kernel: infiniband: Unprivileged process can overwrite kernel memory using rdma_ucm.ko

A flaw was found in the way certain interfaces of the Linux kernel's Infiniband subsystem used write as bi-directional ioctl replacement, which could lead to insufficient memory security checks when being invoked using the splice system call. A local unprivileged user on a system with either...

Apple OS X El Capitan Intel Graphics Driver Sensitive Information Access Vulnerability

Apple OS X El Capitan is a dedicated operating system developed by Apple for Mac computers.Intel Graphics Driver is one of the drivers for the graphics card. A sensitive information acquisition vulnerability exists in Intel Graphics Driver in Apple OS X El Capitan versions prior to 10.11.5. The...

Apple OS X El Capitan Intel Graphics Driver Sensitive Information Access Vulnerability (CNVD-2016-04225)

Apple OS X El Capitan is a dedicated operating system developed by Apple for Mac computers.Intel Graphics Driver is one of the drivers for the graphics card. A sensitive information acquisition vulnerability exists in Intel Graphics Driver in Apple OS X El Capitan versions prior to 10.11.5. The...

CVE-2016-1862

Intel Graphics Driver in Apple OS X before 10.11.5 allows attackers to obtain sensitive kernel memory-layout information via a crafted app, a different vulnerability than CVE-2016-1860...

CVE-2016-1862

Intel Graphics Driver in Apple OS X before 10.11.5 allows attackers to obtain sensitive kernel memory-layout information via a crafted app, a different vulnerability than CVE-2016-1860...

CVE-2016-1860

Intel Graphics Driver in Apple OS X before 10.11.5 allows attackers to obtain sensitive kernel memory-layout information via a crafted app, a different vulnerability than CVE-2016-1862...

Memory corruption

Intel Graphics Driver in Apple OS X before 10.11.5 allows attackers to obtain sensitive kernel memory-layout information via a crafted app, a different vulnerability than CVE-2016-1862...

CVE-2016-1862

CVE-2016-1862 affects the Intel Graphics Driver on OS X El Capitan before 10.11.5 . A crafted application could cause the driver to disclose kernel memory-layout information , an information-disclosure weakness distinct from CVE-2016-1860. Connected sources (CNVD/EUVD) corroborate a sensitive inf...

CVE-2016-1860

CVE-2016-1860 affects Intel Graphics Driver in Apple OS X El Capitan prior to 10.11.5. The vulnerability allows a crafted application to disclose sensitive kernel memory-layout information due to a memory-disclosure flaw in the driver. Affected systems are OS X El Capitan v10.11 with the issue pa...

Ubuntu 15.10 : linux-raspi2 vulnerabilities (USN-3004-1)

Justin Yackoski discovered that the Atheros L2 Ethernet Driver in the Linux kernel incorrectly enables scatter/gather I/O. A remote attacker could use this to obtain potentially sensitive information from kernel memory. CVE-2016-2117 Jann Horn discovered that eCryptfs improperly attempted to use...

Ubuntu 15.10 : linux vulnerabilities (USN-3003-1)

Justin Yackoski discovered that the Atheros L2 Ethernet Driver in the Linux kernel incorrectly enables scatter/gather I/O. A remote attacker could use this to obtain potentially sensitive information from kernel memory. CVE-2016-2117 Jann Horn discovered that eCryptfs improperly attempted to use...

Vulnerabilities in iOS and Mac OS X operating systems, which allow attackers to obtain confidential information from the kernel’s memory

The vulnerability of the Disk Images subsystem in iOS and Mac OS X operating systems exists due to insufficient checks on the status of resources when they are potentially shared among multiple processes. Exploiting this vulnerability could allow a malicious actor to obtain confidential informati...

The vulnerability of the Mac OS X operating system allows a perpetrator to gain access to protected information in the kernel’s memory.

The vulnerability of the AMD subsystem of the Mac OS X operating system is related to the lack of protection for system data. Exploiting this vulnerability allows a malicious actor, operating remotely, to gain access to protected information in the kernel’s memory through a specially created...

The vulnerability of the iOS operating system allows a perpetrator to gain access to protected information in the kernel memory.

The vulnerability of the iOS operating system’s accessibility component is caused by a buffer overflow. Exploiting this vulnerability can allow an attacker, working remotely, to gain access to protected information in the kernel memory through a specially created application...

OpenAFS Kernel Memory Leak Vulnerability - Windows

OpenAFS is prone to kernel memory leak vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:openafs:openafs";...

Ubuntu: Security Advisory (USN-2989-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2016-1886

Integer signedness error in the genkbdcommonioctl function in sys/dev/kbd/kbd.c in FreeBSD 9.3 before p42, 10.1 before p34, 10.2 before p17, and 10.3 before p3 allows local users to obtain sensitive information from kernel memory, cause a denial of service memory overwrite and kernel crash, or ga...

Integer overflow

Integer signedness error in the genkbdcommonioctl function in sys/dev/kbd/kbd.c in FreeBSD 9.3 before p42, 10.1 before p34, 10.2 before p17, and 10.3 before p3 allows local users to obtain sensitive information from kernel memory, cause a denial of service memory overwrite and kernel crash, or ga...

CVE-2016-1886

Integer signedness error in the genkbdcommonioctl function in sys/dev/kbd/kbd.c in FreeBSD 9.3 before p42, 10.1 before p34, 10.2 before p17, and 10.3 before p3 allows local users to obtain sensitive information from kernel memory, cause a denial of service memory overwrite and kernel crash, or ga...

DEBIAN-CVE-2016-4580

The x25negotiatefacilities function in net/x25/x25facilities.c in the Linux kernel before 4.5.5 does not properly initialize a certain data structure, which allows attackers to obtain sensitive information from kernel stack memory via an X.25 Call Request...