Chrome, Firefox, Java, IE10 exploited at Pwn2Own competition

During the first day of Pwn2Own competition at the CanSecWest conference in Vancouver , latest versions of all major browsers were exploited by hackers. Chrome, Firefox and Internet Explorer 10 on Windows 8 were successfully pwned by various competitors, bringing them tens of thousands of dollars...

Chrome, Firefox, Java, IE10 exploited at Pwn2Own competition

During the first day of Pwn2Own competition at the CanSecWest conference in Vancouver , latest versions of all major browsers were exploited by hackers. Chrome, Firefox and Internet Explorer 10 on Windows 8 were successfully pwned by various competitors, bringing them tens of thousands of dollars...

DEBIAN-CVE-2013-1772

The logprefix function in kernel/printk.c in the Linux kernel 3.x before 3.4.33 does not properly remove a prefix string from a syslog header, which allows local users to cause a denial of service buffer overflow and system crash by leveraging /dev/kmsg write access and triggering a...

Slackware Advisory SSA:2009-230-01 kernel

The remote host is missing an update as announced via advisory SSA:2009-230-01. OpenVAS Vulnerability Test $Id: esoftslkssa200923001.nasl 6598 2017-07-07 09:36:44Z cfischer $ Description: Auto-generated from the corresponding slackware advisory Authors: Thomas Reinke Copyright: Copyright c 2012...

kernel: thp: __split_huge_page() mapcount != page_mapcount BUG_ON()

The Linux kernel before 3.3.1, when KVM is used, allows guest OS users to cause a denial of service host OS crash by leveraging administrative access to the guest OS, related to the pmdnoneorclearbad function and page faults for huge pages...

Unbreakable Enterprise kernel security and bug fix update

2.6.39-100.6.1 - regset: Return -EFAULT, not -EIO, on host-side memory fault H. Peter Anvin CVE-2012-1097 - regset: Prevent null pointer reference on readonly regsets H. Peter Anvin CVE-2012-1097 - cifs: fix dentry refcount leak when opening a FIFO on lookup Jeff Layton CVE-2012-1090...

Moderate: Red Hat Bug Fix Advisory: Red Hat Enterprise MRG Realtime 2.1 kernel bug fix update

Updated kernel-rt packages that fix several bugs are now available for Red Hat Enterprise MRG 2.1. The kernel-rt packages contain the Linux kernel, the core of any Linux operating system. This update provides a build of the kernel-rt package for MRG 2.1, which is layered on Red Hat Enterprise Lin...

kernel: ext4: kernel panic when writing data to the last block of sparse file

Multiple off-by-one errors in the ext4 subsystem in the Linux kernel before 3.0-rc5 allow local users to cause a denial of service BUGON and system crash by accessing a sparse file in extent format with a write operation involving a block number corresponding to the largest possible 32-bit unsign...

Ubuntu 6.06 LTS : linux-source-2.6.15 vulnerabilities (USN-1111-1)

Dan Rosenberg discovered multiple flaws in the X.25 facilities parsing. If a system was using X.25, a remote attacker could exploit this to crash the system, leading to a denial of service. CVE-2010-4164 Vegard Nossum discovered that memory garbage collection was not handled correctly for active...

kernel: cifs oops when creating file with O_DIRECT set

The cifsclose function in fs/cifs/file.c in the Linux kernel before 2.6.39 allows local users to cause a denial of service NULL pointer dereference and BUG or possibly have unspecified other impact by setting the ODIRECT flag during an attempt to open a file on a CIFS filesystem...

Ubuntu Update for linux vulnerabilities USN-1105-1

Ubuntu Update for Linux kernel vulnerabilities USN-1105-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN11051.nasl 7964 2017-12-01 07:32:11Z santu $ Ubuntu Update for linux vulnerabilities USN-1105-1 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH,...

kernel: gfs2: rename causes kernel panic

The gfs2direntfindspace function in fs/gfs2/dir.c in the Linux kernel before 2.6.35 uses an incorrect size value in calculations associated with sentinel directory entries, which allows local users to cause a denial of service NULL pointer dereference and panic and possibly have unspecified other...

CentOS 4 : kernel (CESA-2010:0606)

Updated kernel packages that fix multiple security issues and one bug are now available for Red Hat Enterprise Linux 4. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...

kernel: bug in GFS/GFS2 locking code leads to dos

The gfs2lock function in the Linux kernel before 2.6.34-rc1-next-20100312, and the gfslock function in the Linux kernel on Red Hat Enterprise Linux RHEL 5 and 6, does not properly remove POSIX locks on files that are setgid without group-execute permission, which allows local users to cause a...

Linux Kernel 2.2.x<= 25 – 2.4.x<21 ptrace/kmod Local Root Exploit

No description provided by source. / Linux kernel ptrace/kmod local root exploit This code exploits a race condition in kernel/kmod.c, which creates kernel thread in insecure manner. This bug allows to ptrace cloned process, allowing to take control over privileged modprobe binary. Should work...

kernel: r8169 issue reported at 26c3

drivers/net/r8169.c in the r8169 driver in the Linux kernel 2.6.32.3 and earlier does not properly check the size of an Ethernet frame that exceeds the MTU, which allows remote attackers to 1 cause a denial of service temporary network outage via a packet with a crafted size, in conjunction with...

kernel: emergency route cache flushing leads to node deadlock

A certain Red Hat patch for net/ipv4/route.c in the Linux kernel 2.6.18 on Red Hat Enterprise Linux RHEL 5 allows remote attackers to cause a denial of service deadlock via crafted packets that force collisions in the IPv4 routing hash table, and trigger a routing "emergency" in which a hash chai...

kernel: nfsv4 client can be crashed by stating a long filename

fs/nfs/client.c in the Linux kernel before 2.6.23 does not properly initialize a certain structure member that stores the maximum NFS filename length, which allows local users to cause a denial of service OOPS via a long filename, related to the encodelookup function...

Kernel BUG() in locks_remove_flock

Race condition in the dosetlk function in fs/nfs/file.c in the Linux kernel before 2.6.26 allows local users to cause a denial of service crash via vectors resulting in an interrupted RPC call that leads to a stray FLPOSIX lock, related to improper handling of a race between fcntl and close in th...

Kernel BUG() in locks_remove_flock

Race condition in the dosetlk function in fs/nfs/file.c in the Linux kernel before 2.6.26 allows local users to cause a denial of service crash via vectors resulting in an interrupted RPC call that leads to a stray FLPOSIX lock, related to improper handling of a race between fcntl and close in th...