568 matches found
MDKA-2007:054 : dkms
The dkms packages that shipped with Mandriva Linux 2007.0 and 2007.1 did not work with kernel versions of 2.6.21 and higer due to the use of an obsolete Makefile target. The updated packages fix this limitation. %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated as the associated...
security flaw
Linux kernel 2.4.x and 2.6.x up to 2.6.16 allows local users to bypass IPC permissions and modify a readonly attachment of shared memory by using mprotect to give write permission to the attachment. NOTE: some original raw sources combined this issue with CVE-2006-1524, but they are different bug...
security flaw
The perfmonctl system call sysperfmonctl in Linux kernel 2.4.x and 2.6 before 2.6.18, when running on Itanium systems, does not properly track the reference count for file descriptors, which allows local users to cause a denial of service file descriptor consumption...
PT-2006-5448 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux kernel versions 2.6.16 through 2.6.17.11 Description: The issue concerns weak permissions in the source code tar archive of the Linux kernel, potentially allowing local users to insert malicious code that could be used during the next...
Possible privilege escalation through prctl() and suid_dumpable
The suiddumpable support in Linux kernel 2.6.13 up to versions before 2.6.17.4, and 2.6.16 before 2.6.16.24, allows a local user to cause a denial of service disk consumption and possibly gain privileges via the PRSETDUMPABLE argument of the prctl function and a program that causes a core dump fi...
PT-2005-1584 · Linux +1 · Linux Kernel +1
Name of the Vulnerable Software and Affected Versions: Linux kernel versions 2.6.10 through 2.6.11 before 2.6.11-rc4 Description: The issue is related to the atm get addr function in addr.c, which may allow local users to trigger a buffer overflow via negative arguments. Recommendations: For Linu...
PT-2004-3690 · Linux +1 · Linux Kernel +1
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.13.4 Description: The issue is related to a memory leak in the audit system of the Linux kernel. When CONFIG AUDITSYSCALL is enabled, the kernel uses an incorrect function to free names cache memory,...
PT-2004-3740 · Debian +1 · Debian +1
Name of the Vulnerable Software and Affected Versions: Debian GNU/Linux kernel-image-2.4.18-powerpc-xfs version Debian GNU/Linux kernel-image-2.4.18-sun4u version Debian GNU/Linux kernel-image-2.4.18-sun4u-smp version Debian GNU/Linux kernel-image-2.4.19-sparc version Debian GNU/Linux...