kernel: dvb-core: DoS bug in ULE decapsulation code

The ULE decapsulation functionality in drivers/media/dvb/dvb-core/dvbnet.c in dvb-core in Linux kernel 2.6.33 and earlier allows attackers to cause a denial of service infinite loop via a crafted MPEG2-TS frame, related to an invalid Payload Pointer ULE...

kernel: megaraid_sas permissions in sysfs

The pollmodeio file for the megaraidsas driver in the Linux kernel 2.6.31.6 and earlier has world-writable permissions, which allows local users to change the I/O mode of the driver by modifying this file...

kernel: megaraid_sas permissions in sysfs

The pollmodeio file for the megaraidsas driver in the Linux kernel 2.6.31.6 and earlier has world-writable permissions, which allows local users to change the I/O mode of the driver by modifying this file...

kernel security and bug fix update

2.6.9-89.0.18.0.1.EL - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug 6845794 - fix enomem due to larger mtu size page alloc Zach Brown orabug 5486128 - backout patch sysrq-b that queues upto keventd thread Guru Anbalagane orabug 6125546 - netrx/netpoll race...

Mandriva Security Advisory MDVSA-2009:301 (kernel)

The remote host is missing an update to kernel announced via advisory MDVSA-2009:301. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR...

kernel security and bug fix update

2.6.9-89.0.11.0.1.EL - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug 6845794 fix enomem due to larger mtu size page alloc Zach Brown orabug 5486128 - backout patch sysrq-b that queues upto keventd thread Guru Anbalagane orabug 6125546 - netrx/netpoll race avoidan...

Linux Kernel 2.4/2.6 sock_sendpage() Local Root Exploit (ppc)

No description provided by source. / Linux socksendpage NULL pointer dereference Copyright 2009 Ramon de Carvalho Valle [email protected] This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Softwar...

Linux Kernel 2.6.31-rc7 - AF_LLC getsockname 5-Byte Stack Disclosure

Linux Kernel 2.6.31-rc7 - AFLLC getsockname 5-Byte Stack Disclosure / llc-getsockname-leak.c Linux Kernel http://jon.oberheide.org Information: http://git.kernel.org/linus/28e9fc592cb8c7a43e4d3147b38be6032a0e81bc sllcarphrd member of sockaddrllc might not be changed. Zero sllc before copying to t...

kernel: ecryptfs stack overflow in parse_tag_11_packet()

Stack-based buffer overflow in the parsetag11packet function in fs/ecryptfs/keystore.c in the eCryptfs subsystem in the Linux kernel before 2.6.30.4 allows local users to cause a denial of service system crash or possibly gain privileges via vectors involving a crafted eCryptfs file, related to n...

[RISE-2009003] Linux eCryptfs parse_tag_3_packet Encrypted Key Buffer Overflow Vulnerability

RISE-2009003 Linux eCryptfs parsetag3packet Encrypted Key Buffer Overflow Vulnerability http://risesecurity.org/advisories/RISE-2009003.txt Published: July 28, 2009 Updated: July 28, 2009 INTRODUCTION There exists a vulnerability within a function of Linux eCryptfs Enterprise Cryptographic...

Solaris Update for Kernel 118558-39

Check for the Version of Kernel OpenVAS Vulnerability Test Solaris Update for Kernel 118558-39 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of t...

kernel security and bug fix update

2.6.18-128.1.10.0.1.el5 - NET Add entropy support to e1000 and bnx2 John Sobecki,Guru Anbalagane orabug 6045759 - MM shrink zone patch John Sobecki,Chris Mason orabug 6086839 - NET Add xen pv/bonding netconsole support Tina yang orabug 6993043 bz 7258 - nfs convert ENETUNREACH to ENOTCONN Guru...

PT-2009-3521 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel versions 2.6.27 through 2.6.27.13 Linux kernel versions 2.6.28 through 2.6.28.2 Linux kernel version 2.6.29-rc3 Description: The issue allows local users to cause a denial of service via a read with an invalid address to an inoti...

kernel: libertas: fix buffer overrun

Buffer overflow in the lbsprocessbss function in drivers/net/wireless/libertas/scan.c in the libertas subsystem in the Linux kernel before 2.6.27.5 allows remote attackers to have an unknown impact via an "invalid beacon/probe response."...

I4L: fix isdn_ioctl memory issue

The isdnioctl function in isdncommon.c in Linux kernel 2.6.23 allows local users to cause a denial of service via a crafted ioctl struct in which iocts is not null terminated, which triggers a buffer overflow...

kernel: Missing ioctl() permission checks in aacraid driver

The 1 aaccfgopen and 2 aaccompatioctl functions in the SCSI layer ioctl path in aacraid in the Linux kernel before 2.6.23-rc2 do not check permissions for ioctls, which might allow local users to cause a denial of service or gain privileges...

kernel Race condition in mincore can cause "ps -ef" to hang

The mincore function in the Linux kernel before 2.4.33.6 does not properly lock access to user space, which has unspecified impact and attack vectors, possibly related to a deadlock...

Linux Kernel isdn_net_setcfg buffer overflow

Buffer overflow in the isdnnetsetcfg function in isdnnet.c in Linux kernel 2.6.23 allows local users to have an unknown impact via a crafted argument to the isdnioctl function...

kernel: sctp: Fix oops when INIT-ACK indicates that peer doesn't support AUTH

sctp in Linux kernel before 2.6.25.18 allows remote attackers to cause a denial of service OOPS via an INIT-ACK that states the peer does not support AUTH, which causes the sctpprocessinit function to clean up active transports and triggers the OOPS when the T1-Init timer expires...

AZL-6513 CVE-2008-4609 affecting package kernel for versions less than 5.10.78.1-1

The TCP implementation in 1 Linux, 2 platforms based on BSD Unix, 3 Microsoft Windows, 4 Cisco products, and probably other operating systems allows remote attackers to cause a denial of service connection queue exhaustion via multiple vectors that manipulate information in the TCP state table, a...