2.6.x 厂商补丁： Linux ---...

Null pointer dereference

The irdabind function in net/irda/afirda.c in the Linux kernel before 2.6.36-rc3-next-20100901 does not properly handle failure of the irdaopentsap function, which allows local users to cause a denial of service NULL pointer dereference and panic and possibly have unspecified other impact via...

CVE-2010-2954

The CVE-2010-2954 issue affects the Linux kernel IRDA stack: irda_bind in net/irda/af_irda.c may dereference a NULL pointer when irda_open_tsap fails, causing local denial of service (kernel panic) via repeated unsuccessful binds on AF_IRDA (PF_IRDA) sockets. Affected software is the Linux kernel...

CVE-2010-2954

The irdabind function in net/irda/afirda.c in the Linux kernel before 2.6.36-rc3-next-20100901 does not properly handle failure of the irdaopentsap function, which allows local users to cause a denial of service NULL pointer dereference and panic and possibly have unspecified other impact via...

CVE-2010-2954

The irdabind function in net/irda/afirda.c in the Linux kernel before 2.6.36-rc3-next-20100901 does not properly handle failure of the irdaopentsap function, which allows local users to cause a denial of service NULL pointer dereference and panic and possibly have unspecified other impact via...