kernel: Integer overflow when using kzalloc in vfio driver

The use of a kzalloc with an integer multiplication allowed an integer overflow condition to be reached in vfiopciintrs.c. This combined with CVE-2016-9083 may allow an attacker to craft an attack and use unallocated memory, potentially crashing the machine...

openSUSE Security Update : the Linux Kernel (openSUSE-2016-1426)

The openSUSE Leap 42.2 kernel was updated to 4.4.36 to receive various security and bugfixes. The following security bugs were fixed : - CVE-2015-1350: The VFS subsystem in the Linux kernel 3.x provides an incomplete set of requirements for setattr operations that underspecifies removing extended...

CVE-2016-9084

drivers/vfio/pci/vfiopciintrs.c in the Linux kernel through 4.8.11 misuses the kzalloc function, which allows local users to cause a denial of service integer overflow or have unspecified other impact by leveraging access to a vfio PCI device file...

DEBIAN-CVE-2016-9084

drivers/vfio/pci/vfiopciintrs.c in the Linux kernel through 4.8.11 misuses the kzalloc function, which allows local users to cause a denial of service integer overflow or have unspecified other impact by leveraging access to a vfio PCI device file...

CVE-2016-9084

drivers/vfio/pci/vfiopciintrs.c in the Linux kernel through 4.8.11 misuses the kzalloc function, which allows local users to cause a denial of service integer overflow or have unspecified other impact by leveraging access to a vfio PCI device file...

UBUNTU-CVE-2016-9084

drivers/vfio/pci/vfiopciintrs.c in the Linux kernel through 4.8.11 misuses the kzalloc function, which allows local users to cause a denial of service integer overflow or have unspecified other impact by leveraging access to a vfio PCI device file...

Unbreakable Enterprise kernel security update

2.6.39-400.250.10 - md: use kzalloc when bitmap is disabled Benjamin Randazzo Orabug: 21563042 CVE-2015-5697 - netfilter: nfconntrack: reserve two bytes for nfctext-len Andrey Vagin Orabug: 21562780 CVE-2014-9715...

Unbreakable Enterprise kernel security update

kernel-uek 3.8.13-98.1.1 - md: use kzalloc when bitmap is disabled Benjamin Randazzo Orabug: 21563041 CVE-2015-5697...

Linux Kernel CIFSTCon()函数远程溢出漏洞

BUGTRAQ ID: 34453 Linux Kernel是开放源码操作系统Linux所使用的内核。 Linux Kernel的fs/cifs/connect.c文件中的CIFSTCon函数存在缓冲区溢出漏洞。如果用户受骗连接到了恶意的服务器且服务器向客户端返回了特制的Tree Connect响应的话，就可以出发这个溢出，导致执行任意代码。以下是有漏洞的代码段： 3441 int 3442 CIFSTConunsigned int xid, struct cifsSesInfo ses, 3443 const char tree, struct cifsTconInfo tcon,...