Multiple linux kernels vulnerabilities

NAt feature DoS, sysgetthreadarea kernel memory content leak, ipvsconnflush race conditions, Posix timers DoS, rosertioctl DoS...

Linux Kernel 2.6.x - Time_Out_Leases PrintK Local Denial of Service

Linux Kernel 2.6.x - TimeOutLeases PrintK Local Denial of Service / source: https://www.securityfocus.com/bid/15627/info Linux kernel is susceptible to a local denial-of-service vulnerability. Local attackers may trigger this issue by obtaining numerous file-lock leases, which will consume...

CVE-2005-3806

CVE-2005-3806 affects Linux kernels 2.4 (up to 2.4.32) and 2.6 (before 2.6.14); IPv6 flow label handling in ip6_flowlabel.c may modify the wrong variable, enabling local attackers to corrupt kernel memory or trigger a crash by freeing non-allocated memory. Connected advisories (Debian DSA-1018-1/...

CVE-2002-2180

The setitimer2 system call in OpenBSD 2.0 through 3.1 does not properly check certain arguments, which allows local users to write to kernel memory and possibly gain root privileges, possibly via an integer signedness error...

CVE-2002-2127

Integrity Protection Driver IPD 1.2 and earlier blocks access to \Device\PhysicalMemory by its name, which could allow local privileged processes to overwrite kernel memory by accessing the device through a symlink...

CVE-2002-2127

The CVE-2002-2127 entry concerns Integrity Protection Driver (IPD) versions 1.2 and earlier. The vulnerability arises from IPD blocking access to \Device\PhysicalMemory by name, but an attacker could abuse a symlink to access the device and cause a local privileged process to overwrite kernel mem...

[ Suresec Advisories ] - Mac OS X (xnu) multiple information leaks

Suresec security advisory 8 3th November 2005 CVE ID: CVE-2005-1126, CVE-2005-2752 Mac OS X kernel xnu multiple information leaks. Vulnerability summary: The first information leak found in xnu is located in the ifconf function used to retrieve information about all used network interfaces. The...

Unchecked Buffer in PPTP Implementation Could Enable DOS Attacks (Q329834)

Hotfix to fix Unchecked Buffer in PPTP Implementation Q329834 is not installed. SPDX-FileCopyrightText: 2002 SECNAP Network Security, LLC Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

security flaw

mm/ioremap.c in Linux 2.6 on 64-bit x86 systems allows local users to cause a denial of service or an information leak via an ioremap on a certain memory map that causes the iounmap to perform a lookup of a page that does not exist...

CVE-2005-3181

The audit system in Linux kernel 2.6.6, and other versions before 2.6.13.4, when CONFIGAUDITSYSCALL is enabled, uses an incorrect function to free namescache memory, which prevents the memory from being tracked by AUDITSYSCALL code and leads to a memory leak that allows attackers to cause a denia...

security flaw

Buffer overflow in ptrace in the Linux Kernel for 64-bit architectures allows local users to write bytes into kernel memory...

CVE-2004-2339

Microsoft Windows 2000, XP, and possibly 2003 allows local users with the SeDebugPrivilege privilege to execute arbitrary code as kernel and read or write kernel memory via the NtSystemDebugControl function, which does not verify its pointer arguments. Note: this issue has been disputed, since...

CVE-2002-1826

grsecurity 1.9.4 for Linux kernel 2.4.18 allows local users to bypass read-only permissions by using mmap to directly map /dev/mem or /dev/kmem to kernel memory...

CVE-2005-1763

Buffer overflow in ptrace in the Linux Kernel for 64-bit architectures allows local users to write bytes into kernel memory...

CVE-2005-1763

Buffer overflow in ptrace in the Linux Kernel for 64-bit architectures allows local users to write bytes into kernel memory...

CVE-2005-1763

Buffer overflow in ptrace in the Linux Kernel for 64-bit architectures allows local users to write bytes into kernel memory...

security flaw

Raw character devices raw.c in the Linux kernel 2.6.x call the wrong function before passing an ioctl to the block device, which crosses security boundaries by making kernel address space accessible from user space, a similar vulnerability to CVE-2005-1589...

Kaspersky AntiVirus "klif.sys" Privilege Escalation Vulnerability

Exploit for unknown platform in category local exploits ================================================================= Kaspersky AntiVirus "klif.sys" Privilege Escalation Vulnerability ================================================================= / Added NOSTRICT to 1 on line 2 /str0ke !...

FUSE 2.22.3 - Local Information Disclosure

FUSE 2.22.3 - Local Information Disclosure // source: https://www.securityfocus.com/bid/13857/info FUSE is susceptible to a local information disclosure vulnerability. This issue is due to a failure of the kernel module to properly clear used memory prior to its reuse. This vulnerability allows...

FUSE 2.2/2.3 - Local Information Disclosure

// source: https://www.securityfocus.com/bid/13857/info FUSE is susceptible to a local information disclosure vulnerability. This issue is due to a failure of the kernel module to properly clear used memory prior to its reuse. This vulnerability allows malicious local users to gain access to...