4584 matches found
Microsoft Windows Kernel KMD Security Feature CVE-2015-2454 Local Security Bypass Vulnerability
Description Microsoft Windows is prone to a local security-bypass vulnerability. Local attackers can exploit this issue to bypass certain security restrictions and execute arbitrary code by exploiting another vulnerability in the application. Successful exploits may lead to other attacks...
Unbreakable Enterprise kernel security update
2.6.39-400.250.10 - md: use kzalloc when bitmap is disabled Benjamin Randazzo Orabug: 21563042 CVE-2015-5697 - netfilter: nfconntrack: reserve two bytes for nfctext-len Andrey Vagin Orabug: 21562780 CVE-2014-9715...
kernel security and bug fix update
3.10.0-229.11.1 - Oracle Linux certificates Alexey Petrenko 3.10.0-229.11.1 - fs Fixing lease renewal Steve Dickson 1226328 1205048 - fs revert 'nfs: Fixing lease renewal' Carlos Maiolino 1226328 1205048 - redhat spec: Update dracut dependency to 033-241.|ael7b1.5 Phillip Lougher 1241571 1241344...
Unbreakable Enterprise kernel security update
kernel-uek 2.6.32-400.37.9uek - x86, tls: Interpret an all-zero struct userdesc as 'no segment' Andy Lutomirski Orabug: 21518750 - x86, tls, ldt: Stop checking lm in LDTempty Andy Lutomirski Orabug: 21518750 2.6.32-400.37.8uek - KVM: x86: SYSENTER emulation is broken Nadav Amit Orabug: 21502741...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-68.3.5 - KVM: x86: SYSENTER emulation is broken Nadav Amit Orabug: 21502739 CVE-2015-0239 CVE-2015-0239 - fs: take imutex during preparebinprm for setugid executables Jann Horn Orabug: 21502254 CVE-2015-3339 - eCryptfs: Remove buggy and unnecessary write in file name decode...
Moderate: Red Hat Security Advisory: kernel security, bug fix, and enhancement update
Updated kernel packages that fix multiple security issues, address several hundred bugs, and add numerous enhancements are now available as part of the ongoing support and maintenance of Red Hat Enterprise Linux version 6. This is the seventh regular update. Red Hat Product Security has rated thi...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-68.3.4 - ipv6: Don't reduce hop limit for an interface D.S. Ljungmark Orabug: 21444790 CVE-2015-2922 - ipv4: Missing sknullsnodeinit in pingunhash. David S. Miller Orabug: 21444687 CVE-2015-3636...
CVE-2015-4004
The OZWPAN driver in the Linux kernel through 4.0.5 relies on an untrusted length field during packet parsing, which allows remote attackers to obtain sensitive information from kernel memory or cause a denial of service out-of-bounds read and system crash via a crafted packet...
Oracle Linux 5 : kernel (ELSA-2015-1042)
The remote Oracle Linux 5 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2015-1042 advisory. - fs pipe: fix pipe corruption and iovec overrun on partial copy Mateusz Guzik 1203787 CVE-2015-1805 Tenable has extracted the preceding description block...
SUSE SLED11 / SLES11 Security Update : kernel (SUSE-SU-2014:0189-1)
The SUSE Linux Enterprise 11 Service Pack 3 kernel was updated to 3.0.101 and also includes various other bug and security fixes. A new feature was added : - supported.conf: marked net/netfilter/xtset as supported bnc851066fate313309 The following security bugs have been fixed : CVE-2013-4587:...
SUSE SLES11 Security Update : kernel (SUSE-SU-2014:1138-1)
The SUSE Linux Enterprise Server 11 SP1 LTSS received a roll up update to fix several security and non-security issues. The following security issues have been fixed : - CVE-2013-1860: Heap-based buffer overflow in the wdmincallback function in drivers/usb/class/cdc-wdm.c in the Linux kernel befo...
Microsoft Windows - CNG.SYS Kernel Security Feature Bypass (MS15-052)
Microsoft Windows - CNG.SYS Kernel Security Feature Bypass MS15-052 // Source: http://www.binvul.com/viewthread.php?tid=508 // Source: https://twitter.com/NTarakanov/status/598370525132423168 include include include pragma commentlib, "ntdll.lib" int mainint argc, CHAR argv typedef NTSTATUS stdca...
Microsoft Windows - 'CNG.SYS' Kernel Security Feature Bypass (MS15-052)
// Source: http://www.binvul.com/viewthread.php?tid=508 // Source: https://twitter.com/NTarakanov/status/598370525132423168 include include include pragma commentlib, "ntdll.lib" int mainint argc, CHAR argv typedef NTSTATUS stdcall NTOPENFILEOUT PHANDLE FileHandle, IN ACCESSMASK DesiredAccess, IN...
Microsoft Windows Kernel Security Feature Bypass Vulnerability (3050514)
This host is missing an important security update according to Microsoft Bulletin MS15-052. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Code injection
The machvmread functionality in the kernel in Apple OS X before 10.10.3 allows local users to cause a denial of service system crash via unspecified vectors...
Ubuntu 12.04 LTS : linux-lts-trusty vulnerabilities (USN-2562-1)
Sun Baoliang discovered a use after free flaw in the Linux kernel's SCTP Stream Control Transmission Protocol subsystem during INIT collisions. A remote attacker could exploit this flaw to cause a denial of service system crash or potentially escalate their privileges on the system. CVE-2015-1421...
RHEL 7 : kernel (RHSA-2015:0726)
Updated kernel packages that fix two security issues and several bugs are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, a...
kernel security and bug fix update
3.10.0-229.1.2 - Oracle Linux certificates Alexey Petrenko 3.10.0-229.1.2 - infiniband core: Prevent integer overflow in ibumemget address arithmetic Doug Ledford 1181177 1179347 CVE-2014-8159 3.10.0-229.1.1 - crypto testmgr: mark rfc4106gcmaes as fipsallowed Jarod Wilson 1197751 1185400 - virt...
Unbreakable Enterprise kernel security and bugfix update
kernel-uek 3.8.13-68 - ttusb-dec: buffer overflow in ioctl Dan Carpenter Orabug: 20673373 CVE-2014-8884 - mm: Fix NULL pointer dereference in madviseMADVWILLNEED support Kirill A. Shutemov Orabug: 20673279 CVE-2014-8173 - netfilter: conntrack: disable generic tracking for known protocols Florian...
Important: Red Hat Security Advisory: kernel security update
Updated kernel packages that fix three security issues are now available for Red Hat Enterprise Linux 6.2 Advanced Update Support. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...