VulnCheck KEV: CVE-2009-2908

The ddelete function in fs/ecryptfs/inode.c in eCryptfs in the Linux kernel 2.6.31 allows local users to cause a denial of service kernel OOPS and possibly execute arbitrary code via unspecified vectors that cause a "negative dentry" and trigger a NULL pointer dereference, as demonstrated via a...

SUSE CVE-2009-2846

The eisaeepromread function in the parisc isa-eeprom component drivers/parisc/eisaeeprom.c in the Linux kernel before 2.6.31-rc6 allows local users to access restricted memory via a negative ppos argument, which bypasses a check that assumes that ppos is positive and causes an out-of-bounds read ...

Linux Kernel < 2.6.31-rc7 - AF_IRDA 29-Byte Stack Disclosure Exploit

No description provided by source. / cve-2009-3002.c Linux Kernel 2.6.31-rc7 AFIRDA getsockname 29-Byte Stack Disclosure Jon Oberheide [email protected] http://jon.oberheide.org Information: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3002 The Linux kernel before 2.6.31-rc7 does not...

Linux Kernel <= 2.6.31-rc7 AF_LLC getsockname 5-Byte Stack Disclosure

No description provided by source. / llc-getsockname-leak.c Linux Kernel = 2.6.31-rc7 AFLLC getsockname 5-Byte Stack Disclosure Jon Oberheide [email protected] http://jon.oberheide.org Information: http://git.kernel.org/linus/28e9fc592cb8c7a43e4d3147b38be6032a0e81bc sllcarphrd member of sockaddrl...

Immunity Canvas: FS_PIPE_RACE_TO_NULL

Name| fspiperacetonull ---|--- CVE| CVE-2009-3547 Exploit Pack| CANVAS Description| fspiperacetonull local root Notes| Repeatability: Infinite NOTES: Tested on Ubuntu 9.04 32-bit, Ubuntu 9.10 32-bit, kernels 2.6.28|29|30|31 Vulnerable kernels = 2.6.31 32bit. VENDOR: Linux CVE Url:...

Linux Kernel 'fasync_helper()' Local Privilege Escalation Vulnerability

Exploit for linux platform in category local exploits ======================================================================= Linux Kernel 'fasynchelper' Local Privilege Escalation Vulnerability ======================================================================= Credit: Tavis Ormandy...

Linux Kernel 2.6.31-rc4 - nfs4_proc_lock() Denial of Service

Linux Kernel 2.6.31-rc4 - nfs4proclock Denial of Service / Description of problem: execution of a particular program from the Arachne suite reliably causes a kernel panic due to a NULL-pointer dereference in nfs4proclock. Version-Release number of selected component if applicable:...

CVE-2009-3043

The ttyldischangup function in drivers/char/ttyldisc.c in the Linux kernel 2.6.31-rc before 2.6.31-rc8 allows local users to cause a denial of service system crash, sometimes preceded by a NULL pointer dereference or possibly gain privileges via certain pseudo-terminal I/O activity, as demonstrat...

CVE-2009-3043

The ttyldischangup function in drivers/char/ttyldisc.c in the Linux kernel 2.6.31-rc before 2.6.31-rc8 allows local users to cause a denial of service system crash, sometimes preceded by a NULL pointer dereference or possibly gain privileges via certain pseudo-terminal I/O activity, as demonstrat...

Linux Kernel 'posix-timers.c' NULL指针引用拒绝服务漏洞

Bugraq ID: 35976 Linux是一款开放源代码的操作系统。 kernel/posix-timers.c文件中的"clocknanosleep"函数存在错误，调用clockid等于 CLOCKMONOTONICRAW的donanosleep可导致NULL指针引用而造成系统触发Panic，造成拒绝服务攻击。 Linux kernel 2.6.31 -rc3 + Trustix Secure Enterprise Linux 2.0 + Trustix Secure Linux 2.2 + Trustix Secure Linux 2.1 + Trustix Secure Lin...