CVE-2011-1349: Android PowerVR SGX driver denial of service

CVE-2011-1349: Android PowerVR SGX driver denial of service due to a NULL pointer dereference in PVRSRV_BRIDGE_CREATE_DEVMEMCONTEXT handler, allowing a local attacker to cause a kernel panic. Affected component: PowerVR SGX graphics driver on Android. Exploitation details are not provided in the ...

kernel: panic occurs when clock_gettime() is called

The divlonglongrem implementation in include/asm-x86/div64.h in the Linux kernel before 2.6.26 on the x86 platform allows local users to cause a denial of service Divide Error Fault and panic via a clockgettime system call...

Important: Red Hat Security Advisory: kernel security, bug fix, and enhancement update

Updated kernel packages that fix several security issues, various bugs, and add one enhancement are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, whi...

FreeBSD UIPC Socket Heap Overflow

!/bin/sh fbsd-uipcsock-heap.sh, by Shaun Colley , 29/09/11 proof-of-concept crash for the freebsd unix domain sockets heap overflow. this was tested on freebsd 8.2-RELEASE. just a PoC for now. see advisory & patches for details: http://www.securityfocus.com/archive/1/519864/30/0/threaded this PoC...

FreeBSD - UIPC socket heap Overflow (PoC)

FreeBSD - UIPC socket heap Overflow PoC !/bin/sh fbsd-uipcsock-heap.sh, by Shaun Colley , 29/09/11 proof-of-concept crash for the freebsd unix domain sockets heap overflow. this was tested on freebsd 8.2-RELEASE. just a PoC for now. see advisory & patches for details:...

FreeBSD - UIPC socket heap Overflow (PoC)

!/bin/sh fbsd-uipcsock-heap.sh, by Shaun Colley , 29/09/11 proof-of-concept crash for the freebsd unix domain sockets heap overflow. this was tested on freebsd 8.2-RELEASE. just a PoC for now. see advisory & patches for details: http://www.securityfocus.com/archive/1/519864/30/0/threaded this PoC...

Mac OS X < 10.6.7 Kernel Panic Exploit

No description provided by source. / Mac OS X 10.6.7 Kernel Panic Exploit CVE-2011-0182, Proof Of Concept Code Author - Chanam Park hkpco Date - 2011. 06 Contact - [email protected] , http://hkpco.kr , @hkpco Thanks for inspiration / x82, riaf. / // Compile: gcc -o CVE-2011-0182PoC...

FreeBSD UIPC socket heap overflow proof-of-concept

Exploit for freebsd platform in category dos / poc !/bin/sh fbsd-uipcsock-heap.sh, by Shaun Colley , 29/09/11 proof-of-concept crash for the freebsd unix domain sockets heap overflow. this was tested on freebsd 8.2-RELEASE. just a PoC for now. see advisory & patches for details:...

Apple Mac OSX 10.6.7 - Kernel Panic (Denial of Service)

Apple Mac OSX 10.6.7 - Kernel Panic Denial of Service / Mac OS X include include include include include void dummyfunc void asm volatile ".byte 0xff" ; int main void int ret; union ldtentry cgate, cgate2; char dummy128 = 0x00,; cgate.callgate.offset00 = unsigned intdummyfunc & 0xffff;...

FreeBSD-SA-11:05.unix

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-11:05.unix Security Advisory The FreeBSD Project Topic: Buffer overflow in handling of UNIX socket addresses Category: core Module: kern Announced: 2011-09-28...

Mac OS X Kernel Panic

/ Mac OS X include include include include include void dummyfunc void asm volatile ".byte 0xff" ; int main void int ret; union ldtentry cgate, cgate2; char dummy128 = 0x00,; cgate.callgate.offset00 = unsigned intdummyfunc & 0xffff; cgate.callgate.offset16 = unsigned intdummyfunc 16 & 0xffff; //...

Apple Mac OSX < 10.6.7 - Kernel Panic (Denial of Service)

/ Mac OS X include include include include include void dummyfunc void asm volatile ".byte 0xff" ; int main void int ret; union ldtentry cgate, cgate2; char dummy128 = 0x00,; cgate.callgate.offset00 = unsigned intdummyfunc & 0xffff; cgate.callgate.offset16 = unsigned intdummyfunc 16 & 0xffff; //...

Mac OS X < 10.6.7 Kernel Panic Exploit

Exploit for macOS platform in category dos / poc / Mac OS X include include include include include void dummyfunc void asm volatile ".byte 0xff" ; int main void int ret; union ldtentry cgate, cgate2; char dummy128 = 0x00,; cgate.callgate.offset00 = unsigned intdummyfunc & 0xffff;...

kernel: sctp: a race between ICMP protocol unreachable and connect()

Race condition in the sctpicmpprotounreachable function in net/sctp/input.c in Linux kernel 2.6.11-rc2 through 2.6.33 allows remote attackers to cause a denial of service panic via an ICMP unreachable message to a socket that is already locked by a user, which causes the socket to be freed and...

kernel: ext4: kernel panic when writing data to the last block of sparse file

Multiple off-by-one errors in the ext4 subsystem in the Linux kernel before 3.0-rc5 allow local users to cause a denial of service BUGON and system crash by accessing a sparse file in extent format with a write operation involving a block number corresponding to the largest possible 32-bit unsign...

CentOS Update for kernel CESA-2009:1670 centos5 i386

Check for the Version of kernel OpenVAS Vulnerability Test CentOS Update for kernel CESA-2009:1670 centos5 i386 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it und...

Moderate: Red Hat Security Advisory: libvirt security, bug fix, and enhancement update

Updated libvirt packages that fix one security issue, several bugs and add various enhancements are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, whi...

kernel: panic in ib_cm:cm_work_handler

Race condition in the cmworkhandler function in the InfiniBand driver drivers/infiniband/core/cma.c in Linux kernel 2.6.x allows remote attackers to cause a denial of service panic by sending an InfiniBand request while other request handlers are still running, which triggers an invalid pointer...

kernel: nfs4: Ensure that ACL pages sent over NFS were not allocated from the slab

The nfs4procsetacl function in fs/nfs/nfs4proc.c in the Linux kernel before 2.6.38 stores NFSv4 ACL data in memory that is allocated by kmalloc but not properly freed, which allows local users to cause a denial of service panic via a crafted attempt to set an ACL...

SuSE 11.1 Security Update : Xen (SAT Patch Number 4491)

Collective May/2011 update for Xen Xen : - 679344: Xen: multi-vCPU pv guest may crash host - 675817: Kernel panic when creating HVM guests on AMD platforms with XSAVE - 678871: dom0 hangs long time when starting hvm guests with memory = 64GB - 675363: Random lockups with kernel-xen. Possibly...