6601 matches found
[SECURITY] [DSA 1915-1] New Linux 2.6.26 packages fix several vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ---------------------------------------------------------------------- Debian Security Advisory DSA-1915-1 [email protected] http://www.debian.org/security/ dann frazier October 22, 2009 http://www.debian.org/security/faq -...
kernel: tc: uninitialised kernel memory leak
The tcfilltclass function in net/sched/schapi.c in the tc subsystem in the Linux kernel 2.4.x before 2.4.37.6 and 2.6.x before 2.6.31-rc9 does not initialize certain 1 tcmpad1 and 2 tcmpad2 structure members, which might allow local users to obtain sensitive information from kernel memory via...
kernel security and bug fix update
2.6.9-89.0.15.0.1.EL - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug 6845794 - fix enomem due to larger mtu size page alloc Zach Brown orabug 5486128 - backout patch sysrq-b that queues upto keventd thread Guru Anbalagane orabug 6125546 - netrx/netpoll race...
DSA-1915-1 linux-2.6 - several vulnerabilities
Bulletin has no description...
CVE-2009-3612
The tcffillnode function in net/sched/clsapi.c in the netlink subsystem in the Linux kernel 2.6.x before 2.6.32-rc5, and 2.4.37.6 and earlier, does not initialize a certain tcmpad2 structure member, which might allow local users to obtain sensitive information from kernel memory via unspecified...
Design/Logic Flaw
The tcfilltclass function in net/sched/schapi.c in the tc subsystem in the Linux kernel 2.4.x before 2.4.37.6 and 2.6.x before 2.6.31-rc9 does not initialize certain 1 tcmpad1 and 2 tcmpad2 structure members, which might allow local users to obtain sensitive information from kernel memory via...
CVE-2005-4881
The netlink subsystem in the Linux kernel 2.4.x before 2.4.37.6 and 2.6.x before 2.6.13-rc1 does not initialize certain padding fields in structures, which might allow local users to obtain sensitive information from kernel memory via unspecified vectors, related to the 1 tcfillqdisc, 2...
FreeBSD Security Advisory (FreeBSD-SA-09:13.pipe.asc)
The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-09:13.pipe.asc ADV FreeBSD-SA-09:13.pipe.asc OpenVAS Vulnerability Test $ Description: Auto generated from ADV FreeBSD-SA-09:13.pipe.asc Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft...
FreeBSD -- kqueue pipe race conditions
Problem Description A race condition exists in the pipe close code relating to kqueues, causing use-after-free for kernel memory, which may lead to an exploitable NULL pointer vulnerability in the kernel, kernel memory corruption, and other unpredictable results. Impact: Successful exploitation o...
FreeBSD-SA-09:13.pipe
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-09:13.pipe Security Advisory The FreeBSD Project Topic: kqueue pipe race conditions Category: core Module: kern Announced: 2009-10-02 Credits: Przemyslaw Frasunek...
Avast 4.8.1351.0 Privilege Escalation
Source: https://www.evilfingers.com/advisory/Advisory/AvastaswMon2.syskernelmemorycorruptionandLocalPrivilegeEscalation.php -----------Avast aswMon2.sys kernel memory corruption and Local Privilege Escalation--------- Author: Giuseppe 'Evilcry' Bonfa' E-Mail: evilcry AT GMAIL DOT COM Website:...
SuSE 11 Security Update : Linux kernel (SAT Patch Numbers 1212 / 1218 / 1219)
The SUSE Linux Enterprise 11 Kernel was updated to 2.6.27.29 fixing various bugs and security issues. The following security issues were fixed : - A missing NULL pointer check in the socket sendpage function can be used by local attackers to gain root privileges. CVE-2009-2692 - A kernel stack...
Avast! AntiVirus 4.8.1351.0 - Denial of Service / Privilege Escalation
Source: https://www.evilfingers.com/advisory/Advisory/AvastaswMon2.syskernelmemorycorruptionandLocalPrivilegeEscalation.php -----------Avast aswMon2.sys kernel memory corruption and Local Privilege Escalation--------- Author: Giuseppe 'Evilcry' Bonfa' E-Mail: evilcry AT GMAIL DOT COM Website:...
Avast Antivirus 4.8.1351.0 DoS and Privilege Escalation
Exploit for unknown platform in category local exploits ======================================================= Avast Antivirus 4.8.1351.0 DoS and Privilege Escalation ======================================================= Title: Avast Antivirus 4.8.1351.0 DoS and Privilege Escalation CVE-ID:...
Avast Antivirus 4.8.1351.0 DoS and Privilege Escalation
No description provided by source. Source: https://www.evilfingers.com/advisory/Advisory/AvastaswMon2.syskernelmemorycorruptionandLocalPrivilegeEscalation.php -----------Avast aswMon2.sys kernel memory corruption and Local Privilege Escalation--------- Author: Giuseppe 'Evilcry' Bonfa' E-Mail:...
Avast aswMon2.sys kernel memory corruption and Local Privilege Escalation.
Source: https://www.evilfingers.com/advisory/Advisory/AvastaswMon2.syskernelmemorycorruptionandLocalPrivilegeEscalation.php -----------Avast aswMon2.sys kernel memory corruption and Local Privilege Escalation--------- Author: Giuseppe 'Evilcry' Bonfa' E-Mail: evilcry AT GMAIL DOT COMbr Website:...
Avast! AntiVirus 4.8.1351.0 - Denial of Service Privilege Escalation
Avast! AntiVirus 4.8.1351.0 - Denial of Service Privilege Escalation Source: https://www.evilfingers.com/advisory/Advisory/AvastaswMon2.syskernelmemorycorruptionandLocalPrivilegeEscalation.php -----------Avast aswMon2.sys kernel memory corruption and Local Privilege Escalation--------- Author:...
CVE-2009-3290
The kvmemulatehypercall function in arch/x86/kvm/x86.c in KVM in the Linux kernel 2.6.25-rc1, and other versions before 2.6.31, when running on x86 systems, does not prevent access to MMU hypercalls from ring 0, which allows local guest OS users to cause a denial of service guest kernel crash and...
CVE-2009-3001
The llcuigetname function in net/llc/afllc.c in the Linux kernel 2.6.31-rc7 and earlier does not initialize a certain data structure, which allows local users to read the contents of some kernel memory locations by calling getsockname on an AFLLC socket...
Linux Kernel <= 2.6.30 atalk_getname() 8-bytes Stack Disclosure Exploit
No description provided by source. / appleak.c Linux keunouille = 2.6.30 AppleTalk getsockname 8-bytes kernel stack disclosure http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=3d392475c873c10c10d6d96b94d092a34ebd4791 atalkgetname can leak 8 bytes of kernel memory to use...