iOS 7 - Kernel Mode Memory Corruption

...................................... Vulnerability Summary ...................................... Title iOS 7 arbitrary code execution in kernel mode Release Date 14 March 2014 Reference NGS00596 Discoverer Andy Davis Vendor Apple Vendor Reference 600217059 Systems Affected iPhone 4 and later,...

AIX 6.1 TL 6 : bos.net.tcp.client (U849877)

The remote host is missing AIX PTF U849877, which is related to the security of the package bos.net.tcp.client. AIX could allow a remote attacker to cause a denial of service, caused by an error when the TCP large send offload option is enabled on a network interface. By sending a specially craft...

AIX 7.1 TL 1 : bos.net.tcp.client (U843468)

The remote host is missing AIX PTF U843468, which is related to the security of the package bos.net.tcp.client. AIX could allow a remote attacker to cause a denial of service, caused by an error when the TCP large send offload option is enabled on a network interface. By sending a specially craft...

AIX 6.1 TL 7 : bos.net.tcp.client (U848193)

The remote host is missing AIX PTF U848193, which is related to the security of the package bos.net.tcp.client. AIX could allow a remote attacker to cause a denial of service, caused by an error when the TCP large send offload option is enabled on a network interface. By sending a specially craft...

Null pointer dereference

SystemTap 1.7, 1.6.7, and probably other versions, when unprivileged mode is enabled, allows local users to obtain sensitive information from kernel memory or cause a denial of service kernel panic and crash via vectors related to crafted DWARF data, which triggers a read of an invalid pointer...

RHEL 5 : kernel (RHSA-2014:0108)

Updated kernel packages that fix one security issue and three bugs are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

Scientific Linux Security Update : kernel on SL5.x i386/x86_64 (20140129)

It was found that the Xen hypervisor did not always lock 'pagealloclock' and 'granttable.lock' in the same order. This could potentially lead to a deadlock. A malicious guest administrator could use this flaw to cause a denial of service on the host. CVE-2013-4494, Moderate This update also fixes...

Moderate: Red Hat Security Advisory: kernel security and bug fix update

Updated kernel packages that fix one security issue and three bugs are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

Moderate: Red Hat Security Advisory: kernel security and bug fix update

Updated kernel packages that fix one security issue and several bugs are now available for Red Hat Enterprise Linux 5.9 Extended Update Support. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, whic...

RedHat Update for kernel RHSA-2013:1790-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Scientific Linux Security Update : kernel on SL5.x i386/x86_64 (20131205)

An information leak flaw was found in the way the Xen hypervisor handled error conditions when reading guest memory during certain guest-originated operations, such as port or memory mapped I/O writes. A privileged user in a fully-virtualized guest could use this flaw to leak hypervisor stack...

XADV-2013007 Linux Kernel bt8xx Video Driver IOCTL Heap Overflow

+--------------------------------------------------------------------+ | XADV-2013007 Linux Kernel bt8xx Video Driver IOCTL Heap Overflow | +--------------------------------------------------------------------+ Vulnerable versions: - linux kernel 2.6.18 = Testbed: ubuntu Type: Local Impact: Mediu...

XADV-2013003 Linux Kernel fbdev Driver arcfb_write() Overflow

+----------------------------------------------------------------+ | XADV-2013003 Linux Kernel fbdev Driver arcfbwrite Overflow | +----------------------------------------------------------------+ Vulnerable versions: - linux kernel 3.12 = - linux kernel 2.6.x Testbed: linux kernel 2.6.18 Type:...

Kernel: net: panic while pushing pending data out of a IPv6 socket with UDP_CORK enabled

The udpv6pushpendingframes function in net/ipv6/udp.c in the IPv6 implementation in the Linux kernel through 3.10.3 makes an incorrect function call for pending data, which allows local users to cause a denial of service BUG and system crash via a crafted application that uses the UDPCORK option ...

eCryptfs write_tag_3_packet Heap Buffer Overflow Vulnerability

eCryptfs in Linux kernel version 2.6.18 suffer from a writetag3packet heap buffer overflow vulnerability. +--------------------------------------------------------------------------------------------+ | XADV-2013003 Linux Kernel eCryptfs writetag3packet Heap Buffer Overflow Vulnerability |...

XADV-2013003 Linux Kernel eCryptfs write_tag_3_packet Heap Buffer Overflow Vulnerability

+--------------------------------------------------------------------------------------------+ | XADV-2013003 Linux Kernel eCryptfs writetag3packet Heap Buffer Overflow Vulnerability | +--------------------------------------------------------------------------------------------+ Vulnerable...

Important: Red Hat Security Advisory: kernel security and bug fix update

Updated kernel packages that fix three security issues and several bugs are now available for Red Hat Enterprise Linux 6.3 Extended Update Support. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores,...

Kernel: net: panic while pushing pending data out of a IPv6 socket with UDP_CORK enabled

The udpv6pushpendingframes function in net/ipv6/udp.c in the IPv6 implementation in the Linux kernel through 3.10.3 makes an incorrect function call for pending data, which allows local users to cause a denial of service BUG and system crash via a crafted application that uses the UDPCORK option ...

Debian DSA-2769-1 : kfreebsd-9 - privilege escalation/denial of service

Several vulnerabilities have been discovered in the FreeBSD kernel that may lead to a denial of service or privilege escalation. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2013-5691 Loganaden Velvindron and Gleb Smirnoff discovered that the...

Debian Security Advisory DSA 2769-1 (kfreebsd-9 - privilege escalation/denial of service)

Several vulnerabilities have been discovered in the FreeBSD kernel that may lead to a denial of service or privilege escalation. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2013-5691 Loganaden Velvindron and Gleb Smirnoff discovered that the SIOCSIFADDR...