6570 matches found
CVE-2006-1588
CVE-2006-1588 affects NetBSD 1.6 to 3.0 where the bridge ioctl (if_bridge code) does not clear sensitive memory before copying ioctl results to the requesting process. This can allow local users to obtain portions of kernel memory. The vulnerability is described in multiple sources (NVD, CVE reco...
[SA19464] NetBSD if_bridge Kernel Memory Disclosure Vulnerability
TITLE: NetBSD ifbridge Kernel Memory Disclosure Vulnerability SECUNIA ADVISORY ID: SA19464 VERIFY ADVISORY: http://secunia.com/advisories/19464/ CRITICAL: Less critical IMPACT: Exposure of sensitive information WHERE: Local system OPERATING SYSTEM: NetBSD 1.x http://secunia.com/product/255/...
Linux Kernel 2.4.x/2.5.x/2.6.x - 'Sockaddr_In.Sin_Zero' Kernel Memory Disclosure
/ source: https://www.securityfocus.com/bid/17203/info The Linux kernel is affected by local memory-disclosure vulnerabilities. These issues are due to the kernel's failure to properly clear previously used kernel memory before returning it to local users. These issues allow an attacker to read...
Linux Kernel 2.4.x2.5.x2.6.x - Sockaddr_In.Sin_Zero Kernel Memory Disclosure
Linux Kernel 2.4.x2.5.x2.6.x - SockaddrIn.SinZero Kernel Memory Disclosure / source: https://www.securityfocus.com/bid/17203/info The Linux kernel is affected by local memory-disclosure vulnerabilities. These issues are due to the kernel's failure to properly clear previously used kernel memory...
CVE-2006-0457
Race condition in the 1 addkey, 2 requestkey, and 3 keyctl functions in Linux kernel 2.6.x allows local users to cause a denial of service crash or read sensitive kernel memory by modifying the length of a string argument between the time that the kernel calculates the length and when it copies t...
Race condition
Race condition in the 1 addkey, 2 requestkey, and 3 keyctl functions in Linux kernel 2.6.x allows local users to cause a denial of service crash or read sensitive kernel memory by modifying the length of a string argument between the time that the kernel calculates the length and when it copies t...
CVE-2006-0457
Race condition in the 1 addkey, 2 requestkey, and 3 keyctl functions in Linux kernel 2.6.x allows local users to cause a denial of service crash or read sensitive kernel memory by modifying the length of a string argument between the time that the kernel calculates the length and when it copies t...
CVE-2006-0457
CVE-2006-0457 is a race condition in the Linux kernel 2.6.x key-control flow (add_key, request_key, keyctl). The bug allows local users to crash the kernel or read sensitive kernel memory by altering the length of a string argument between the kernel calculating length and copying data into kerne...
CVE-2006-0380
A logic error in FreeBSD kernel 5.4-STABLE and 6.0 causes the kernel to calculate an incorrect buffer length, which causes more data to be copied to userland than intended, which could allow local users to read portions of kernel memory...
FreeBSD-SA-06:06.kmem
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-06:06.kmem Security Advisory The FreeBSD Project Topic: Local kernel memory disclosure Category: core Module: kernel Announced: 2006-01-25 Credits: Xin LI, Karl...
FreeBSD -- Local kernel memory disclosure
Problem description: A buffer allocated from the kernel stack may not be completely initialized before being copied to userland. CVE-2006-0379 A logic error in computing a buffer length may allow too much data to be copied into userland. CVE-2006-0380 Impact: Portions of kernel memory may be...
security flaw
The procfs code procmisc.c in Linux 2.6.14.3 and other versions before 2.6.15 allows attackers to read sensitive kernel memory via unspecified vectors in which a signed value is added to an unsigned value...
Ubuntu 4.10 / 5.04 : linux-source-2.6.10, linux-source-2.6.8.1 vulnerabilities (USN-178-1)
Oleg Nesterov discovered a local Denial of Service vulnerability in the timer handling. When a non group-leader thread called exec to execute a different program while an itimer was pending, the timer expiry would signal the old group leader task, which did not exist any more. This caused a kerne...
NetBSD Security Advisory 2006-001: Kernfs kernel memory disclosure
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 NetBSD Security Advisory 2006-001 ================================= Topic: Kernfs kernel memory disclosure Version: NetBSD-current: source prior to November 23, 2005 NetBSD 3.0: not affected NetBSD 2.1: affected NetBSD 2.0.3: affected NetBSD 2.0:...
CVE-2006-0145
The kernfsxread function in kernfs in NetBSD 1.6 through 2.1, and OpenBSD 3.8, does not properly validate file offsets against negative 32-bit values that occur as a result of truncation, which allows local users to read arbitrary kernel memory and gain privileges via the lseek system call...
Design/Logic Flaw
The kernfsxread function in kernfs in NetBSD 1.6 through 2.1, and OpenBSD 3.8, does not properly validate file offsets against negative 32-bit values that occur as a result of truncation, which allows local users to read arbitrary kernel memory and gain privileges via the lseek system call...
CVE-2006-0145
The kernfsxread function in kernfs in NetBSD 1.6 through 2.1, and OpenBSD 3.8, does not properly validate file offsets against negative 32-bit values that occur as a result of truncation, which allows local users to read arbitrary kernel memory and gain privileges via the lseek system call...
CVE-2005-4605
The procfs code procmisc.c in Linux 2.6.14.3 and other versions before 2.6.15 allows attackers to read sensitive kernel memory via unspecified vectors in which a signed value is added to an unsigned value...
CVE-2005-4605
The procfs code procmisc.c in Linux 2.6.14.3 and other versions before 2.6.15 allows attackers to read sensitive kernel memory via unspecified vectors in which a signed value is added to an unsigned value...
CVE-2005-4783
kernfsxread in kernfsvnops.c in NetBSD before 20050831 does not check for a negative offset when reading the message buffer, which allows local users to read arbitrary kernel memory...