[SECURITY] [DLA 155-1] linux-2.6 security update

Package : linux-2.6 Version : 2.6.32-48squeeze11 CVE ID : CVE-2013-6885 CVE-2014-7822 CVE-2014-8133 CVE-2014-8134 CVE-2014-8160 CVE-2014-9420 CVE-2014-9584 CVE-2014-9585 CVE-2015-1421 CVE-2015-1593 This update fixes the CVEs described below. A further issue, CVE-2014-9419, was considered, but...

Microsoft Windows Kernel 'Win32k.sys' CVE-2015-0058 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code with elevated privileges and gain access to kernel memory. Technologies Affected Microsoft Windows 8 for 32-bit Systems Microsoft Windows 8 for...

CVE-2014-8612

Multiple array index errors in the Stream Control Transmission Protocol SCTP module in FreeBSD 10.1 before p5, 10.0 before p17, 9.3 before p9, and 8.4 before p23 allow local users to 1 gain privileges via the stream id to the setsockopt function, when setting the SCTIPSSVALUE option, or 2 read...

Information disclosure

Multiple array index errors in the Stream Control Transmission Protocol SCTP module in FreeBSD 10.1 before p5, 10.0 before p17, 9.3 before p9, and 8.4 before p23 allow local users to 1 gain privileges via the stream id to the setsockopt function, when setting the SCTIPSSVALUE option, or 2 read...

CVE-2014-8612

Multiple array index errors in the Stream Control Transmission Protocol SCTP module in FreeBSD 10.1 before p5, 10.0 before p17, 9.3 before p9, and 8.4 before p23 allow local users to 1 gain privileges via the stream id to the setsockopt function, when setting the SCTIPSSVALUE option, or 2 read...

FreeBSD Security Advisory FreeBSD-SA-15:02.kmem

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-15:02.kmem Security Advisory The FreeBSD Project Topic: SCTP SCTPSSVALUE kernel memory corruption and disclosure Category: core Module: sctp Announced: 2015-01-...

Code injection

The Bluetooth driver in Apple OS X before 10.10.2 allows attackers to execute arbitrary code in a privileged context or cause a denial of service arbitrary-size bzero of kernel memory via a crafted app...

CVE-2014-8836

The Bluetooth driver in Apple OS X before 10.10.2 allows attackers to execute arbitrary code in a privileged context or cause a denial of service arbitrary-size bzero of kernel memory via a crafted app...

CVE-2014-8822

CVE-2014-8822 affects Apple OS X IOHIDFamily prior to 10.10.2. A crafted app calling an unspecified IOHID user-client method can cause a kernel-context code execution or a denial of service (kernel memory write). Root cause involves a bounds/validation issue in the IOHIDFamily user-client handlin...

CVE-2014-8822

IOHIDFamily in Apple OS X before 10.10.2 allows attackers to execute arbitrary code in a kernel context or cause a denial of service write to kernel memory via a crafted app that calls an unspecified user-client method...

CVE-2014-8823

The IOUSBControllerUserClient::ReadRegister function in the IOUSB controller in IOUSBFamily in Apple OS X before 10.10.2 allows local users to read data from arbitrary kernel-memory locations by leveraging root access and providing a crafted first argument...

Apple MAC OS X Yosemite IOBluetoothFamily Integer Overflow Vulnerability

Apple MAC OS X Yosemite is the latest operating system developed by Apple. Apple MAC OS X Yosemite suffers from an integer overflow vulnerability in the handling of IOBluetoothFamily, which allows local attackers to exploit the vulnerability to manipulate kernel memory and execute arbitrary code...

Apple MAC OS X Yosemite IOUSB Controller User Client Function Memory Access Vulnerability

Apple MAC OS X Yosemite is the latest operating system developed by Apple. A memory access vulnerability exists in Apple MAC OS X Yosemite's handling of the IOUSB controller user client function, which allows a privileged application to read arbitrary data from kernel memory...

FreeBSD-SA-15:02.kmem

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-15:02.kmem Security Advisory The FreeBSD Project Topic: SCTP SCTPSSVALUE kernel memory corruption and disclosure Category: core Module: sctp Announced:...

CVE-2014-9584

The parserockridgeinodeinternal function in fs/isofs/rock.c in the Linux kernel before 3.18.2 does not validate a length value in the Extensions Reference ER System Use Field, which allows local users to obtain sensitive information from kernel memory via a crafted iso9660 image...

Linux Kernel isofs Information Disclosure Vulnerability

Linux kernel is an open source operating system. An information disclosure vulnerability exists in the linux kernel supporting the iso9660 file system CONFIGISO9660FS, which can be triggered by accessing data on iso9660 impacts containing RockRidge extension reference records, allowing an...

Kernel: target/rd: imformation leakage

An information leak flaw was found in the RAM Disks Memory Copy rdmcp backend driver of the iSCSI Target subsystem of the Linux kernel. A privileged user could use this flaw to leak the contents of kernel memory to an iSCSI initiator remote client...

CVE-2014-7252

Multiple unspecified vulnerabilities in the Syslink driver for Texas Instruments OMAP mobile processor, as used on NTT DOCOMO ARROWS Tab LTE F-01D, ARROWS X LTE F-05D, Disney Mobile on docomo F-08D, REGZA Phone T-01D, and PRADA phone by LG L-02D; and SoftBank SHARP handsets 102SH allow local user...

Input validation

Multiple unspecified vulnerabilities in the Syslink driver for Texas Instruments OMAP mobile processor, as used on NTT DOCOMO ARROWS Tab LTE F-01D, ARROWS X LTE F-05D, Disney Mobile on docomo F-08D, REGZA Phone T-01D, and PRADA phone by LG L-02D; and SoftBank SHARP handsets 102SH allow local user...

CVE-2014-7252

The CVE-2014-7252 entry relates to multiple improper data validation vulnerabilities in the Syslink driver for Texas Instruments OMAP mobile processors. The Syslink driver, used in devices such as NTT DOCOMO ARROWS and SoftBank SHARP handsets, allows local users to execute arbitrary code or read ...