SUSE CVE-2006-1523

The groupcompletesignal function in the RCU signal handling signal.c in Linux kernel 2.6.16, and possibly other versions, has unknown impact and attack vectors related to improper use of BUGON...

Linux Kernel 'SCTP'模块存在漏洞

BUGTRAQ ID: 31121 CVE ID：CVE-2008-3792 CNCVE ID：CNCVE-20083792 Linux是一款开放源代码的操作系统。 Linux内核'SCTP'模块存在多个安全问题，本地攻击者可以利用漏洞获得敏感信息或使内核崩溃。 问题代码如下： file: net/sctp/socket.c ... SCTPSTATIC int sctpgetsockoptstruct sock sk, int level, int optname, char user optval, int user optlen int retval = 0; int len;...

CVE-2008-3901

Software suspend 2 2-2.2.1, when used with the Linux kernel 2.6.16, stores pre-boot authentication passwords in the BIOS Keyboard buffer and does not clear this buffer after use, which allows local users to obtain sensitive information by reading the physical memory locations associated with this...

CVE-2008-3901

The CVE-2008-3901 entry concerns Software suspend 2 (versions 2-2.2.1) used with Linux kernel 2.6.16, where pre-boot authentication passwords are stored in the BIOS Keyboard buffer and the buffer is not cleared after use. This allows local attackers to read sensitive data from physical memory loc...

CVE-2008-3901

Software suspend 2 2-2.2.1, when used with the Linux kernel 2.6.16, stores pre-boot authentication passwords in the BIOS Keyboard buffer and does not clear this buffer after use, which allows local users to obtain sensitive information by reading the physical memory locations associated with this...

Code injection

The process scheduler in the Linux kernel 2.6.16 gives preference to "interactive" processes that perform voluntary sleeps, which allows local users to cause a denial of service CPU consumption, as described in "Secretly Monopolizing the CPU Without Superuser Privileges."...

Fedora Core 4 : kernel-2.6.16-1.2108_FC4 (2006-517)

Mark Moseley reported that a chroot environment on a SMB share can be left via 'cd ..'. Similar to CVE-2006-1863 issue with cifs, this fix is for smbfs. CVE-2006-1864 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory...

Fedora Core 4 : kernel-2.6.16-1.2111_FC4 (2006-573)

This update rebases to the latest upstream -stable release 2.6.16.17, where a number of security problems have been fixed, notably : SCTP: Validate the parameter length in HB-ACK chunk CVE-2006-1857 SCTP: Respect the real chunk length when walking parameters CVE-2006-1858 fs/locks.c: Fix leaseini...

Linux Kernel ATM SkBuff Dereference Remote Denial of Service Vulnerability

这个问题是在Kernel处理输入ATM（异步传输模式）数据时被触发。 利用这个漏洞，攻击者可以目标Kernel死机，导致拒绝服务的发生。 本问题只影响那些具有ATM硬件并且配置成支持ATM的Kernel的系统。 Kernel版本从2.6.0到2.6.17（包括2.6.17）都受到该漏洞影响。 PHP 5 受此漏洞影响。 Trustix Secure Linux 3.0 Trustix Secure Linux 2.2 Trustix Operating System Enterprise Server 2.0 RedHat Enterprise Linux WS 4 RedHat...

Fedora Core 5 : kernel-2.6.16-1.2096_FC5 (2006-421)

This update includes a number of security issues that have been fixed upstream over the last week or so. i386/x86-64: Fix x87 information leak between processes CVE-2006-1056 iprouteinput panic fix CVE-2006-1525 fix MADVREMOVE vulnerability CVE-2006-1524 shmat: stop mprotect from giving write...

CVE-2006-1524

The MADV_REMOVE issue (CVE-2006-1524) affects Linux kernel 2.6.16 up to 2.6.16.6, where madvise_remove does not enforce file/mmap restrictions, enabling a local user to bypass IPC permissions and overwrite portions of readonly tmpfs files with zeros. The problem is tied to the mprotect-related fl...

CVE-2006-0557

sysmbind in mempolicy.c in Linux kernel 2.6.16 and earlier does not sanity check the maxnod variable before making certain computations for the getnodes function, which has unknown impact and attack vectors...