DSA-1787-1 linux-2.6.24 - several vulnerabilities

Bulletin has no description...

CVE-2006-5174

CVE-2006-5174 concerns the Linux kernel 2.6 copy_from_user() implementation on s390/s390x where a local user could read kernel memory due to improper clearing of a kernel buffer. Affected platform: Linux kernel 2.6 before 2.6.19-rc1 on s390. The issue is an information leak (partial confidentiali...

CVE-2005-1400

The i386getldt system call in FreeBSD 4.7 to 4.11 and 5.x to 5.4 allows local users to access sensitive kernel memory via arguments with negative or very large values...

Fedora Core 2 : kernel-2.6.9-1.11_FC2 (2004-581)

A large change over previous kernels has been made. The 4G:4G memory split patch has been dropped, and Fedora kernels now revert back to the upstream 3G:1G kernel/userspace split. A number of security fixes are present in this update. CVE-2004-1016: Paul Starzetz discovered a buffer overflow...

FreeBSD : SA-04:15.syscons

The remote host is running a version of FreeBSD which contains a flaw in the syscons console driver. There are boundary errors in the CONSSCRSHOT ioctls that may allow a local attacker to read portions of the kernel memory, which may contain sensitive information. C Tenable Network Security, Inc...

FreeBSD : SA-04:02.shmat

The remote host is running a version of the FreeBSD kernel which may be contains a programming error in the shmat2 system call which can let a local attacker to gain read or write access to a portion of the kernel memory which in turn might be used to elevate his privileges or gain access to...

CVE-2004-0135

The CVE-2004-0135 entry concerns the SGI IO system call SGI_IOPROBE in IRIX 6.5.20–6.5.24, which allows local users to gain privileges by reading and writing kernel memory. The vulnerability is confirmed in multiple sources: NVD/NVD entry already specifies the affected IRIX versions and the local...