Kernel security update

New kernels are available for Slackware 9.0, 9.1 and -current. The 9.1 and -current kernels have been upgraded to 2.4.24, and a fix has been backported to the 2.4.21 kernels in Slackware 9.0 to fix a bounds-checking problem in the kernel's mremap call which could be used by a local attacker to ga...

CVE-2003-0467

The CVE-2003-0467 issue affects Netfilter NAT SACK handling (ip_nat_sack_adjust) in Linux kernels 2.4.20 and some 2.5.x when NAT FTP/IRC is enabled or ip_nat_ftp/irc modules are loaded. The root cause is an integer signedness handling in the Sack adjustment logic, which could allow a remote attac...

CVE-2003-0467

Unknown vulnerability in ipnatsackadjust of Netfilter in Linux kernels 2.4.20, and some 2.5.x, when CONFIGIPNFNATFTP or CONFIGIPNFNATIRC is enabled, or the ipnatftp or ipnatirc modules are loaded, allows remote attackers to cause a denial of service crash in systems using NAT, possibly due to an...

[SECURITY] Netfilter Security Advisory: NAT Remote DOS (SACK mangle)

Netfilter Core Team Security Advisory CVE: CAN-2003-0467 Subject: Netfilter / NAT Remote DoS Released: 01 Aug 2003 Effects: Under limited circumstances, a remote user may be able to crash a machine doing Network Address Translation NAT. Estimated Severity: Medium. Systems Affected: Linux 2.4.20...

Important: Red Hat Security Advisory: kernel security update

Updated kernel packages for Red Hat Enterprise Linux are now available which address several security vulnerabilities. The Linux kernel handles the basic functions of the operating system. Several security issues have been found that affect the Linux kernel: Al Viro found a security issue in the...

2.4.21 kernels available

Precompiled Linux 2.4.21 kernels and source packages are now available for Slackware 9.0 and -current. These provide an improved version of the ptrace fix that had been applied to 2.4.20 in Slackware 9.0 for example, command line options now appear correctly when root does 'ps ax', and fix a...

CVE-2002-0429

The iBCS routines in arch/i386/kernel/traps.c for Linux kernels 2.4.18 and earlier on x86 systems allow local users to kill arbitrary processes via a a binary compatibility interface lcall...

Apple Mac OSX 10.x FreeBSD 4.x OpenBSD 2.x Solaris 2.52.67.08 - exec C Library Standard IO File Descriptor Closure

Apple Mac OSX 10.x FreeBSD 4.x OpenBSD 2.x Solaris 2.52.67.08 - exec C Library Standard IO File Descriptor Closure / source: https://www.securityfocus.com/bid/4568/info It has been reported that BSD-based kernels do not check to ensure that the C library standard I/O file descriptors 0-2 are vali...

Apple Mac OSX 10.x / FreeBSD 4.x / OpenBSD 2.x / Solaris 2.5/2.6/7.0/8 - 'exec C Library' Standard I/O File Descriptor Closure

/ source: https://www.securityfocus.com/bid/4568/info It has been reported that BSD-based kernels do not check to ensure that the C library standard I/O file descriptors 0-2 are valid open files before execing setuid images. Consequently, I/O that are opened by a setuid process may be assigned fi...

Important: Red Hat Security Advisory: kernel 2.2 and 2.4

Syncookies are used to protect a system against certain Denial Of Service DOS attacks. A flaw in this mechanism has been found which can be used to circumvent certain types of firewall configurations. Note: syncookies are not enabled in the default installation of Red Hat Linux but many server...

CVE-1999-1442

Bug in AMD K6 processor on Linux 2.0.x and 2.1.x kernels allows local users to cause a denial of service crash via a particular sequence of instructions, possibly related to accessing addresses outside of segments...

CVE-1999-0804

Denial of service in Linux 2.2.x kernels via malformed ICMP packets containing unusual types, codes, and IP header lengths...

CVE-1999-1442

Bug in AMD K6 processor on Linux 2.0.x and 2.1.x kernels allows local users to cause a denial of service crash via a particular sequence of instructions, possibly related to accessing addresses outside of segments...

CVE-2023-4610

Removed by vendor...

PT-2002-3156

Name of the Vulnerable Software and Affected Versions Red Hat Linux kernel versions 2.2.24 through 2.4.18 Red Hat Linux kernel-enterprise versions 2.2.24 Red Hat Linux kernel-smp versions 2.2.24 through 2.4.18 Red Hat Linux kernel-iseries version 2.4.18 Red Hat Linux pcmcia-modules version...

PT-2004-3740 · Debian +1 · Debian +1

Name of the Vulnerable Software and Affected Versions: Debian GNU/Linux kernel-image-2.4.18-powerpc-xfs version Debian GNU/Linux kernel-image-2.4.18-sun4u version Debian GNU/Linux kernel-image-2.4.18-sun4u-smp version Debian GNU/Linux kernel-image-2.4.19-sparc version Debian GNU/Linux...

PT-2014-9107 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: openSUSE kernel versions prior to 3.13.6 Description: The issue is related to multiple vulnerabilities in the openSUSE operating system, specifically in various kernel packages. These vulnerabilities can lead to a violation of confidentiality...