4815 matches found
Design/Logic Flaw
The rdsibxmit function in net/rds/ibsend.c in the Reliable Datagram Sockets RDS protocol implementation in the Linux kernel 3.7.4 and earlier allows local users to cause a denial of service BUGON and kernel panic by establishing an RDS connection with the source IP address equal to the IPoIB...
CVE-2012-2372
The rdsibxmit function in net/rds/ibsend.c in the Reliable Datagram Sockets RDS protocol implementation in the Linux kernel 3.7.4 and earlier allows local users to cause a denial of service BUGON and kernel panic by establishing an RDS connection with the source IP address equal to the IPoIB...
CVE-2012-2372
The rdsibxmit function in net/rds/ibsend.c in the Reliable Datagram Sockets RDS protocol implementation in the Linux kernel 3.7.4 and earlier allows local users to cause a denial of service BUGON and kernel panic by establishing an RDS connection with the source IP address equal to the IPoIB...
kernel: rds-ping cause kernel panic
The rdsibxmit function in net/rds/ibsend.c in the Reliable Datagram Sockets RDS protocol implementation in the Linux kernel 3.7.4 and earlier allows local users to cause a denial of service BUGON and kernel panic by establishing an RDS connection with the source IP address equal to the IPoIB...
Vm86 - Syscall Task Switch Kernel Panic (Denial of Service) Privilege Escalation
Vm86 - Syscall Task Switch Kernel Panic Denial of Service Privilege Escalation Source: http://www.halfdog.net/Security/2013/Vm86SyscallTaskSwitchKernelPanic/ Introduction Problem description: The initial observation was, that the linux vm86 syscall, which allows to use the virtual-8086 mode from...
Vm86 - Syscall Task Switch Kernel Panic Denial of Service / Privilege Escalation
Source: http://www.halfdog.net/Security/2013/Vm86SyscallTaskSwitchKernelPanic/ Introduction Problem description: The initial observation was, that the linux vm86 syscall, which allows to use the virtual-8086 mode from userspace for emulating of old 8086 software as done with dosemu, was prone to...
Null pointer dereference
The SCTP implementation in FreeBSD 8.2 allows remote attackers to cause a denial of service NULL pointer dereference and kernel panic via a crafted ASCONF chunk...
CVE-2012-3549
Removed by vendor...
CVE-2012-3549
The SCTP implementation in FreeBSD 8.2 allows remote attackers to cause a denial of service NULL pointer dereference and kernel panic via a crafted ASCONF chunk...
CVE-2012-3549
The CVE-2012-3549 entry involves the SCTP implementation in FreeBSD 8.2, where remote attackers can trigger a denial of service (NULL pointer dereference and kernel panic) by sending a crafted ASCONF chunk. The vulnerability is rooted in the FreeBSD 8.2 SCTP stack handling of ASCONF, leading to a...
FreeBSD Kernel SCTP Remote NULL Ptr Dereference DoS
Exploit for freebsd platform in category dos / poc / FreeBSD kernel SCTP latest release remote NULL ptr dereference DoS by Shaun Colley , 2 Aug 2012 The SCTP implementation used by FreeBSD "reference implementation" is vulnerable to a remote NULL pointer dereference in kernel due to a logic bug...
FreeBSD - SCTP Remote NULL Ptr Dereference Denial of Service
/ FreeBSD kernel SCTP latest release remote NULL ptr dereference DoS by Shaun Colley , 2 Aug 2012 The SCTP implementation used by FreeBSD "reference implementation" is vulnerable to a remote NULL pointer dereference in kernel due to a logic bug. When parsing ASCONF chunks, an attempt is made to...
Scientific Linux Security Update : libvirt on SL5.x i386/x86_64
The libvirt library is a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. An integer overflow flaw was found in libvirtd's RPC call handling. An attacker able to establish read-only connections to libvirtd could trigger this flaw by...
Scientific Linux Security Update : kernel on SL5.x i386/x86_64
This update fixes the following security issues : - A missing boundary check was found in the dvbcaioctl function in the Linux kernel's av7110 module. On systems that use old DVB cards that require the av7110 module, a local, unprivileged user could use this flaw to cause a denial of service or...
Scientific Linux Security Update : kernel on SL4.x i386/x86_64
A flaw was found in the handling of IEEE 802.11 frames, which affected several wireless LAN modules. In certain situations, a remote attacker could trigger this flaw by sending a malicious packet over a wireless network, causing a denial of service kernel crash. CVE-2007-4997, Important A memory...
Scientific Linux Security Update : kernel on SL5.x i386/x86_64
Security fixes : - NULL pointer dereference flaws in the r128 driver. Checks to test if the Concurrent Command Engine state was initialized were missing in private IOCTL functions. An attacker could use these flaws to cause a local denial of service or escalate their privileges. CVE-2009-3620,...
Scientific Linux Security Update : kernel on SL4.x i386/x86_64
These updated kernel packages fix the following security issues : A flaw was found in the virtual filesystem VFS. A local unprivileged user could truncate directories to which they had write permission; this could render the contents of the directory inaccessible. CVE-2008-0001, Important A flaw...
Scientific Linux Security Update : GFS on SL3.x i386/x86_64
A flaw was found in the gfslock implementation. The GFS locking code could skip the lock operation for files that have the SISGID bit set-group-ID on execution in their mode set. A local, unprivileged user on a system that has a GFS file system mounted could use this flaw to cause a kernel panic...
Scientific Linux Security Update : kernel on SL4.x i386/x86_64
Security fixes : - A flaw in sctppacketconfig in the Linux kernel's Stream Control Transmission Protocol SCTP implementation could allow a remote attacker to cause a denial of service. CVE-2010-3432, Important - A missing integer overflow check in sndctlnew in the Linux kernel's sound subsystem...
Scientific Linux Security Update : kernel on SL4.x i386/x86_64
Security fixes : - a logic error was found in the dosetlk function of the Linux kernel Network File System NFS implementation. If a signal interrupted a lock request, the local POSIX lock was incorrectly created. This could cause a denial of service on the NFS server if a file descriptor was clos...