DSA-1915-1 linux-2.6 - several vulnerabilities

Bulletin has no description...

CVE-2009-3612

The tcffillnode function in net/sched/clsapi.c in the netlink subsystem in the Linux kernel 2.6.x before 2.6.32-rc5, and 2.4.37.6 and earlier, does not initialize a certain tcmpad2 structure member, which might allow local users to obtain sensitive information from kernel memory via unspecified...

Design/Logic Flaw

The tcfilltclass function in net/sched/schapi.c in the tc subsystem in the Linux kernel 2.4.x before 2.4.37.6 and 2.6.x before 2.6.31-rc9 does not initialize certain 1 tcmpad1 and 2 tcmpad2 structure members, which might allow local users to obtain sensitive information from kernel memory via...

CVE-2005-4881

The netlink subsystem in the Linux kernel 2.4.x before 2.4.37.6 and 2.6.x before 2.6.13-rc1 does not initialize certain padding fields in structures, which might allow local users to obtain sensitive information from kernel memory via unspecified vectors, related to the 1 tcfillqdisc, 2...

FreeBSD Security Advisory (FreeBSD-SA-09:13.pipe.asc)

The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-09:13.pipe.asc ADV FreeBSD-SA-09:13.pipe.asc OpenVAS Vulnerability Test $ Description: Auto generated from ADV FreeBSD-SA-09:13.pipe.asc Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft...

FreeBSD-SA-09:13.pipe

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-09:13.pipe Security Advisory The FreeBSD Project Topic: kqueue pipe race conditions Category: core Module: kern Announced: 2009-10-02 Credits: Przemyslaw Frasunek...

FreeBSD -- kqueue pipe race conditions

Problem Description A race condition exists in the pipe close code relating to kqueues, causing use-after-free for kernel memory, which may lead to an exploitable NULL pointer vulnerability in the kernel, kernel memory corruption, and other unpredictable results. Impact: Successful exploitation o...

SuSE 11 Security Update : Linux kernel (SAT Patch Numbers 1212 / 1218 / 1219)

The SUSE Linux Enterprise 11 Kernel was updated to 2.6.27.29 fixing various bugs and security issues. The following security issues were fixed : - A missing NULL pointer check in the socket sendpage function can be used by local attackers to gain root privileges. CVE-2009-2692 - A kernel stack...

Avast 4.8.1351.0 Privilege Escalation

Source: https://www.evilfingers.com/advisory/Advisory/AvastaswMon2.syskernelmemorycorruptionandLocalPrivilegeEscalation.php -----------Avast aswMon2.sys kernel memory corruption and Local Privilege Escalation--------- Author: Giuseppe 'Evilcry' Bonfa' E-Mail: evilcry AT GMAIL DOT COM Website:...

Avast Antivirus 4.8.1351.0 DoS and Privilege Escalation

No description provided by source. Source: https://www.evilfingers.com/advisory/Advisory/AvastaswMon2.syskernelmemorycorruptionandLocalPrivilegeEscalation.php -----------Avast aswMon2.sys kernel memory corruption and Local Privilege Escalation--------- Author: Giuseppe 'Evilcry' Bonfa' E-Mail:...

Avast! AntiVirus 4.8.1351.0 - Denial of Service / Privilege Escalation

Source: https://www.evilfingers.com/advisory/Advisory/AvastaswMon2.syskernelmemorycorruptionandLocalPrivilegeEscalation.php -----------Avast aswMon2.sys kernel memory corruption and Local Privilege Escalation--------- Author: Giuseppe 'Evilcry' Bonfa' E-Mail: evilcry AT GMAIL DOT COM Website:...

Avast Antivirus 4.8.1351.0 DoS and Privilege Escalation

Exploit for unknown platform in category local exploits ======================================================= Avast Antivirus 4.8.1351.0 DoS and Privilege Escalation ======================================================= Title: Avast Antivirus 4.8.1351.0 DoS and Privilege Escalation CVE-ID:...

Avast! AntiVirus 4.8.1351.0 - Denial of Service Privilege Escalation

Avast! AntiVirus 4.8.1351.0 - Denial of Service Privilege Escalation Source: https://www.evilfingers.com/advisory/Advisory/AvastaswMon2.syskernelmemorycorruptionandLocalPrivilegeEscalation.php -----------Avast aswMon2.sys kernel memory corruption and Local Privilege Escalation--------- Author:...

Avast aswMon2.sys kernel memory corruption and Local Privilege Escalation.

Source: https://www.evilfingers.com/advisory/Advisory/AvastaswMon2.syskernelmemorycorruptionandLocalPrivilegeEscalation.php -----------Avast aswMon2.sys kernel memory corruption and Local Privilege Escalation--------- Author: Giuseppe 'Evilcry' Bonfa' E-Mail: evilcry AT GMAIL DOT COMbr Website:...

CVE-2009-3290

The kvmemulatehypercall function in arch/x86/kvm/x86.c in KVM in the Linux kernel 2.6.25-rc1, and other versions before 2.6.31, when running on x86 systems, does not prevent access to MMU hypercalls from ring 0, which allows local guest OS users to cause a denial of service guest kernel crash and...

CVE-2009-3001

The llcuigetname function in net/llc/afllc.c in the Linux kernel 2.6.31-rc7 and earlier does not initialize a certain data structure, which allows local users to read the contents of some kernel memory locations by calling getsockname on an AFLLC socket...

Linux Kernel <= 2.6.30 atalk_getname() 8-bytes Stack Disclosure Exploit

No description provided by source. / appleak.c Linux keunouille = 2.6.30 AppleTalk getsockname 8-bytes kernel stack disclosure http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=3d392475c873c10c10d6d96b94d092a34ebd4791 atalkgetname can leak 8 bytes of kernel memory to use...

Linux Kernel 2.6.30 - atalk_getname() 8-bytes Stack Disclosure (1)

Linux Kernel 2.6.30 - atalkgetname 8-bytes Stack Disclosure 1 / appleak.c Linux keunouille / include include include include include include include include include include include void kernopint fd / from Jon Oberheide sploit / const int randcalls = NRread, NRwrite, NRopen, NRclose, NRstat,...

Linux Kernel < 2.6.14.6 - 'procfs' Kernel Memory Disclosure

/ cve-2005-4605.c Linux Kernel http://jon.oberheide.org Information: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-4605 The procfs code procmisc.c in Linux 2.6.14.3 and other versions before 2.6.15 allows attackers to read sensitive kernel memory via unspecified vectors in which a signed...

Linux Kernel 2.6.14.6 - procfs Kernel Memory Disclosure

Linux Kernel 2.6.14.6 - procfs Kernel Memory Disclosure / cve-2005-4605.c Linux Kernel http://jon.oberheide.org Information: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-4605 The procfs code procmisc.c in Linux 2.6.14.3 and other versions before 2.6.15 allows attackers to read sensitive...