CVE-2014-4653

Summary (CVE-2014-4653) : The ALSA control implementation in the Linux kernel has a race/lock handling issue in sound/core/control.c. It does not ensure possession of a read/write lock, enabling a local attacker to trigger a denial of service (use-after-free) and to potentially read kernel memory...

CVE-2014-4653

sound/core/control.c in the ALSA control implementation in the Linux kernel before 3.15.2 does not ensure possession of a read/write lock, which allows local users to cause a denial of service use-after-free and obtain sensitive information from kernel memory by leveraging /dev/snd/controlCX acce...

UBUNTU-CVE-2014-4652

Race condition in the tlv handler functionality in the sndctlelemusertlv function in sound/core/control.c in the ALSA control implementation in the Linux kernel before 3.15.2 allows local users to obtain sensitive information from kernel memory by leveraging /dev/snd/controlCX access...

CVE-2014-1372

Graphics Driver in Apple OS X before 10.9.4 does not properly restrict read operations during processing of an unspecified system call, which allows local users to obtain sensitive information from kernel memory and bypass the ASLR protection mechanism via a crafted call...

Memory corruption

Graphics Driver in Apple OS X before 10.9.4 does not properly restrict read operations during processing of an unspecified system call, which allows local users to obtain sensitive information from kernel memory and bypass the ASLR protection mechanism via a crafted call...

CVE-2014-1372

Graphics Driver in Apple OS X before 10.9.4 does not properly restrict read operations during processing of an unspecified system call, which allows local users to obtain sensitive information from kernel memory and bypass the ASLR protection mechanism via a crafted call...

Linux Kernel 2.6.x 'sock.c' SO_BSDCOMPAT Option Information Disclosure Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/33846/info The Linux Kernel is prone to an information-disclosure vulnerability because it fails to properly initialize certain memory before using using it in a user-accessible operation. Successful exploits will allow...

Linux Kernel <= 2.6.36-rc8 - RDS Protocol Local Privilege Escalation

No description provided by source. //source: http://www.vsecurity.com/resources/advisory/20101019-1/ / Linux Kernel = 2.6.36-rc8 RDS privilege escalation exploit CVE-2010-3904 by Dan Rosenberg [email protected] Copyright 2010 Virtual Security Research, LLC The handling functions for sendin...

Linux Kernel < 2.6.31-rc7 - AF_IRDA 29-Byte Stack Disclosure Exploit

No description provided by source. / cve-2009-3002.c Linux Kernel 2.6.31-rc7 AFIRDA getsockname 29-Byte Stack Disclosure Jon Oberheide [email protected] http://jon.oberheide.org Information: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3002 The Linux kernel before 2.6.31-rc7 does not...

Linux Kernel < 2.6.36-rc6 pktcdvd Kernel Memory Disclosure

No description provided by source. / cve-2010-3437.c Linux Kernel 2.6.36-rc6 pktcdvd Kernel Memory Disclosure Jon Oberheide [email protected] http://jon.oberheide.org Information: https://bugzilla.redhat.com/showbug.cgi?id=638085 The PKTCTRLCMDSTATUS device ioctl retrieves a pointer to a...

PonyOS 0.4.99-mlp - Multiple Vulnerabilities

No description provided by source. Advisory: PonyOS Security Issues John Cartwright [email protected] Introduction ------------ Like countless others, I was pretty excited about PonyOS yesterday April 1st 2013 and decided to give it a go. After wasting a lot of time nyan'ing, I knew this was the...

Mac OS X xnu <= 1228.3.13 (profil) Kernel Memory Leak/DoS PoC

No description provided by source. / xnu-profil-leak.c Copyright c 2008 by [email protected] Apple MACOS X xnu = 1228.3.13 local kernel memory leak/DoS POC by mu-b - Sat 16 Feb 2008 - Tested on: Apple MACOS X 10.5.1 xnu-1228.0.21/RELEASEI386 Apple MACOS X 10.5.2 xnu-1228.3.131/RELEASEI386 -...

Linux Kernel < 2.6.14.6 procfs Kernel Memory Disclosure Exploit

/ cve-2005-4605.c Linux Kernel 2.6.14.6 procfs Kernel Memory Disclosure Jon Oberheide [email protected] http://jon.oberheide.org Information: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-4605 The procfs code procmisc.c in Linux 2.6.14.3 and other versions before 2.6.15 allows attackers ...

DESlock+ <= 3.2.6 (list) Local Kernel Memory Leak PoC

No description provided by source. / deslock-list-leak.c Copyright c 2008 by [email protected] DESlock+ = 3.2.6 local kernel mem leak POC by mu-b - Fri 21 Dec 2007 - Tested on: DLMFENC.sys 1.0.0.26 kernel pool memory leak by continually allocating link list structures and never freeing them. Th...

Linux Kernel 2.5.x/2.6.x CPUFreq Proc Handler Integer Handling Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/10201/info A local integer handling vulnerability has been announced in the Linux kernel. It is reported that this vulnerability may be exploited by an unprivileged local user to obtain kernel memory contents. Additionall...

Linux Kernel 2.6.x Time_Out_Leases PrintK Local Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/15627/info Linux kernel is susceptible to a local denial-of-service vulnerability. Local attackers may trigger this issue by obtaining numerous file-lock leases, which will consume excessive kernel log memory. Once the...

Mac OS X xnu <= 1228.3.13 (macfsstat) Local Kernel Memory Leak/DoS

No description provided by source. / xnu-macfsstat-leak.c Copyright c 2008 by [email protected] Apple MACOS X xnu = 1228.3.13 local kernel memory leak/DoS POC by mu-b - Sun 13 Apr 2008 - Tested on: Apple MACOS X 10.5.1 xnu-1228.0.21/RELEASEI386 Apple MACOS X 10.5.2 xnu-1228.3.131/RELEASEI386 -...

BubbleMon 1.x Kernel Memory File Descriptor Leakage Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/5714/info It has been reported that BubbleMon is vulnerable to a leakage of open file descriptors that may result in unauthorized disclosure of kernel memory. It is allegedly possible for attackers to inherit the open fil...

WMNet2 1.0 6 Kernel Memory File Descriptor Leakage Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/5719/info It has been reported that wmnet2 is vulnerable to a leakage of open file descriptors that may result in unauthorized disclosure of kernel memory. It is allegedly possible for attackers to inherit the open file...

FreeBSD <= 5.4-RELEASE ftpd 6.00LS - sendfile kernel mem-leak Exploit

No description provided by source. /FreeBSD = 5.4-RELEASE ftpd Version 6.00LS sendfile kernel mem-leak by Kingcope February 2011 -- kernel memory file may contain secret hashes and more.. tested on FreeBSD 5.3-RELEASE reference: FreeBSD-SA-05:02.sendfile / include stdio.h include stdlib.h include...