4582 matches found
CVE-2003-1040
kmod in the Linux kernel does not set its uid, suid, gid, or sgid to 0, which allows local users to cause a denial of service crash by sending certain signals to kmod...
DSA-456 linux-kernel-2.2.19-arm - failing function and TLB flush
Bulletin has no description...
[SECURITY] [DSA 453-1] New Linux 2.2.20 packages fix local root exploit (i386+m68k+powerpc)
-------------------------------------------------------------------------- Debian Security Advisory DSA 453-1 [email protected] http://www.debian.org/security/ Martin Schulze March 2nd, 2004 http://www.debian.org/security/faq -...
Important: Red Hat Security Advisory: kernel security update
Updated kernel packages that fix a security vulnerability that may allow local users to gain root privileges are now available. These packages also resolve other minor issues. The Linux kernel handles the basic functions of the operating system. Paul Starzetz discovered a flaw in return value...
[SECURITY] [DSA 433-1] New Linux 2.4.17 packages fix local root exploit (mips+mipsel)
-------------------------------------------------------------------------- Debian Security Advisory DSA 433-1 [email protected] http://www.debian.org/security/ Martin Schulze February 4th, 2004 http://www.debian.org/security/faq -...
Important: Red Hat Security Advisory: kernel security update
Updated kernel packages are now available that fix a security vulnerability which may allow local users to gain root privileges. The Linux kernel handles the basic functions of the operating system. Paul Starzetz discovered a flaw in bounds checking in mremap in the Linux kernel versions 2.4.23 a...
[Full-Disclosure] [iSEC] Linux kernel do_brk() lacks argument bound checking
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Synopsis: Linux kernel dobrk lacks argument bound checking Product: Linux Version: up to 2.4.23, others Vendor: http://www.kernel.org/ URL: http://isec.pl/vulnerabilities/isec-0012-dobrk.txt CVE:...
Important: Red Hat Security Advisory: kernel security update
Updated kernel packages are now available that fix a security vulnerability allowing local users to gain root privileges. The Linux kernel handles the basic functions of the operating system. A flaw in bounds checking in the dobrk function in the Linux kernel versions 2.4.22 and previous can allo...
Important: Red Hat Security Advisory: kernel security update
Updated kernel packages that address several security vulnerabilites are now available for the IA64 architecture. Updated 28 August 2003 Changed the CVE name listed in description from the incorrect CAN-2002-0247 to CAN-2003-0247 The Linux kernel handles the basic functions of the operating syste...
Important: Red Hat Security Advisory: kernel security update
Updated kernel packages that address various security vulnerabilities are now available for Red Hat Enterprise Linux. The Linux kernel handles the basic functions of the operating system. Security issues have been found that affect the versions of the Linux kernel shipped with Red Hat Enterprise...
CVE-2003-0465
The kernel strncpy function in Linux 2.4 and 2.5 does not %NUL pad the buffer on architectures other than x86, as opposed to the expected behavior of strncpy as implemented in libc, which could lead to information leaks...
Important: Red Hat Security Advisory: kernel security update
Updated kernel packages are now available that fix a ptrace-related vulnerability which can lead to elevated root privileges. The Linux kernel handles the basic functions of the operating system. A vulnerability has been found in version 2.4.18 of the kernel. This vulnerability allows a local use...
Important: Red Hat Security Advisory: kernel security update
The kernel in Red Hat Linux Advanced Server 2.1 is vulnerable to a local denial of service attack. Updated packages are available which address this vulnerability. Updated 28 August 2003 Added CAN-2003-0461 to the list of security issues that were fixed by this advisory there are no changes to th...
DSA-183 krb5 - buffer overflow
Bulletin has no description...
Linux Kernel 2.4.18/2.4.19 - Privileged File Descriptor Resource Exhaustion (Denial of Service)
/ source: https://www.securityfocus.com/bid/5178/info The Linux kernel is a freely available, open source kernel originally written by Linus Torvalds. It is the core of all Linux distributions. Recent versions of the Linux kernel include a collection of file descriptors which are reserved for usa...
Linux kernel contains race condition via ptrace/procfs/execve
Overview Unprivileged local users can use the ptrace function to take advantage of a privileged program, while that program is performing a privileged operation, to gain privileged access. Description Ptrace is a function, which is often used for debugging, that allows one process to attach to...
[SECURITY] [DSA-047-1] multiple kernel problems
Package : various kernel packages Problem type : multiple Debian-specific: no The kernels used in Debian GNU/Linux 2.2 have been found to have multiple security problems. This is a list of problems based on the 2.2.19 release notes as found on http://www.linux.org.uk/ : binfmtmisc used user pages...
[SECURITY] [DSA-047-1] multiple kernel problems
-----BEGIN PGP SIGNED MESSAGE----- - ------------------------------------------------------------------------ Debian Security Advisory DSA-047-1 [email protected] http://www.debian.org/security/ Wichert Akkerman April 16, 2001 -...
Linux Kernel 2.2.x - 'sysctl()' Memory Reading
/ source: https://www.securityfocus.com/bid/2364/info The Linux Kernel is the core of the Linux Operating System. It was originally written by Linus Torvalds, and is publicly maintained. A problem in the Linux kernel may allow root compromise. The sysctl call allows a privileged program to read o...
Linux Kernel 2.2.x - sysctl() Memory Reading
Linux Kernel 2.2.x - sysctl Memory Reading / source: https://www.securityfocus.com/bid/2364/info The Linux Kernel is the core of the Linux Operating System. It was originally written by Linus Torvalds, and is publicly maintained. A problem in the Linux kernel may allow root compromise. The sysctl...