The vulnerability of the Android operating system allows a perpetrator to gain access to protected information in the TrustZone.

The vulnerability of the Android operating system’s kernel is related to security configuration errors. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain access to the protected TrustZone area by utilizing the kernel...

SUSE SLED11 / SLES11 Security Update : kernel (SUSE-SU-2016:0911-1)

The SUSE Linux Enterprise 11 SP4 kernel was updated to receive various security and bugfixes. Following feature was added to kernel-xen : - A improved XEN blkfront module was added, which allows more I/O bandwidth. FATE320200 It is called xen-blkfront in PV, and xen-vbd-upstream in HVM mode. The...

Multiple Apple products kernel denial of service vulnerability

Apple iOS, OS X, tvOS, and watchOS are products of Apple Inc. Apple iOS is an operating system for mobile devices; OS X is a specialized operating system for Mac computers; tvOS is an operating system for smart TVs; and watchOS is an operating system for smart watches. kernel is one of the kernel...

Important: Red Hat Security Advisory: kernel security update

Updated kernel packages that fix two security issues and two bugs are now available for Red Hat Enterprise Linux 5. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...

SUSE-SU-2016:0755-1 Security update for kernel live patch 1

This kernel live patch for Linux Kernel 3.12.51-60.20.2 fixes three security issues: Fixes: - CVE-2016-0728: A reference leak in keyring handling with joinsessionkeyring could lead to local attackers gain root privileges. bsc962078. - CVE-2015-8660: The ovlsetattr function in fs/overlayfs/inode.c...

SUSE-SU-2016:0751-1 Security update for kernel live patch 0

This kernel live patch for Linux Kernel 3.12.49-11.1 fixes three security issues: Fixes: - CVE-2016-0728: A reference leak in keyring handling with joinsessionkeyring could lead to local attackers gain root privileges. bsc962078. - CVE-2015-8660: The ovlsetattr function in fs/overlayfs/inode.c in...

SUSE-SU-2016:0756-1 Security update for kernel live patch 7

This kernel live patch for Linux Kernel 3.12.44-52.18.1 fixes two security issues: Fixes: - CVE-2016-0728: A reference leak in keyring handling with joinsessionkeyring could lead to local attackers gain root privileges. bsc962078. - CVE-2013-7446: Use-after-free vulnerability in net/unix/afunix.c...

SUSE-SU-2016:0585-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 12 SP1 kernel was updated to 3.12.53 to receive various security and bugfixes. The following security bugs were fixed: - CVE-2013-7446: Use-after-free vulnerability in net/unix/afunix.c in the Linux kernel allowed local users to bypass intended AFUNIX socket permissions ...

SUSE-SU-2016:0386-1 Security update for kernel live patch 6

This kernel live patch for Linux Kernel 3.12.44-52.10.1 fixes security issues and bugs: Security issues fixed: - CVE-2015-8539: A negatively instantiated user key could have been used by a local user to leverage privileges bnc958601. - CVE-2015-6937: A NULL pointer dereference flaw was found in t...

CVE-2015-7550

The keyctlreadkey function in security/keys/keyctl.c in the Linux kernel before 4.3.4 does not properly use a semaphore, which allows local users to cause a denial of service NULL pointer dereference and system crash or possibly have unspecified other impact via a crafted application that leverag...

Apple Mac OSX / iOS - Kernel iokit Registry Iterator Manipulation Double-Free

Exploit for multiple platform in category dos / poc / Source: https://code.google.com/p/google-security-research/issues/detail?id=598 The userspace MIG wrapper IORegistryIteratorExitEntry invokes the following kernel function: kernreturnt isioregistryiteratorexitentry ioobjectt iterator bool didI...

Important: Red Hat Security Advisory: kernel security update

Updated kernel packages that fix one security issue are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available fro...

kernel security update

3.10.0-327.4.5.OL7 - Oracle Linux certificates Alexey Petrenko 3.10.0-327.4.5 - security keys: Fix keyring ref leak in joinsessionkeyring David Howells 1298931 1298036 CVE-2016-0728...

Important: Red Hat Security Advisory: kernel security update

Updated kernel packages that fix two security issues are now available for Red Hat Enterprise Linux 6.2 Advanced Update Support. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...

Important: Red Hat Security Advisory: kernel security and bug fix update

Updated kernel packages that fix two security issues, several bugs, and add one enhancement are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detail...

Microsoft Windows Kernel Security Feature Bypass (MS15-115: CVE-2015-6113)

A kernel security feature bypass vulnerability has been reported in Microsoft Windows. A remote attacker may exploit this vulnerability by calling a procedure which bypasses access check and allows privileged file access...

kernel security, bug fix, and enhancement update

3.10.0-229.20.1.OL7 - Oracle Linux certificates Alexey Petrenko 3.10.0-229.20.1 - Revert: crypto nx - Check for bogus firmware properties Phillip Lougher 1247127 1190103 - Revert: crypto nx - Moving NX-AES-CBC to be processed logic Phillip Lougher 1247127 1190103 - Revert: crypto nx - Moving...

openSUSE: Security Advisory for Linux (openSUSE-SU-2014:1678-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE-SU-2015:1611-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 11 SP3 kernel was updated to receive various security and bugfixes. Following security bugs were fixed: - CVE-2015-5707: An integer overflow in the SCSI generic driver could be potentially used by local attackers to crash the kernel or execute code bsc940338. -...

Code injection

The kernel in Apple OS X before 10.10.5 does not properly validate pathnames in the environment, which allows local users to gain privileges via unspecified vectors...