openSUSE Security Update : xen (openSUSE-SU-2014:1279-1)

XEN was updated to fix various bugs and security issues. Security issues fixed : - bnc897657 - CVE-2014-7188: XSA-108 Improper MSR range used for x2APIC emulation - bnc895802 - CVE-2014-7156: XSA-106: Missing privilege level checks in x86 emulation of software interrupts - bnc895799 -...

Important: Red Hat Security Advisory: kernel security and bug fix update

Updated kernel packages that fix one security issue and several bugs are now available for Red Hat Enterprise Linux 6.4 Extended Update Support. Red Hat Product Security has rated this update as having Important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a...

Important: Red Hat Security Advisory: kernel security and bug fix update

Updated kernel packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 7. The Red Hat Security Response Team has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed...

MGASA-2014-0306 Updated gcc packages fix security vulnerability and other bugs

Updated gcc packages fix the following security issue: Multiple integer overflow issues were found in libgfortran, the run-time support library for the Fortran compiler. These could possibly be used to crash a Fortran application or cause it to execute arbitrary code. CVE-2014-5044 They also fix...

RHEL 7 : kernel (RHSA-2014:0786)

Updated kernel packages that fix multiple security issues, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 7. The Red Hat Security Response Team has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base score...

Linux Kernel <= 2.6.33.3 SCTP INIT Remote DoS

No description provided by source. From: http://jon.oberheide.org/files/sctp-boom.py !/usr/bin/env python ''' sctp-boom.py Linux Kernel = 2.6.33.3 SCTP INIT Remote DoS Jon Oberheide [email protected] http://jon.oberheide.org Information: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1173...

Mac OS X < 10.6.7 Kernel Panic Exploit

No description provided by source. / Mac OS X 10.6.7 Kernel Panic Exploit CVE-2011-0182, Proof Of Concept Code Author - Chanam Park hkpco Date - 2011. 06 Contact - [email protected] , http://hkpco.kr , @hkpco Thanks for inspiration / x82, riaf. / // Compile: gcc -o CVE-2011-0182PoC...

QNX RTOS 6.4 - Malformed ELF Binary File Local Denial Of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/33352/info QNX RTOS is prone to a local denial-of-service vulnerability. Attackers can exploit this issue to cause a kernel panic, denying service to legitimate users. QNX RTOS 6.4.0 is vulnerable; other versions may also...

Linux Kernel < 2.6.31-rc4 nfs4_proc_lock() Denial of Service

No description provided by source. Description of problem: execution of a particular program from the Arachne suite reliably causes a kernel panic due to a NULL-pointer dereference in nfs4proclock. Version-Release number of selected component if applicable: 2.6.18-164.2.1.el5 How reproducible:...

Apple Mac OS X 10.4.8 - DMG UFS Byte_Swap_Sbin() Integer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/22022/info Apple Mac OS X is prone to a remote integer-overflow vulnerability. This issue occurs when the UFS filesystem handler fails to handle specially crafted DMG images. A successful exploit can allow a remote attack...

Linux Kernel < 2.6.37-rc2 TCP_MAXSEG Kernel Panic DoS

No description provided by source. / TCPMAXSEG Kernel Panic DoS for Linux 2.6.37-rc2 by zx2c4 This exploit triggers CVE-2010-4165, a divide by zero error in net/ipv4/tcp.c. Because this is on the softirq path, the kernel oopses and then completely dies with no chance of recovery. It has been very...

OpenBSD 3.3/3.4 sysctl Local Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/9073/info A denial of service vulnerability has been reported for OpenBSD, specifically when handling malformed calls to sysctl. By invoking systcl and passing a specific flag in conjunction with a negative argument may...

OpenBSD 3.3/3.4 semctl/semop Local Unexpected Array Indexing Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/9086/info A local OpenBSD kernel vulnerability has been discovered when handling the semctl and semop system calls. The problem specifically occurs due to improper sanity checking before handling a user-supplied semaphore...

FreeBSD Kernel SCTP Remote NULL Ptr Dereference DoS

No description provided by source. / FreeBSD kernel SCTP latest release remote NULL ptr dereference DoS by Shaun Colley [email protected], 2 Aug 2012 The SCTP implementation used by FreeBSD reference implementation is vulnerable to a remote NULL pointer dereference in kernel due to a logic bug...

Linux Kernel < 2.4.36.9/2.6.27.5 Unix Sockets Local Kernel Panic Exploit

No description provided by source. include sys/socket.h include sys/un.h include unistd.h include assert.h include err.h include stdlib.h static int ownchildint us int pid; int s2; struct msghdr mh; char crap1024; struct iovec iov; struct cmsghdr c; int fd; int rc; pid = fork; if pid == -1 err1,...

Apple Mac OS X 10.2.2 Directory Kernel Panic Denial of Service

No description provided by source. source: http://www.securityfocus.com/bid/6331/info Mac OS X is the BSD-derived operating system distributed and maintained by Apple Sofware. It has been reported that a denial of service exists in OS X. When a user creates a directory, descends it, creates anoth...

Linux Kernel NFS and EXT3 Combination Remote Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/19396/info The Linux kernel is susceptible to a remote denial-of-service vulnerability because the EXT3 filesystem code fails to properly handle unexpected conditions. Remote attackers may trigger this issue by sending...

openSUSE Security Update : kernel (openSUSE-SU-2011:0004-1)

The openSUSE 11.3 kernel was updated to fix various bugs and security issues. Following security issues have been fixed: CVE-2010-4347: A local user could inject ACPI code into the kernel via the world-writable 'customdebug' file, allowing local privilege escalation. CVE-2010-4258: A local attack...

openSUSE Security Update : xen-201105 (openSUSE-SU-2011:0580-1)

Collective May/2011 update for Xen Xen : - 691238 - L3: question on behaviour change xm list - 623680 - xen kernel freezes during boot when processor module is loaded - 680824 - dom0 can't recognize boot disk when IOMMU is enabled - 688473 - VUL-0: potential buffer overflow in tools - 679344 -...

openSUSE Security Update : systemtap (openSUSE-SU-2013:0475-1)

This systemtap updated fixes a security issue and bugs : Security fix: Fix kernel panic when processing malformed DWARF unwind data bnc748564 CVE-2012-0875 Also bugs were fixed : - Change how systemtap looks for tracepoint header files bnc796574, new patch: systemtap-build-source-dir.patch - Add...