Linux Kernel: Multiple information leaks

Background The Linux kernel is responsible for managing the core aspects of a GNU/Linux system, providing an interface for core system applications as well as providing the essential structure and capability to access hardware that is needed for a running system. Description The Linux kernel allo...

Fedora Core 1 : kernel-2.4.22-1.2199.nptl (2004-251)

Paul Starzetz discovered flaws in the Linux kernel when handling file offset pointers. These consist of invalid conversions of 64 to 32-bit file offset pointers and possible race conditions. A local unprivileged user could make use of these flaws to access large portions of kernel memory. The...

CVE-2004-0535

The e1000 driver for Linux kernel 2.4.26 and earlier does not properly initialize memory before using it, which allows local users to read portions of kernel memory. NOTE: this issue was originally incorrectly reported as a "buffer overflow" by some sources...

CVE-2004-0495

Multiple unknown vulnerabilities in Linux kernel 2.4 and 2.6 allow local users to gain privileges or access kernel memory, as found by the Sparse source code checking tool...

CVE-2004-0135

The syssgi SGIIOPROBE system call in IRIX 6.5.20 through 6.5.24 allows local users to gain privileges by reading and writing to kernel memory...

CVE-2004-0495

Multiple unknown vulnerabilities in Linux kernel 2.4 and 2.6 allow local users to gain privileges or access kernel memory, as found by the Sparse source code checking tool...

CVE-2004-0415

Linux kernel does not properly convert 64-bit file offset pointers to 32 bits, which allows local users to access portions of kernel memory...

Linux kernel integer types conversion problems.

It's possible to access kernel memory because of inters conversion bug in 64bit file API for example llseek...

security flaw

The e1000 driver for Linux kernel 2.4.26 and earlier does not properly initialize memory before using it, which allows local users to read portions of kernel memory. NOTE: this issue was originally incorrectly reported as a "buffer overflow" by some sources...

security flaw

Linux kernel does not properly convert 64-bit file offset pointers to 32 bits, which allows local users to access portions of kernel memory...

Fedora Core 1 : kernel-2.4.22-1.2140.nptl (2003-047)

Various RTC drivers had the potential to leak small amounts of kernel memory to userspace through IOCTL's. The Common Vulnerabilities and Exposures project cve.mitre.org has assigned the name CVE-2003-0984 to this issue. Note that Tenable Network Security has extracted the preceding description...

CVE-2004-0602

The CVE-2004-0602 issue affects FreeBSD 4.x/5.x Linux binary compatibility mode. A programming error in handling certain Linux system calls can allow a local attacker to read/overwrite kernel memory, potentially gaining privileges or causing a system panic. Remediation in the connected docs inclu...

CVE-2004-0602

The binary compatibility mode for FreeBSD 4.x and 5.x does not properly handle certain Linux system calls, which could allow local users to access kernel memory to gain privileges or cause a system panic...

CVE-2004-0482

Multiple integer overflows in 1 procfscmdline.c, 2 procfsfpregs.c, 3 procfslinux.c, 4 procfsregs.c, 5 procfsstatus.c, and 6 procfssubr.c in procfs for OpenBSD 3.5 and earlier allow local users to read sensitive kernel memory and possibly perform other unauthorized activities...

CVE-2004-0496

Multiple unknown vulnerabilities in Linux kernel 2.6 allow local users to gain privileges or access kernel memory, a different set of vulnerabilities than those identified in CVE-2004-0495, as found by the Sparse source code checking tool...

FreeBSD : SA-04:02.shmat

The remote host is running a version of the FreeBSD kernel which may be contains a programming error in the shmat2 system call which can let a local attacker to gain read or write access to a portion of the kernel memory which in turn might be used to elevate his privileges or gain access to...

FreeBSD : SA-04:06.ipv6 : setsockopt()

The remote host is running a version of FreeBSD 5.2 older than FreeBSD 5.2.1-p4 There is a programming error in the version of this kernel which may allow a local attacker to read portions of the kernel memory or to cause a system panic by misusing the setsockopt system call on IPv6 sockets. C...

[Full-Disclosure] FreeBSD Security Advisory FreeBSD-SA-04:13.linux

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-04:13.linux Security Advisory The FreeBSD Project Topic: Linux binary compatibility mode input validation error Category: core Module: kernel Announced: 2004-06-3...

FreeBSD Linux compatibility subsystem privilege escalation

It's possible to access kernel memory via system calls...

CVE-2004-0495

Summary: CVE-2004-0495 refers to multiple vulnerabilities in Linux kernel 2.4 and 2.6, identified by the Sparse source-checking tool, that can allow local privilege escalation or access to kernel memory. Affected software: Linux kernel for 2.4 and 2.6 series. Root cause/impact: local attacker cou...