757 matches found
USN-1161-1: Linux kernel vulnerabilities (EC2)
Vasiliy Kulikov discovered that kvm did not correctly clear memory. A local attacker could exploit this to read portions of the kernel stack, leading to a loss of privacy. CVE-2010-3881 Timo Warns discovered that the LDM disk partition handling code did not correctly handle certain values. By...
Distribution Release : SystemRescueCd 2.1.0 Download
François Dupoux has released an updated version of SystemRescueCd, a Gentoo-based live CD containing a collection of utilities for disk management and data rescue tasks. What's new in version 2.1.0? "Updated standard kernels to 2.6.35.12 long-term kernel: rescuecd + rescue64; alternative kernels...
Linux Kernel 2.6.37 (RedHat Ubuntu 10.04) - Full-Nelson.c Local Privilege Escalation
Linux Kernel 2.6.37 RedHat Ubuntu 10.04 - Full-Nelson.c Local Privilege Escalation / Linux Kernel = 2.6.37 local privilege escalation by Dan Rosenberg @djrbliss on twitter Usage: gcc full-nelson.c -o full-nelson ./full-nelson This exploit leverages three vulnerabilities to get root, all of which...
Fedora Update for dracut FEDORA-2010-17930
Check for the Version of dracut OpenVAS Vulnerability Test Fedora Update for dracut FEDORA-2010-17930 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...
Microsoft Windows Vista7 - Local Privilege Escalation (UAC Bypass)
Microsoft Windows Vista7 - Local Privilege Escalation UAC Bypass A Design Flaw in Windows Kernel API can Lead to privilege escalation. Mirror of Original Post: http://www.exploit-db.com/bypassing-uac-with-user-privilege-under-windows-vista7-mirror/ PoC:...
Open Source Vendors Closing Kernel Hole
Canonical has released updated kernels for Ubuntu versions 10.04 LTS, 9.10, 9.04, 8.04 LTS and 6.06 LTS to close the recently discovered holes in the Linux kernel. The updates are also for the equivalent versions of Kubuntu, Edubuntu and Xubuntu and should be available through Ubuntu’s Software...
Linux Kernel 2.6.36-rc1 (Ubuntu 10.04 2.6.32) - CAN BCM Local Privilege Escalation
Linux Kernel 2.6.36-rc1 Ubuntu 10.04 2.6.32 - CAN BCM Local Privilege Escalation / i-CAN-haz-MODHARDEN.c Linux Kernel http://jon.oberheide.org Information: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2959 Ben Hawkes discovered an integer overflow in the Controller Area Network CAN...
kernel: sctp: crash due to malformed SCTPChunkInit packet
The sctpprocessunkparam function in net/sctp/smmakechunk.c in the Linux kernel 2.6.33.3 and earlier, when SCTP is enabled, allows remote attackers to cause a denial of service system crash via an SCTPChunkInit packet containing multiple invalid parameters that require a large amount of error data...
AZL-34841 CVE-2010-0309 affecting package kernel for versions less than 6.6.35.1-4
The pitioportread function in the Programmable Interval Timer PIT emulation in i8254.c in KVM 83 does not properly use the pitstate data structure, which allows guest OS users to cause a denial of service host OS crash or hang by attempting to read the /dev/port file...
kernel: e1000e frame fragment issue
drivers/net/e1000e/netdev.c in the e1000e driver in the Linux kernel 2.6.32.3 and earlier does not properly check the size of an Ethernet frame that exceeds the MTU, which allows remote attackers to have an unspecified impact via crafted packets, a related issue to CVE-2009-4537...
Ubuntu USN-863-1 (qemu-kvm)
The remote host is missing an update to qemu-kvm announced via advisory USN-863-1. OpenVAS Vulnerability Test $Id: ubuntu8631.nasl 7969 2017-12-01 09:23:16Z santu $ $Id: ubuntu8631.nasl 7969 2017-12-01 09:23:16Z santu $ Description: Auto-generated from advisory USN-863-1 qemu-kvm Authors: Thomas...
Ubuntu: Security Advisory (USN-863-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 9.10 : qemu-kvm vulnerability (USN-863-1)
It was discovered that QEMU did not properly setup the virtio networking features available to its guests. A remote attacker could exploit this to crash QEMU guests which use virtio networking on Linux kernels earlier than 2.6.26. Note that Tenable Network Security has extracted the preceding...
USN-863-1: QEMU vulnerability
It was discovered that QEMU did not properly setup the virtio networking features available to its guests. A remote attacker could exploit this to crash QEMU guests which use virtio networking on Linux kernels earlier than 2.6.26...
kernel: netlink: fix numerous padding memleaks
The netlink subsystem in the Linux kernel 2.4.x before 2.4.37.6 and 2.6.x before 2.6.13-rc1 does not initialize certain padding fields in structures, which might allow local users to obtain sensitive information from kernel memory via unspecified vectors, related to the 1 tcfillqdisc, 2...
DSA-1872-1 fai-kernels linux-2.6 user-mode-linux - several vulnerabilities
Bulletin has no description...
Linux Kernel 2.x sock_sendpage() Local Root Exploit (Android Edition)
Exploit for linux platform in category local exploits ===================================================================== Linux Kernel 2.x socksendpage Local Root Exploit Android Edition ===================================================================== Source for exploiting CVE-2009-2692 on...
DSA-1865-1 fai-kernels linux-2.6 user-mode-linux - several vulnerabilities
Bulletin has no description...
[SECURITY] [DSA 1844-1] New Linux 2.6.24 packages fix several vulnerabilities
---------------------------------------------------------------------- Debian Security Advisory DSA-1844-1 [email protected] http://www.debian.org/security/ Dann Frazier July 28, 2009 http://www.debian.org/security/faq - ----------------------------------------------------------------------...
DSA-1844-1 linux-2.6.24 - several vulnerabilities
Bulletin has no description...