568 matches found
PT-2015-1019 · Linux +4 · Linux Kernel +4
Name of the Vulnerable Software and Affected Versions: linux-image-3.13.0 Linux kernel versions prior to 3.15 Description: The issue affects the XFS implementation in the Linux kernel, where an old size value is improperly used during remote attribute replacement. This can be exploited locally to...
Immunity Canvas: LINUX_TTY_RACE
Name| linuxttyrace ---|--- CVE| CVE-2014-0196 Exploit Pack| CANVAS Description| linuxttyrace local root Notes| Repeatability: Multiple Times Notes: Exploit has been tested successfully on: - Ubuntu 13.10 3.14.1-vanilla - Ubuntu 14.04 3.14.1-vanilla - Ubuntu 14.04 3.14.2-vanilla - Fedora 20...
pty race
The nttywrite function in drivers/tty/ntty.c in the Linux kernel through 3.14.3 does not properly manage tty driver access in the "LECHO & !OPOST" case, which allows local users to cause a denial of service memory corruption and system crash or gain privileges by triggering a race condition...
Debian: Security Advisory (DSA-2917-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
PT-2019-5753 · Linux +5 · Linux Kernel +5
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions 3.10.x through 4.18.x Description: The issue is related to the SCTP socket buffer used by a userspace application not being accounted for by the cgroups subsystem. This can be exploited to cause a denial of service attac...
PT-2013-3481 · Linux +3 · Linux Kernel +3
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 3.0 Description: The issue concerns a lack of checks in the KVM subsystem for kernel addresses during memory slot allocation for a guest's physical address space. This allows local users to potentially gain...
PT-2013-3521 · Linux +1 · Linux Kernel +1
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 3.7.4 Description: The issue is related to the host start function in the Linux kernel, which does not properly support a certain non-streaming option. This allows local users to cause a denial of service,...
UBUNTU-CVE-2013-0311
The translatedesc function in drivers/vhost/vhost.c in the Linux kernel before 3.7 does not properly handle cross-region descriptors, which allows guest OS users to obtain host OS privileges by leveraging KVM guest OS privileges...
UBUNTU-CVE-2011-4131
The NFSv4 implementation in the Linux kernel before 3.2.2 does not properly handle bitmap sizes in GETACL replies, which allows remote NFS servers to cause a denial of service OOPS by sending an excessive number of bitmap words...
CVE-2012-2133
Use-after-free vulnerability in the Linux kernel before 3.3.6, when huge pages are enabled, allows local users to cause a denial of service system crash or possibly gain privileges by interacting with a hugetlbfs filesystem, as demonstrated by a umount operation that triggers improper handling of...
PT-2012-1800 · Linux +1 · Linux Kernel +1
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.39 Description: The issue allows local users to bypass intended access restrictions and read the kernel ring buffer by leveraging root privileges. This can be demonstrated by a root user in a Linux Container...
PT-2011-1066 · Suse +2 · Ext4Dev-Kmp-Trace +2
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 3.1 ext4dev-kmp-trace affected versions not specified Description: The issue concerns the Linux kernel's IPv4 and IPv6 implementations, which use a modified MD4 algorithm. This makes it easier for remote attacke...
PT-2011-1009 · Linux +2 · Linux Kernel +2
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 3.1 Description: The issue allows local users to obtain sensitive I/O statistics, potentially revealing confidential information such as the length of another user's password. This is achieved by sending tasksta...
kernel: ipc/compat*.c: reading uninitialized stack memory
The ipc subsystem in the Linux kernel before 2.6.37-rc1 does not initialize certain structures, which allows local users to obtain potentially sensitive information from kernel stack memory via vectors related to the 1 compatsyssemctl, 2 compatsysmsgctl, and 3 compatsysshmctl functions in...
kernel: fix LOOKUP_FOLLOW on automount "symlinks"
fs/namei.c in Linux kernel 2.6.18 through 2.6.34 does not always follow NFS automount "symlinks," which allows attackers to have an unknown impact, related to LOOKUPFOLLOW...
PT-2009-3521 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux kernel versions 2.6.27 through 2.6.27.13 Linux kernel versions 2.6.28 through 2.6.28.2 Linux kernel version 2.6.29-rc3 Description: The issue allows local users to cause a denial of service via a read with an invalid address to an inoti...
kernel: race condition in dnotify (local DoS, local roothole possible)
Race condition in the directory notification subsystem dnotify in Linux kernel 2.6.x before 2.6.24.6, and 2.6.25 before 2.6.25.1, allows local users to cause a denial of service OOPS and possibly gain privileges via unspecified vectors...
kernel: race condition in dnotify (local DoS, local roothole possible)
Race condition in the directory notification subsystem dnotify in Linux kernel 2.6.x before 2.6.24.6, and 2.6.25 before 2.6.25.1, allows local users to cause a denial of service OOPS and possibly gain privileges via unspecified vectors...
/proc/cpuinfo DoS on some ppc machines
The chrpshowcpuinfo function chrp/setup.c in Linux kernel 2.4.21 through 2.6.18-53, when running on PowerPC, might allow local users to cause a denial of service crash via unknown vectors that cause the ofgetproperty function to fail, which triggers a NULL pointer dereference...
[EXPL] Linux Kernel IPv6 Jumbo Bug
The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...