35 matches found
GSD-2022-1004240 powerpc/prom_init: Fix kernel config grep
powerpc/prominit: Fix kernel config grep This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.18.10 by commit...
kernel: out-of-bounds write in xt_compat_target_from_user() in net/netfilter/x_tables.c
A flaw was discovered in processing setsockopt IPTSOSETREPLACE or IP6TSOSETREPLACE for 32 bit processes on 64 bit systems. This flaw will allow local user to gain privileges or cause a DoS through user name space. This action is usually restricted to root-privileged users but can also be leverage...
BSA-2021-1481
Security Advisory ID : BSA-2021-1481 Component : IPv6 networking Revision : 1.0 The OVA version of Brocade SANnav before version 2.1.1 installation with IPv6 networking exposes the docker container ports to the network, increasing the potential attack surface. When IPv6 networking is enabled on t...
Emba - An Analyzer For Linux-based Firmware Of Embedded Devices
emba is being developed as a firmware scanner that analyses already-extracted Linux-based firmware images. It should help you to identify and focus on the interesting areas of a huge firmware image. Although emba is optimized for offline firmware images, it can test both, live systems and extract...
Exploit for NULL Pointer Dereference in Linux Linux_Kernel
CVE-2019-10207 PoC for CVE-2019-10207 linux kernel:...
Ubuntu overlayfs privilege elevation
Added: 06/26/2015 CVE: CVE-2015-1328 BID: 75206 Background Overlayfs is a type of file system for Linux which implements a union mount. Problem In Ubuntu, overlayfs fails to correctly check file permissions when creating new files in the upper filesystem directory. This can be exploited by an...
YASAT - Yet Another Stupid Audit Tool
YASAT Yet Another Stupid Audit Tool is a simple stupid audit tool. Its goal is to be as simple as possible with minimum binary dependencies only sed, grep and cut Second goal is to document each test with maximum information and links to official documentation. It do many tests for checking...
FreeBSD 7.2 (pecoff executable) Local Denial of Service Exploit
No description provided by source. / pecoffpanic.c by Shaun Colley, 20 July 2009 this code will panic the freebsd kernel due to a bug in the PECOFF executable loader code 'options PECOFFSUPPORT' in kernel config or kldload pecoff panic9 is in vmfault due to a page fault. the panic seems to be...
HP-UX Security Patch : PHCO_25429
Kernel configuration commands patch %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if !definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid26240; scriptversion"1.8"; scriptsetattributeattribute:"pluginmodificationdate",...
HP-UX Security Patch : PHCO_25342
Kernel configuration commands patch %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if !definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid26239; scriptversion"1.8"; scriptsetattributeattribute:"pluginmodificationdate",...
HP-UX Security Patch : PHCO_26061
Kernel configuration commands patch %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if !definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid26249; scriptversion"1.8"; scriptsetattributeattribute:"pluginmodificationdate",...
HP-UX Security Patch : PHCO_26060
Kernel configuration commands patch %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if !definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid26248; scriptversion"1.8"; scriptsetattributeattribute:"pluginmodificationdate",...
NetBSD Security Advisory 2006-002: settimeofday() time wrap
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 NetBSD Security Advisory 2006-002 ================================= Topic: settimeofday time wrap Version: NetBSD-current: source prior to December 5, 2005 NetBSD 3.0: not affected NetBSD 2.1: affected NetBSD 2.0.3: affected NetBSD 1.6.2: affected...
Denial of Service in Mosix 1.5.x
Hi, mosix and probalby open-Mosix are vulnerable to an Denial of Service attack, the problem lies in the mosix-protocol-stack, mosix are not able to handle garbage-packets correctly. MosiX is an cluster-environment for Linux and is avail from www.mosix.org also vulnerable is to this is the...
FreeBSD 4.4 - AIO Library Cross Process Memory Write
// source: https://www.securityfocus.com/bid/3661/info aio.h is a library implementing the POSIX standard for asynchronous I/O. Support for AIO may be enabled in FreeBSD by compiling the kernel with the VFSAIO option. This option is not enabled in the default kernel configuration. Under some...