CVE-2018-12930

CVE-2018-12930 targets the ntfs_end_buffer_async_read function in the ntfs.ko driver of Linux kernel 4.15.0. A crafted NTFS filesystem can trigger a stack-based out-of-bounds write, leading to a denial of service (kernel oops or panic) and possibly unspecified other impacts. The connected documen...

CVE-2018-12930

ntfsendbufferasyncread in the ntfs.ko filesystem driver in the Linux kernel 4.15.0 allows attackers to trigger a stack-based out-of-bounds write and cause a denial of service kernel oops or panic or possibly have unspecified other impact via a crafted ntfs filesystem...

kernel: Null pointer dereference via keyctl

A flaw was found in the Linux kernel key management subsystem in which a local attacker could crash the kernel or corrupt the stack and additional memory denial of service by supplying a specially crafted RSA key. This flaw panics the machine during the verification of the RSA key...

UBUNTU-CVE-2018-11232

The etmsetupaux function in drivers/hwtracing/coresight/coresight-etm-perf.c in the Linux kernel before 4.10.2 allows attackers to cause a denial of service panic because a parameter is incorrectly used as a local variable...

Design/Logic Flaw

HWiNFO AMD64 Kernel driver version 8.98 and lower allows an unprivileged user to send an IOCTL to the device driver. If input and/or output buffer pointers are NULL or if these buffers' data are invalid, a NULL/invalid pointer access occurs, resulting in a Windows kernel panic aka Blue Screen. Th...

CVE-2018-8060

HWiNFO AMD64 Kernel driver version 8.98 and lower allows an unprivileged user to send an IOCTL to the device driver. If input and/or output buffer pointers are NULL or if these buffers' data are invalid, a NULL/invalid pointer access occurs, resulting in a Windows kernel panic aka Blue Screen. Th...

CVE-2018-8060

HWiNFO AMD64 Kernel driver version 8.98 and lower allows an unprivileged user to send an IOCTL to the device driver. If input and/or output buffer pointers are NULL or if these buffers' data are invalid, a NULL/invalid pointer access occurs, resulting in a Windows kernel panic aka Blue Screen. Th...

Kernel panic error is seen when trying to deploy the OVA file for XenMobile Server on VMware

You receive an error similar to the following one when trying to deploy the OVA file for XenMobile Server installation on to VMware: VFS: Cannot open root device "sda3" or unknown-block0,0: error -6Please append a correct "root=" boot option: here are the available partitions:Kernel panic - not...

Vulnerability of the setup_ntlmv2_rsp() function (fs/cifs/cifsencrypt.c) in the Linux kernel, allowing a hacker to trigger a service denial

The vulnerability of the setupntlmv2rsp function fs/cifs/cifsencrypt.c in the Linux kernel is related to a pointer dereferencing error. Exploiting this vulnerability could allow an attacker, operating remotely, to cause a kernel panic on the vulnerable system when it connects to a CIFS Common...

kernel: Null pointer dereference in fs/cifs/cifsencrypt.c:setup_ntlmv2_rsp() when empty TargetInfo is returned in NTLMSSP setup negotiation response allowing to crash client's kernel

A flaw was found in the Linux kernel's client-side implementation of the cifs protocol. This flaw allows an attacker controlling the server to kernel panic a client which has the CIFS server mounted...

CVE-2017-1081

In FreeBSD before 11.0-STABLE, 11.0-RELEASE-p10, 10.3-STABLE, and 10.3-RELEASE-p19, ipfilter using "keep state" or "keep frags" options can cause a kernel panic when fed specially crafted packet fragments due to incorrect memory handling...

Memory corruption

In FreeBSD before 11.0-STABLE, 11.0-RELEASE-p10, 10.3-STABLE, and 10.3-RELEASE-p19, ipfilter using "keep state" or "keep frags" options can cause a kernel panic when fed specially crafted packet fragments due to incorrect memory handling...

CVE-2017-1081

In FreeBSD before 11.0-STABLE, 11.0-RELEASE-p10, 10.3-STABLE, and 10.3-RELEASE-p19, ipfilter using "keep state" or "keep frags" options can cause a kernel panic when fed specially crafted packet fragments due to incorrect memory handling...

CVE-2017-1081

CVE-2017-1081 affects FreeBSD: ipfilter (ipfilter(4)) processing of packet fragments when using keep state or keep frags can trigger a kernel panic in certain older builds (FreeBSD before 11.0-STABLE, 11.0-RELEASE-p10, 10.3-STABLE, 10.3-RELEASE-p19). The root cause is incorrect memory handling in...

CVE-2017-1081

In FreeBSD before 11.0-STABLE, 11.0-RELEASE-p10, 10.3-STABLE, and 10.3-RELEASE-p19, ipfilter using "keep state" or "keep frags" options can cause a kernel panic when fed specially crafted packet fragments due to incorrect memory handling...

CVE-2017-1081

Removed by vendor...

kernel: Incorrect updates of uninstantiated keys crash the kernel

A vulnerability was found in the key management subsystem of the Linux kernel. An update on an uninstantiated key could cause a kernel panic, leading to denial of service DoS...

SUSE-SU-2018:0834-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 12 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2018-1068: Fixed flaw in the implementation of 32-bit syscall interface for bridging. This allowed a privileged user to arbitrarily write to a limited range of...

FreeBSD -- ipsec validation and use-after-free

Problem Description: Due to a lack of strict checking, an attacker from a trusted host can send a specially constructed IP packet that may lead to a system crash. Additionally, a use-after-free vulnerability in the AH handling code could cause unpredictable results. Impact: Access to out of bound...

FreeBSD-SA-18:01.ipsec

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-18:01.ipsec REVISED Security Advisory The FreeBSD Project Topic: ipsec validation and use-after-free Category: core Module: ipsec Announced: 2018-03-07 Credits:...