PFQ - Functional Network Framework For Multi-Core Architectures

PFQ is a functional framework designed for the Linux operating system built for efficient packets capture/transmission 10G, 40G and beyond, in-kernel functional processing, kernel-bypass and packets steering across groups of sockets/end-points. It is highly optimized for multi-core architecture, ...

The vulnerability of the SNMP NAT module in Linux operating systems allows attackers to increase their privileges or cause service failures.

The vulnerability of the SNMP NAT module net/ipv4/netfilter/nfnatsnmpbasicmain.c in the Linux operating system is due to indexing errors in the array. Exploiting this vulnerability can allow an attacker to increase their privileges or cause service failures...

Product update: Virtuozzo 6.0 Update 12 Hotfix 36 (6.0.12-3734)

This update provides a stability fix. Vulnerability id: PSBM-90584 Guest tools could fail to install in a Linux guest due to an issue with the 'prleth' kernel module...

Tyton - Linux Kernel-Mode Rootkit Hunter for 4.4.0-31+

Linux Kernel-Mode Rootkit Hunter for 4.4.0-31+. For more information, visit Tyton's website. Detected Attacks Hidden Modules Syscall Table Hooking Network Protocol Hooking Netfilter Hooking Zeroed Process Inodes Process Fops Hooking Interrupt Descriptor Table Hooking Additional Features...

Hack Allows Escape of Play-with-Docker Containers

Researchers hacked the Docker test platform called Play-with-Docker, allowing them to access data and manipulate any test Docker containers running on the host system. The proof-of-concept hack does not impact production Docker instances, according to CyberArk researchers that developed the...

CentOS 7 : keepalived (CESA-2019:0022)

An update for keepalived is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fro...

Google Android debugfs module buffer overflow vulnerability

Android is a Linux-based open source operating system jointly developed by Google and the Open Handset Alliance OHA. debugfs is a virtual filesystem module for kernel debugging. The debugfs module in Android suffers from a buffer overflow vulnerability that arises from a program's failure to dete...

Novell NetWare Stack Buffer Overflow Vulnerability

Novell NetWare is a network operating system developed by Novell. A stack buffer overflow vulnerability exists in the handling of the CALLIT RPC call in PKERNEL.NLM in versions of Novell NetWare prior to 6.5 SP8. A remote attacker could exploit this vulnerability to execute code...

DEBIAN-CVE-2018-18653

The Linux kernel, as used in Ubuntu 18.10 and when booted with UEFI Secure Boot enabled, allows privileged local users to bypass intended Secure Boot restrictions and execute untrusted code by loading arbitrary kernel modules. This occurs because a modified kernel/module.c, in conjunction with...

UBUNTU-CVE-2018-18653

The Linux kernel, as used in Ubuntu 18.10 and when booted with UEFI Secure Boot enabled, allows privileged local users to bypass intended Secure Boot restrictions and execute untrusted code by loading arbitrary kernel modules. This occurs because a modified kernel/module.c, in conjunction with...

Null pointer dereference

The /dev/block/mmcblk0rpmb driver kernel module on Qiku 360 Phone N6 Pro 1801-A01 devices allows attackers to cause a denial of service NULL pointer dereference and device crash via a crafted 0xc0d8b300 ioctl call...

CVE-2018-18318

The /dev/block/mmcblk0rpmb driver kernel module on Qiku 360 Phone N6 Pro 1801-A01 devices allows attackers to cause a denial of service NULL pointer dereference and device crash via a crafted 0xc0d8b300 ioctl call...

CVE-2018-18318

The /dev/block/mmcblk0rpmb driver kernel module on Qiku 360 Phone N6 Pro 1801-A01 devices allows attackers to cause a denial of service NULL pointer dereference and device crash via a crafted 0xc0d8b300 ioctl call...

CVE-2018-18318

The CVE-2018-18318 issue affects the /dev/block/mmcblk0rpmb driver kernel module on Qiku 360 Phone N6 Pro 1801-A01 devices. A crafted ioctl call (0xc0d8b300) can trigger a NULL pointer dereference, leading to a denial of service and device crash. Connected documents confirm the affected component...

Xen xen-netback xenvif_set_hash_mapping Integer Overflow Exploit

Exploit for multiple platform in category dos / poc Xen: integer overflow in xen-netback xenvifsethashmapping The xen-netback linux kernel module is the default backend for Xen's virtual network devices. Since commit 40d8abdee806d496a60ee607a6d01b1cd7fabaf0 the backend supports an additional...

[SECURITY] [DLA 1445-1] busybox security update

Package : busybox Version : 1:1.22.0-9+deb8u2 CVE ID : CVE-2011-5325 CVE-2014-9645 CVE-2015-9261 CVE-2016-2147 CVE-2016-2148 CVE-2017-15873 CVE-2017-16544 CVE-2018-1000517 Debian Bug : 902724 882258 879732 818497 818499 803097 802702 Busybox, utility programs for small and embedded systems, was...

Linux kernel null pointer dereference vulnerability (CNVD-2018-15656)

Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. A null pointer dereference vulnerability exists in the 'hfsextreadextent' function of the hfs.ko file in Linux kernel version 4.15.0. An attacker can exploit this...

Linux Process Hunter: Prochunter

Prochunter aims to find hidden process with all userspace and most of the kernelspace rootkits. This tool is composed of a kernel module that prints out all running processes walking the taskstruct list and creates /sys/kernel/prochunter/set entry. A python script that invokes the kernel function...

Debian DSA-4031-1 : ruby2.3 - security update

Several vulnerabilities have been discovered in the interpreter for the Ruby language. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2017-0898 aerodudrizzt reported a buffer underrun vulnerability in the sprintf method of the Kernel module resulting in...

CVE-2017-15265

A use-after-free vulnerability was found when issuing an ioctl to a sound device. This could allow a user to exploit a race condition and create memory corruption or possibly privilege escalation. Mitigation It is possible to prevent the affected code from being loaded by blacklisting the kernel...