CVE-2004-0370

The setsockopt call in the KAME Project IPv6 implementation, as used in FreeBSD 5.2, does not properly handle certain IPv6 socket options, which could allow attackers to read kernel memory and cause a system panic...

FreeBSD-SA-04:06.ipv6

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-04:06.ipv6 Security Advisory The FreeBSD Project Topic: setsockopt2 IPv6 sockets input validation error Category: core Module: kernel Announced: 2004-03-29...

setsockopt(2) IPv6 sockets input validation error

From the FreeBSD Security Advisory: A programming error in the handling of some IPv6 socket options within the setsockopt2 system call may result in memory locations being accessed without proper validation. It may be possible for a local attacker to read portions of kernel memory, resulting in...

CVE-2004-0114

The shmat system call in the System V Shared Memory interface for FreeBSD 5.2 and earlier, NetBSD 1.3 and earlier, and OpenBSD 2.6 and earlier, does not properly decrement a shared memory segment's reference count when the vmmapfind function fails, which could allow local users to gain read or...

FreeBSD-SA-04:02.shmat

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-04:02.shmat Security Advisory The FreeBSD Project Topic: shmat reference counting bug Category: core Module: kernel Announced: 2004-02-05 Credits: Joost Pol...

KAME Racoon - Initial Contact SA Deletion

KAME Racoon - Initial Contact SA Deletion // source: https://www.securityfocus.com/bid/9417/info It has been reported that it may be possible for attackers to remotely delete security associations SAs in hosts running the KAME IKE daemon Racoon. / Sun Microsystems Solaris sysinfo Kernel Memory...

KAME Racoon - 'Initial Contact' SA Deletion

// source: https://www.securityfocus.com/bid/9417/info It has been reported that it may be possible for attackers to remotely delete security associations SAs in hosts running the KAME IKE daemon Racoon. / Sun Microsystems Solaris sysinfo Kernel Memory Disclosure exploit...

CVE-2003-1289

The iBCS2 system call translator for statfs in NetBSD 1.5 through 1.5.3 and FreeBSD 4 up to 4.8-RELEASE-p2 and 5 up to 5.1-RELEASE-p1 allows local users to read portions of kernel memory memory disclosure via a large length parameter, which copies additional kernel memory into userland memory...

[Full-Disclosure] [SECURITY] [DSA-403-1] userland can access Linux kernel memory

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-403-1 [email protected] http://www.debian.org/security/ Wichert Akkerman December 1, 2003 -...

CVE-2003-1062

Unknown vulnerability in the sysinfo system call for Solaris for SPARC 2.6 through 9, and Solaris for x86 2.6, 7, and 8, allows local users to read kernel memory...

[Full-Disclosure] FreeBSD Security Advisory FreeBSD-SA-03:17.procfs

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-03:17.procfs Security Advisory The FreeBSD Project Topic: kernel memory disclosure via procfs Category: core Module: sys Announced: 2003-10-03 Credits: Joost Pol...

FreeBSD-SA-03:17.procfs

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-03:17.procfs Security Advisory The FreeBSD Project Topic: kernel memory disclosure via procfs Category: core Module: sys Announced: 2003-10-03 Credits: Joost Pol...

Multiple NetBSD bugs

DoS, kernel memory reading...

*BSD ibcs2 information leak

statfs call with large argument length allows to read kernel memory content...

NetBSD Security Advisory 2003-013: Kernel memory disclosure via ibcs2

-----BEGIN PGP SIGNED MESSAGE----- NetBSD Security Advisory 2003-013 ================================= Topic: Kernel memory disclosure via ibcs2 Version: NetBSD-current: source prior to August 7, 2002 NetBSD 1.6.1: not affected NetBSD 1.6: not affected NetBSD-1.5.3: affected NetBSD-1.5.2: affecte...

NetBSD Security Advisory 2003-014: Insufficient argument checking in sysctl(2)

-----BEGIN PGP SIGNED MESSAGE----- NetBSD Security Advisory 2003-014 ================================= Topic: Insufficient argument checking in sysctl2 Version: NetBSD-current: source prior to August 25, 2003 NetBSD 1.6.1: affected NetBSD 1.6: affected NetBSD-1.5.3: affected NetBSD-1.5.2: affecte...

OpenBSD integer overflow

integer overflow in semget allows root to write kernel memory...

CVE-2003-0642

WatchGuard ServerLock for Windows 2000 before SL 2.0.4 allows local users to access kernel memory via a symlink attack on \Device\PhysicalMemory...

Kernel memory disclosure via ibcs2

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-03:10.ibcs2 Security Advisory The FreeBSD Project Topic: Kernel memory disclosure via ibcs2 Category: core Module: sys Announced: 2003-08-10 Credits: David Rhodus...

FreeBSD-SA-03:10.ibcs2

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-03:10.ibcs2 Security Advisory The FreeBSD Project Topic: Kernel memory disclosure via ibcs2 Category: core Module: sys Announced: 2003-08-10 Credits: David Rhodus...