19 matches found
CVE-2025-39753
CVE-2025-39753 relates to the Linux kernel’s gfs2 code. The vulnerability is resolved by a patch that adds the .migrate_folio flag in gfs2_{rgrp,meta}_aops, addressing a warning: gfs2_meta_aops does not implement migrate_folio, triggering messages during xfstests. The described impact is the supp...
PT-2025-49786
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the Linux kernel’s f2fs file system related to an infinite loop within the insert extent tree function. This occurs when incorrect extent information is received durin...
SUSE CVE-2018-5995
The pcpuembedfirstchunk function in mm/percpu.c in the Linux kernel through 4.14.14 allows local users to obtain sensitive address information by reading dmesg data from a "pages/cpu" printk call...
DEBIAN-CVE-2021-28375
An issue was discovered in the Linux kernel through 5.11.6. fastrpcinternalinvoke in drivers/misc/fastrpc.c does not prevent user applications from sending kernel RPC messages, aka CID-20c40794eb85. This is a related issue to CVE-2019-2308...
Linux: kern.emerg in /etc/rsyslog.conf
Syslogd can forward any information with priority SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Buffer Overflow Vulnerability in Multiple Qualcomm Products (CNVD-2019-06481)
The Qualcomm MDM9206 and others are a central processing unit CPU product of Qualcomm Incorporated. A buffer overflow vulnerability exists in the PMIC Modules of several Qualcomm products, which can be exploited by an attacker to execute code or cause a denial of service, due to the length of the...
DEBIAN-CVE-2018-5995
The pcpuembedfirstchunk function in mm/percpu.c in the Linux kernel through 4.14.14 allows local users to obtain sensitive address information by reading dmesg data from a "pages/cpu" printk call...
About the security content of iOS 11.1 - Apple Support
About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security updates page. For more information about security, se...
kernel: Kernel address information leak in drivers/acpi/sbshc.c:acpi_smbus_hc_add() function potentially allowing KASLR bypass
The acpismbushcadd function in drivers/acpi/sbshc.c in the Linux kernel, through 4.14.15, allows local users to obtain sensitive address information by reading dmesg data from an SBS HC printk call...
Debian DLA-72-2 : rsyslog regression update
The Wheezy patch left an unresolved symbol in the imklog module of the Squeeze version. rsyslog worked fine except that messages from the kernel couldn't be submitted any longer. This update fixes this issue. NOTE: Tenable Network Security has extracted the preceding description block directly fr...
[SECURITY] [DLA 72-2] rsyslog regression update
Package : rsyslog Version : 4.6.4-2+deb6u2 The Wheezy patch left an unresolved symbol in the imklog module of the Squeeze version. rsyslog worked fine except that messages from the kernel couldnt be submitted any longer. This update fixes this issue...
RedHat Linux 5.0/5.1/5.2,Slackware Linux <= 3.5 klogd Buffer Overflow Vulnerability (2)
No description provided by source. source: http://www.securityfocus.com/bid/398/info It is possible to cause a denial of service remote and local through generating old, obscure kernel messages not terminated with \n in klogd. The problem exists because of a buffer overflow in the klogd handling ...
kernel: xen: pciback DoS via not rate limited log messages
The pcibackenablemsi function in the PCI backend driver drivers/xen/pciback/confspacecapabilitymsi.c in Xen for the Linux kernel 2.6.18 and 3.8 allows guest OS users with PCI device access to cause a denial of service via a large number of kernel log messages. NOTE: some of these details are...
Linux pciback DoS via not rate limited log messages.
ISSUE DESCRIPTION Xen's PCI backend drivers in Linux allow a guest with assigned PCI devices to cause a DoS through a flood of kernel messages, potentially affecting other domains in the system. IMPACT A malicious guest can mount a DoS affecting the entire system. VULNERABLE SYSTEMS All systems...
Apache - Arbitrary Long HTTP Headers (Denial of Service)
/usr/bin/perl exploit for apache apgetmimeheaderscore vuln adv is here: http://www.guninski.com/httpd1.html version: apache 2 newPeerAddr = $host,PeerPort = $port, Proto = 'tcp' || die "new error$@\n"; binmode$sock; $hostname="Host: $host"; $buf2='A'x50; $buf4='A'x8183; $len=length$buf2; $buf="GE...
klogd-1.3-22-bof.txt
Date: Thu, 10 Sep 1998 10:26:06 +0200 From: Michal Zalewski To: [email protected] Subject: Linux klogd 1.3-22 buffer overflow Good morning, This time - buffer overflow in Linux klogd daemon from sysklogd-1.3 package up to release 22 - affects Red Hat 5.x and Slackware 3.x, no data about other...
RedHat Linux 5.05.15.2 Slackware Linux 3.5 - klogd Local Buffer Overflow (1)
RedHat Linux 5.05.15.2 Slackware Linux 3.5 - klogd Local Buffer Overflow 1 // source: https://www.securityfocus.com/bid/398/info It is possible to cause a denial of service remote and local through generating old, obscure kernel messages not terminated with \n in klogd. The problem exists because...
RedHat Linux 5.0/5.1/5.2 / Slackware Linux 3.5 - 'klogd' Local Buffer Overflow (2)
// source: https://www.securityfocus.com/bid/398/info It is possible to cause a denial of service remote and local through generating old, obscure kernel messages not terminated with \n in klogd. The problem exists because of a buffer overflow in the klogd handling of kernel messages. It is...
RedHat Linux 5.05.15.2 Slackware Linux 3.5 - klogd Local Buffer Overflow (2)
RedHat Linux 5.05.15.2 Slackware Linux 3.5 - klogd Local Buffer Overflow 2 // source: https://www.securityfocus.com/bid/398/info It is possible to cause a denial of service remote and local through generating old, obscure kernel messages not terminated with \n in klogd. The problem exists because...