Lucene search
K

1244 matches found

Oracle linux
Oracle linux
added 2013/12/05 12:0 a.m.46 views

kernel security and bug fix update

kernel 2.6.18-371.3.1 - net be2net: don't use GRO for packets w/ re-inserted VLAN tags Ivan Vecera 1023348 1008691 - net tg3: call pcienablewake to set power state John Feeney 1014973 996331 - misc backport fixes for percpu-rw-semaphore Mikulas Patocka 1014715 867997 - xen information leak via I/...

6CVSS0.7AI score0.0381EPSS
Exploits1
Positive Technologies
Positive Technologies
added 2013/07/28 12:0 a.m.5 views

PT-2013-4862 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 3.10.3 Description: The issue is related to the bridge multicast implementation in the Linux kernel, which does not properly check if a certain timer is armed before modifying its timeout value. This can be...

4.7CVSS6.1AI score0.00454EPSS
Exploits2References12
RedHat Linux
RedHat Linux
added 2013/07/16 6:21 p.m.2 views

kernel: Information leak in the RTNETLINK component

The rtnlfillifinfo function in net/core/rtnetlink.c in the Linux kernel before 3.8.4 does not initialize a certain structure member, which allows local users to obtain sensitive information from kernel stack memory via a crafted application...

1.9CVSS6.6AI score0.00429EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.31 views

Oracle Linux 5 : Important: / kernel (ELSA-2008-0129)

The remote Oracle Linux 5 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2008-0129 advisory. 2.6.18-53.1.13.0.1.el5 - NET Add entropy support to e1000 and bnx2 John Sobecki orabug 6045759 - NET Fix msi issue with kexec/kdump Michael Chan orabug 6219364 ...

7.2CVSS5.5AI score0.0354EPSS
Exploits3References2
Positive Technologies
Positive Technologies
added 2013/06/10 12:0 a.m.5 views

PT-2013-3481 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 3.0 Description: The issue concerns a lack of checks in the KVM subsystem for kernel addresses during memory slot allocation for a guest's physical address space. This allows local users to potentially gain...

7.8CVSS6.9AI score0.04189EPSS
Exploits0References27
OSV
OSV
added 2013/06/07 12:0 a.m.3 views

UBUNTU-CVE-2013-2852

Format string vulnerability in the b43requestfirmware function in drivers/net/wireless/b43/main.c in the Broadcom B43 wireless driver in the Linux kernel through 3.9.4 allows local users to gain privileges by leveraging root access and including format string specifiers in an fwpostfix modprobe...

6.9CVSS6.7AI score0.01022EPSS
Exploits1References16
Oracle linux
Oracle linux
added 2013/05/21 12:0 a.m.46 views

1

kernel 2.6.18-348.6.1.0.1 - oprofile x86, mm: Add getuserpagesfast orabug 14277030 - oprofile export getuserpagesfast function orabug 14277030 - oprofile oprofile, x86: Fix nmi-unsafe callgraph support orabug 14277030 - oprofile oprofile: use KMNMI slot for kmapatomic orabug 14277030 - oprofile...

4.7CVSS4.5AI score0.00411EPSS
Exploits0
OSV
OSV
added 2013/05/14 8:55 p.m.5 views

AZL-34322 CVE-2013-2094 affecting package kernel for versions less than 5.15.153.1-1

The perfsweventinit function in kernel/events/core.c in the Linux kernel before 3.8.9 uses an incorrect integer data type, which allows local users to gain privileges via a crafted perfeventopen system call...

8.4CVSS7AI score0.47709EPSS
Exploits15References1
RedHat Linux
RedHat Linux
added 2013/05/09 6:10 p.m.1 views

hypervkvpd: Netlink source address validation allows denial of service

The main function in tools/hv/hvkvpdaemon.c in hypervkvpd, as distributed in the Linux kernel before 3.8-rc1, allows local users to cause a denial of service daemon exit via a crafted application that sends a Netlink message. NOTE: this vulnerability exists because of an incorrect fix for...

4.9CVSS5.8AI score0.00407EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2013/04/24 12:0 a.m.5 views

PT-2013-3491 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 3.8.6 Description: The issue allows local users to bypass intended access restrictions by leveraging a time interval during which a user namespace has been created but a PID namespace has not been created. This ...

1.9CVSS6AI score0.0034EPSS
Exploits1References7
Oracle linux
Oracle linux
added 2013/03/11 12:0 a.m.67 views

1

kernel 2.6.18-348.3.1.0.1 - oprofile x86, mm: Add getuserpagesfast orabug 14277030 - oprofile export getuserpagesfast function orabug 14277030 - oprofile oprofile, x86: Fix nmi-unsafe callgraph support orabug 14277030 - oprofile oprofile: use KMNMI slot for kmapatomic orabug 14277030 - oprofile...

6.9CVSS7.6AI score0.01557EPSS
Exploits5
Oracle linux
Oracle linux
added 2013/03/05 12:0 a.m.47 views

kernel security and bug fix update

kernel 2.6.18-348.2.1 - misc tainted flags, fix buffer size Prarit Bhargava 905829 901547 - net be2net: fix unconditionally returning IRQHANDLED in INTx Ivan Vecera 884704 878316 - net be2net: fix INTx ISR for interrupt behaviour on BE2 Ivan Vecera 884704 878316 - net be2net: fix a possible...

7.6CVSS7.9AI score0.08738EPSS
Exploits1
securityvulns
securityvulns
added 2013/02/24 12:0 a.m.47 views

Samsung Galaxy S3 partial screen-lock bypass

MTI Technology – Vulnerability Research Team www.mti.com ukpentestinfo"at"mti.com Samsung Galaxy S3 – partial screen-lock bypass Date found: 17th Feb 2012 Vendor Notified: 20th Feb 2012 Vendor Affected: Samsung Device: Galaxy S3 Model: GT-19300 OS: Android 4.1.2 Kernel Version: 3.0.31-742798...

6.8AI score
Exploits0
0day.today
0day.today
added 2013/01/31 12:0 a.m.24 views

Netgear SPH200D Multiple Vulnerabilities

Exploit for hardware platform in category web applications Device Name: SPH200D Vendor: Netgear ============ Vulnerable Firmware Releases: ============ Firmware Version : 1.0.4.80 Kernel Version : 4.1-18 Web Server Version : 1.5 ============ Device Description: ============...

7.1AI score
Exploits0
RedHat Linux
RedHat Linux
added 2012/12/04 8:48 p.m.5 views

kernel: ext4: AIO vs fallocate stale data exposure

Race condition in fs/ext4/extents.c in the Linux kernel before 3.4.16 allows local users to obtain sensitive information from a deleted file by reading an extent that was not properly marked as uninitialized...

1.9CVSS5.8AI score0.00285EPSS
Exploits0References4
Metasploit
Metasploit
added 2012/11/16 6:20 p.m.31 views

SAP /sap/bc/soap/rfc SOAP Service TH_SAPREL Function Information Disclosure

This module attempts to identify software, OS and DB versions through the SAP function THSAPREL using the /sap/bc/soap/rfc SOAP service. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework This module is based on, inspire...

0.3AI score
Exploits0
The Hacker News
The Hacker News
added 2012/11/06 8:26 p.m.6 views

UNESCO Etxea website hacked by #NullCrew

Hacking group NullCrew deface UNESCO Etxea website unescoetxea.org, which is an internationally oriented NGOs working for the culture of peace, sustainable human development and human rights, at local and global levels. Deface page reads, "Welcome to the new front page of unesco etxea You have be...

6.9AI score
Exploits0
OSV
OSV
added 2012/10/03 12:0 a.m.2 views

UBUNTU-CVE-2012-3520

The Netlink implementation in the Linux kernel before 3.2.30 does not properly handle messages that lack SCMCREDENTIALS data, which might allow local users to spoof Netlink communication via a crafted message, as demonstrated by a message to 1 Avahi or 2 NetworkManager...

1.9CVSS7.2AI score0.00429EPSS
Exploits2References5
RedHat Linux
RedHat Linux
added 2012/09/25 6:52 p.m.3 views

kernel: drm/i915: integer overflow in i915_gem_do_execbuffer()

Integer overflow in the i915gemdoexecbuffer function in drivers/gpu/drm/i915/i915gemexecbuffer.c in the Direct Rendering Manager DRM subsystem in the Linux kernel before 3.3.5 on 32-bit platforms allows local users to cause a denial of service out-of-bounds write or possibly have unspecified othe...

4.9CVSS6.4AI score0.00357EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2012/06/18 1:27 p.m.4 views

kernel: fcaps: clear the same personality flags as suid when fcaps are used

The capbprmsetcreds function in security/commoncap.c in the Linux kernel before 3.3.3 does not properly handle the use of file system capabilities aka fcaps for implementing a privileged executable file, which allows local users to bypass intended personality restrictions via a crafted applicatio...

7.2CVSS7.2AI score0.00418EPSS
Exploits1References4
Rows per page
Query Builder