1244 matches found
DEBIAN-CVE-2017-12168
The accesspmuevcntr function in arch/arm64/kvm/sysregs.c in the Linux kernel before 4.8.11 allows privileged KVM guest OS users to cause a denial of service assertion failure and host OS crash by accessing the Performance Monitors Cycle Count Register PMCCNTR...
PT-2017-14685 · Linux +1 · Linux Kernel +1
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 4.12.10 Description: A local attacker can achieve a use-after-free or possibly have unspecified other impact by running a specially crafted program due to the mm init function in kernel/fork.c not clearing the...
How to check Xenmobile Server Kernel version
How to check kernel Linux version for XenMobile server...
Inspector - Privilege Escalation Unix Helper
Inspector is a python script for help in privilege escalation, for linux environement. After starting, this script search the kernel version and check if is exploit exists, load file history bash,zsh,mysql... and load list of programs loaded with root user. Download on server wget...
PT-2017-4328
Name of the Vulnerable Software and Affected Versions: Linux kernel versions 4.4.0-96.119 and later Description: A flaw in the Linux kernel's memory deduplication mechanism, specifically in the Kernel Samepage Merging KSM component, can create a side channel. This allows an attacker to potentiall...
PT-2018-6613 · Arista +7 · Veos +7
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 4.11 Linux kernel versions 4.9.x prior to 4.9.36 Description: The issue is related to the tcpmss mangle packet function in the Linux kernel, which allows remote attackers to cause a denial of service or possibly...
kernel: Incorrectly mapped contents of PIE executable
The Linux Kernel running on AMD64 systems will sometimes map the contents of PIE executable, the heap or ld.so to where the stack is mapped allowing attackers to more easily manipulate the stack. Linux Kernel version 4.11.5 is affected...
kernel: Incorrectly mapped contents of PIE executable
The Linux Kernel running on AMD64 systems will sometimes map the contents of PIE executable, the heap or ld.so to where the stack is mapped allowing attackers to more easily manipulate the stack. Linux Kernel version 4.11.5 is affected...
CVE-2017-1000379
The Linux Kernel running on AMD64 systems will sometimes map the contents of PIE executable, the heap or ld.so to where the stack is mapped allowing attackers to more easily manipulate the stack. Linux Kernel version 4.11.5 is affected...
PT-2017-2409 · Linux +3 · Linux Kernel +3
Name of the Vulnerable Software and Affected Versions: Linux Kernel version 4.11.5 Description: The issue is related to insufficient access control in the Linux kernel, which can be exploited by a local attacker to manipulate stack data. On AMD64 systems, the Linux Kernel may map the contents of...
CVE-2017-0648
An elevation of privilege vulnerability in the kernel FIQ debugger could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High due to the possibility of a local permanent device compromise, which may require reflashing the...
CVE-2016-3077
CVE-2016-3077 affects oVirt Engine via the VersionMapper.fromKernelVersionString method. The vulnerability allows remote authenticated users to trigger a denial of service (process crash) affecting all VMs. No exploitation vector or exploit details are provided in the supplied documents. Remediat...
Apple MacOS 32-Bit Syscall Exit Kernel Register Leak(CVE-2017-2509)
The XNU kernel, when compiled for a x86-64 CPU, can run 32-bit x86 binaries in compatibility mode. 32-bit binaries use partly separate syscall entry and exit paths. To return to userspace, unixsyscall in bsd/dev/i386/systemcalls.c calls threadexceptionreturn in osfmk/x8664/locore.s, which in turn...
Linux kernel denial of service vulnerability (CNVD-2017-07507)
The Linux kernel is the kernel used by the operating system Linux, released by the Linux Foundation in the United States. A denial of service vulnerability exists in the 'sctpv6createacceptsk' function in the net/sctp/ipv6.c file in Linux kernel versions 4.11.1 and earlier, which stems from the...
Apple macOS - 32-bit syscall exit Kernel Register Leak Exploit
Exploit for macOS platform in category dos / poc Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1149 The XNU kernel, when compiled for a x86-64 CPU, can run 32-bit x86 binaries in compatibility mode. 32-bit binaries use partly separate syscall entry and exit paths. To return to...
Apple macOS - '32-bit syscall exit' Kernel Register Leak
Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1149 The XNU kernel, when compiled for a x86-64 CPU, can run 32-bit x86 binaries in compatibility mode. 32-bit binaries use partly separate syscall entry and exit paths. To return to userspace, unixsyscall in...
PT-2017-2224 · Linux +5 · Linux Kernel +5
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 4.11.1 Description: The issue is related to the implementation of IPv6 packet fragmentation in the Linux kernel, which does not properly handle an invalid option associated with the nexthdr field. This can be...
UBUNTU-CVE-2017-9075
The sctpv6createacceptsk function in net/sctp/ipv6.c in the Linux kernel through 4.11.1 mishandles inheritance, which allows local users to cause a denial of service or possibly have unspecified other impact via crafted system calls, a related issue to CVE-2017-8890...
CVE-2017-0627
An information disclosure vulnerability in the kernel UVC driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.10,...
CVE-2017-0606
An elevation of privilege vulnerability in the Qualcomm sound driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions:...