Linux Kernel < 2.6.37-rc2 TCP_MAXSEG Kernel Panic DoS

No description provided by source. / TCPMAXSEG Kernel Panic DoS for Linux 2.6.37-rc2 by zx2c4 This exploit triggers CVE-2010-4165, a divide by zero error in net/ipv4/tcp.c. Because this is on the softirq path, the kernel oopses and then completely dies with no chance of recovery. It has been very...

Linux Kernel < 2.6.37-rc2 TCP_MAXSEG Kernel Panic DoS

Exploit for linux platform in category dos / poc / TCPMAXSEG Kernel Panic DoS for Linux include include include include include int main struct sockaddrin laddr; memset&laddr, 0, sizeofladdr; laddr.sinfamily = AFINET; laddr.sinaddr.saddr = inetaddr"127.0.0.1"; laddr.sinport = htons31337; int...

kernel: panic when submitting certain 0-length I/O requests

The blkrqmapuseriov function in block/blk-map.c in the Linux kernel before 2.6.36.2 allows local users to cause a denial of service panic via a zero-length I/O request in a device ioctl to a SCSI device...

Linux Kernel 2.6 TCP_MAXSEG Denial Of Service

/ TCPMAXSEG Kernel Panic DoS for Linux include include include include include int main struct sockaddrin laddr; memset&laddr, 0, sizeofladdr; laddr.sinfamily = AFINET; laddr.sinaddr.saddr = inetaddr"127.0.0.1"; laddr.sinport = htons31337; int listener = socketPFINET, SOCKSTREAM, IPPROTOTCP; if...

Linux Kernel 2.6.37-rc2 - TCP_MAXSEG Kernel Panic (Denial of Service) (2)

Linux Kernel 2.6.37-rc2 - TCPMAXSEG Kernel Panic Denial of Service 2 / TCPMAXSEG Kernel Panic DoS for Linux include include include include include int main struct sockaddrin laddr; memset&laddr, 0, sizeofladdr; laddr.sinfamily = AFINET; laddr.sinaddr.saddr = inetaddr"127.0.0.1"; laddr.sinport =...

Linux Kernel &lt; 2.6.37-rc2 - &#039;TCP_MAXSEG&#039; Kernel Panic (Denial of Service) (2)

/ TCPMAXSEG Kernel Panic DoS for Linux include include include include include int main struct sockaddrin laddr; memset&laddr, 0, sizeofladdr; laddr.sinfamily = AFINET; laddr.sinaddr.saddr = inetaddr"127.0.0.1"; laddr.sinport = htons31337; int listener = socketPFINET, SOCKSTREAM, IPPROTOTCP; if...

DSA-2153-1 linux-2.6 - several issues

Bulletin has no description...

kernel security update

CentOS Errata and Security Advisory CESA-2010:0936 Updated kernel packages that fix two security issues and multiple bugs are now available for Red Hat Enterprise Linux 4. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring...

kernel: igb panics when receiving tag vlan packet

The igbreceiveskb function in drivers/net/igb/igbmain.c in the Intel Gigabit Ethernet aka igb subsystem in the Linux kernel before 2.6.34, when Single Root I/O Virtualization SR-IOV and promiscuous mode are enabled but no VLANs are registered, allows remote attackers to cause a denial of service...

kernel: panic when submitting certain 0-length I/O requests

The blkrqmapuseriov function in block/blk-map.c in the Linux kernel before 2.6.36.2 allows local users to cause a denial of service panic via a zero-length I/O request in a device ioctl to a SCSI device...

Apple Mac OS X WiFi DoS

System kernel panicin network with disabled mcs...

OS X 10.6.5 kernel crash upon wlan roaming with disabled mandatory MCS

During the buildup at the CCC 27c3 congress in Berlin we noticed several Apple Macbooks kernel paniced while connected to the wireless network. We identified the cause of this issue and we are able to reproduce this as well. It seems to be limited to the aluminum unibody Macbooks, running OS X...

kvm security update

kvm-83-164.0.1.el55.25 - Added kvm-add-oracle-workaround-for-libvirt-bug.patch - Added kvm-add-oracle-workaround-for-libvirt-bug.patch kvm-83-164.el55.25 - Adding loadgsindex to kmod symbol greylist - Related: bz639886 CVE-2010-3698 kvm: invalid selector in fs/gs causes kernel panic rhel-5.5.z...

RHEL 4 : kernel (RHSA-2010:0936)

Updated kernel packages that fix two security issues and multiple bugs are now available for Red Hat Enterprise Linux 4. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...

CVE-2010-4210

The pfsgetextattr function in FreeBSD 7.x before 7.3-RELEASE and 8.x before 8.0-RC1 unlocks a mutex that was not previously locked, which allows local users to cause a denial of service kernel panic, overwrite arbitrary memory locations, and possibly execute arbitrary code via vectors related to...

Design/Logic Flaw

The pfsgetextattr function in FreeBSD 7.x before 7.3-RELEASE and 8.x before 8.0-RC1 unlocks a mutex that was not previously locked, which allows local users to cause a denial of service kernel panic, overwrite arbitrary memory locations, and possibly execute arbitrary code via vectors related to...

CVE-2010-4210

The CVE-2010-4210 issue affects FreeBSD: pfs_getextattr in pseudofs unlocks a mutex that was not locked. On systems with pseudofs-mounted filesystems and NULL page mapping allowed, an attacker can overwrite kernel memory and potentially execute code in the kernel; on systems without NULL page map...

CVE-2010-4210

Removed by vendor...

kernel: ipv6: skb is unexpectedly freed

Use-after-free vulnerability in net/ipv4/tcpinput.c in the Linux kernel 2.6 before 2.6.20, when IPV6RECVPKTINFO is set on a listening socket, allows remote attackers to cause a denial of service kernel panic via a SYN packet while the socket is in a listening TCPLISTEN state, which is not properl...

kernel panic via futex

include/asm-x86/futex.h in the Linux kernel before 2.6.25 does not properly implement exception fixup, which allows local users to cause a denial of service panic via an invalid application that triggers a page fault...