iDefense Security Advisory 09.23.06: FreeBSD i386_set_ldt Integer Overflow Vulnerability

FreeBSD i386setldt Integer Overflow Vulnerability iDefense Security Advisory 09.23.06 http://www.idefense.com/intelligence/vulnerabilities/ Sep 23, 2006 I. BACKGROUND FreeBSD is a modern operating system for x86, amd64, Alpha, IA-64, PC-98 and SPARC architectures. It's based on the UNIX operating...

USN-346-1: Linux kernel vulnerabilities

A Denial of service vulnerability was reported in iptables' SCTP conntrack module. On computers which use this iptables module, a remote attacker could expoit this to trigger a kernel crash. CVE-2006-2934 A buffer overflow has been discovered in the dvdreadbca function. By inserting a specially...

CVE-2006-4435

OpenBSD 3.8, 3.9, and possibly earlier versions allows context-dependent attackers to cause a denial of service kernel panic by allocating more semaphores than the default...

CVE-2006-4435

OpenBSD 3.8, 3.9, and possibly earlier versions allows context-dependent attackers to cause a denial of service kernel panic by allocating more semaphores than the default...

FreeBSD Security Advisory FreeBSD-SA-06:18.ppp [REVISED]

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-06:08.ppp Security Advisory The FreeBSD Project Topic: Buffer overflow in sppp4 Category: core Module: sysnet Announced: 2006-08-23 Credits: Martin Husemann, Pave...

FreeBSD Security Advisory FreeBSD-SA-06:18.ppp

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-06:08.ppp Security Advisory The FreeBSD Project Topic: Buffer overflow in ppp4 Category: core Module: sysnet Announced: 2006-08-23 Credits: Martin Husemann, Pavel...

FreeBSD-SA-06:18.ppp

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-06:08.ppp Security Advisory The FreeBSD Project Topic: Buffer overflow in sppp4 Category: core Module: sysnet Announced: 2006-08-23 Credits: Martin Husemann, Pave...

Linux Kernel 2.6.17.7 - NFS and EXT3 Combination Remote Denial of Service

Linux Kernel 2.6.17.7 - NFS and EXT3 Combination Remote Denial of Service source: https://www.securityfocus.com/bid/19396/info The Linux kernel is susceptible to a remote denial-of-service vulnerability because the EXT3 filesystem code fails to properly handle unexpected conditions. Remote...

CVE-2005-2194

Unspecified vulnerability in the Apple Mac OS X kernel before 10.4.2 allows remote attackers to cause a denial of service kernel panic via a crafted TCP packet, possibly related to source routing or loose source routing...

Linux Kernel 2.6.x - Proc dentry_unused Corruption Local Denial of Service

Linux Kernel 2.6.x - Proc dentryunused Corruption Local Denial of Service source: https://www.securityfocus.com/bid/18183/info The Linux kernel is prone to a local denial-of-service vulnerability. This issue is due to a flaw in the 'proc' filesystem. This vulnerability allows local users to cause...

security flaw

The ECNE chunk handling in Linux SCTP lksctp before 2.6.17 allows remote attackers to cause a denial of service kernel panic via an unexpected chunk when the session is in CLOSED state...

Linux SCTP ECNE Chunk Handling Remote DoS

There is a flaw in the SCTP code included in Linux kernel versions 2.6.16.x that results in a kernel panic when an SCTP packet with an unexpected ECNE chunk is received in a CLOSED state. An attacker can leverage this flaw to crash the remote host with a single, possibly forged, packet. C Tenable...

Design/Logic Flaw

The ECNE chunk handling in Linux SCTP lksctp before 2.6.17 allows remote attackers to cause a denial of service kernel panic via an unexpected chunk when the session is in CLOSED state...

CVE-2006-2271

The CVE-2006-2271 issue affects the Linux SCTP (lksctp) driver, exposing a vulnerability where the SCTP chunk handling can trigger a kernel panic when a remote peer sends unexpected chunks while the session is in CLOSED state. This has been addressed in upstream stable updates (e.g., Linux kernel...

CVE-2006-2272

CVE-2006-2272 affects Linux SCTP (lksctp) in kernel versions before 2.6.17, allowing remote attackers to trigger a denial of service (kernel panic) via SCTP control chunks in fragmented packets. Public references in OpenVAS/Ubuntu/Fedora/Debian advisories confirm the issue and link it with other ...

Linux SCTP Functionality Multiple Remote DoS

There is a flaw in the Linux kernel on the remote host that causes a kernel panic when it receives an SCTP packet with a chunk data packet of length 0. An attacker can leverage this flaw to crash the remote host. Additionally, other types of crafted packets can cause a remote denial of service in...

Malformed ICMP Packets May Cause a Denial of Service (SCTP)

It is possible to crash the remote host by sending it malformed ICMP packets. Description : Linux Kernels older than version 2.6.13 contains a bug which may allow an attacker to cause a NULL pointer dereference by sending malformed ICMP packets, thus resulting in a kernel panic. This flaw is...

FreeBSD bfsd DoS

Malcrafted NFS bind request to TCP/2049 causes kernel panic...

FreeBSD-SA-06:10.nfs

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-06:10.nfs Security Advisory The FreeBSD Project Topic: Remote denial of service in NFS server Category: core Module: sysnfsserver Announced: 2006-03-01 Credits:...

FreeBSD nfsd Malformed NFS Mount Request Remote DoS

The NFS server on the remote host appears to be one from FreeBSD that causes a kernel panic when it receives a malformed NFS mount request via TCP. An unauthenticated remote attacker can leverage this flaw to crash the remote host. C Tenable Network Security, Inc. include"compat.inc"; if...