Ubuntu: Security Advisory (USN-1203-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

kernel: gfs2: make sure fallocate bytes is a multiple of blksize

The gfs2fallocate function in fs/gfs2/file.c in the Linux kernel before 3.0-rc1 does not ensure that the size of a chunk allocation is a multiple of the block size, which allows local users to cause a denial of service BUG and system crash by arranging for all resource groups to have too little...

Oracle Linux 6 Unbreakable Enterprise kernel security and bug fix update

2.6.32-200.16.1.el6uek - Revert change to restore DEFAULTKERNEL 2.6.32-200.15.1.el6uek - Add -u parameter to kernelvariantpost to make it work properly for uek orabug 12819958 2.6.32-200.14.1.el6uek - Restore DEFAULTKERNEL value to kernel-uek orabug 12819958 2.6.32-200.13.1.el6uek - make default...

Moderate: Red Hat Security Advisory: kernel security, bug fix, and enhancement update

Updated kernel packages that fix one security issue, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6.0 Extended Update Support. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring...

Important: Red Hat Security Advisory: kernel security and bug fix update

Updated kernel packages that fix multiple security issues and various bugs are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed...

kernel: drivers/scsi/mpt2sas: prevent heap overflows

drivers/scsi/mpt2sas/mpt2sasctl.c in the Linux kernel 2.6.38 and earlier does not validate 1 length and 2 offset values before performing memory copy operations, which might allow local users to gain privileges, cause a denial of service memory corruption, or obtain sensitive information from...

Oracle Linux 6.1 kernel security, bug fix and enhancement update

2.6.32-131.0.15.el6 - build disable Werr for external modules Aristeu Rozanski 703504 2.6.32-131.0.14.el6 - scsi hpsa: fix reading a write only register causes a hang Rob Evers 703262 - scsi mpt2sas: remove the use of writeq, since writeq is not atomic Tomas Henzl 701947 2.6.32-131.0.13.el6 - scs...

Oracle Linux 6 Unbreakable Enterprise kernel security fix update

2.6.32-100.28.15.el6 - sctp: fix to calc the INIT/INIT-ACK chunk length correctly is set CVE-2011-1573 - dccp: fix oops on Reset after close CVE-2011-1093 - bridge: netfilter: fix information leak CVE-2011-1080 - Bluetooth: bnep: fix buffer overflow CVE-2011-1079 - net: don't allow CAPNETADMIN to...

SuSE Update for kernel SUSE-SA:2011:020

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

kernel security and bug fix update

2.6.32-71.24.1.el6 - fs Revert 'fs inotify: stop kernel memory leak on file creation failure' Eric Paris 656831 656832 CVE-2010-4250 2.6.32-71.23.1.el6 - x86 Revert 'x86 mtrr: Assume SYSCFGTom2ForceMemTypeWB exists on all future AMD CPUs' Frank Arnold 683813 652208 2.6.32-71.22.1.el6 - rebuild...

Important: Red Hat Security Advisory: kernel security update

Updated kernel packages that fix one security issue are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

kernel: buffer overflow in OSS load_mixer_volumes

The loadmixervolumes function in sound/oss/soundcard.c in the OSS sound subsystem in the Linux kernel before 2.6.37 incorrectly expects that a certain name field ends with a '\0' character, which allows local users to conduct buffer overflow attacks and gain privileges, or possibly obtain sensiti...

kernel security and bug fix update

2.6.32-71.14.1.0.1.el6 - replace Red Hat with Oracle in files genkey and kernel.spec 2.6.32-71.14.1.el6 - kvm x86: zero kvmvcpuevents-interrupt.pad Marcelo Tosatti 665471 665409 CVE-2010-4525 2.6.32-71.13.1.el6 email6.RHSA-2011-0007 178L, 11970C written - scsi lpfc: Fixed crashes for NULL pnode...

SuSE9 Security Update : the Linux kernel (YOU Patch Number 12672)

This patch updates the SUSE Linux Enterprise Server 9 kernel to fix various security issues and some bugs. The following security issues were fixed : - The hciuartttyopen function in the HCI UART driver drivers/bluetooth/hcildisc.c in the Linux kernel did not verify whether the tty has a write...

FreeBSD 5.4-RELEASE ftpd Memory Leak

/FreeBSD include include include include include include include include include int createconnectionchar target, char targetport; void getlineint s; void putlineint s, char out; void usagechar exe; char in8096; char out8096; char out28096; int mainint argc, char argv extern int optind; extern ch...

Oracle Linux 5.6 kernel security and bug fix update

2.6.18-238.el5 - net bnx2: remove extra call to pcimappage John Feeney 663509 - fs nfs: set lockcontext field in nfsreadpagesync Jeff Layton 663853 2.6.18-237.el5 - block fully zeroize request struct in rqinit Rob Evers 662154 - scsi qla4xxx: update to 5.02.04.02.05.06-d0 Chad Dupuis 656999 - scs...

kernel security, bug fix, and enhancement update

2.6.18-194.32.1.0.1.el5 - xen check to see if hypervisor supports memory reservation change Chuck Anderson orabug 7556514 - Add entropy support to igb John Sobecki orabug 7607479 - nfs convert ENETUNREACH to ENOTCONN orabug 7689332 - NET Add xen pv/bonding netconsole support Tina Yang orabug...

Unbreakable enterprise kernel security and bug fix update

Following Security fixes are included in this unbreakable enterprise kernel errata: CVE-2010-3432 The sctppacketconfig function in net/sctp/output.c in the Linux kernel before 2.6.35.6 performs extraneous initializations of packet data structures, which allows remote attackers to cause a denial o...

CVE-2010-4248

Race condition in the exitsignal function in kernel/exit.c in the Linux kernel before 2.6.37-rc2 allows local users to cause a denial of service via vectors related to multithreaded exec, the use of a thread group leader in kernel/posix-cpu-timers.c, and the selection of a new thread group leader...

Linux Kernel 2.4.0 - Stack Infoleaks

//Enjoy... // //-Dan / You've done it. After hours of gdb and caffeine, you've finally got a shell on your target's server. Maybe next time they will think twice about running MyFirstCompSciProjectFTPD on a production machine. As you take another sip of Mountain Dew and pick some of the cheetos o...