Code Injection in CRI-O

Impact A flaw introduced in CRI-O version 1.19 which an attacker can use to bypass the safeguards and set arbitrary kernel parameters on the host. As a result, anyone with rights to deploy a pod on a Kubernetes cluster that uses the CRI-O runtime can abuse the kernel.corepattern kernel parameter ...

SUSE-SU-2021:3611-1 Security update for systemd

This update for systemd fixes the following issues: - machine-id-setup: generate machine-id from DMI product ID on Amazon EC2 - Add timestamp to D-Bus events to improve traceability. jscSLE-21894 - busctl: add a timestamp to the output of the busctl monitor command bsc1180225, jscSLE-21894 -...

OPENSUSE-SU-2021:1370-1 Security update for systemd

This update for systemd fixes the following issues: - CVE-2021-33910: Fixed use of strdupa on a path bsc1188063. - logind: terminate cleanly on SIGTERM/SIGINT bsc1188018. - Adopting BFQ to control I/O jscSLE-21032, bsc1134353. - Rules weren't applied to dm devices multipath bsc1188713. - Ignore...

CVE-2021-1312

A vulnerability in the system resource management of Cisco Elastic Services Controller ESC could allow an unauthenticated, remote attacker to cause a denial of service DoS to the health monitor API on an affected device. The vulnerability is due to inadequate provisioning of kernel parameters for...

CVE-2019-5225

P30, Mate 20, P30 Pro smartphones with software of versions earlier than ELLE-AL00B 9.1.0.193C00E190R1P21, versions earlier than Hima-AL00B 9.1.0.135C00E200R2P1, versions earlier than VOGUE-AL00A 9.1.0.193C00E190R1P12 have a buffer overflow vulnerability on several , the system does not properly...

Unbreakable Enterprise kernel security update

4.1.12-124.17.1 - block: update integrity interval after queue limits change Ritika Srivastava Orabug: 27586756 - dccp: check sk for closed state in dccpsendmsg Alexey Kodanev Orabug: 28001529 CVE-2017-8824 CVE-2018-1130 - net/rds: Implement ARP flushing correctly Hakon Bugge Orabug: 28219857 -...

FreeBSD 4.x Process Concealment Bypass Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/4768/info In FreeBSD, setting kern.psshowallprocs=0 via the sysctl call is meant to disable normal users from seeing any running processes that are not owned by them. The current implementation of this feature fails to...

SuSE 11.3 Security Update : compat-wireless, compat-wireless-debuginfo, etc (SAT Patch Number 9414)

This update for the compat-wireless kernel modules provides many fixes and enhancements : - Fix potential crash problem in ath9k. CVE-2014-2672, bnc871148 - Fix improper updates of MAC addresses in ath9khtc. bnc851426, CVE-2013-4579 - Fix stability issues in iwlwifi. bnc865475 - Improve support f...

kernel, perf, python security update

CentOS Errata and Security Advisory CESA-2011:1849 Updated kernel packages that fix one security issue and various bugs are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring...

Microsoft Windows内核参数和指针验证权限提升漏洞(MS09-025)

BUGTRAQ ID: 35240,35238 CVECAN ID: CVE-2009-1125,CVE-2009-1124 Microsoft Windows是微软发布的非常流行的操作系统。 Windows内核没有正确地验证传递给系统调用的参数，以及从用户态传递的某些指针，导致权限提升漏洞。成功利用此漏洞的攻击者可以运行内核态中的任意代码。攻击者可随后安装程序；查看、更改或删除数据；或者创建拥有完全用户权限的新帐户。 Microsoft Windows XP SP3 Microsoft Windows XP SP2 Microsoft Windows Vista SP2 Microso...

CVE-2002-1589

Unknown vulnerability in Solaris 8, when the 0x02 bit aka TEST, KMFDEADBEEF, or deadbeef is set in the kmemflags kernel parameter, allows local users to cause a denial of service system panic...

CVE-2002-1589

Unknown vulnerability in Solaris 8, when the 0x02 bit aka TEST, KMFDEADBEEF, or deadbeef is set in the kmemflags kernel parameter, allows local users to cause a denial of service system panic...