209 matches found
Linux lp.c Out-of-Bounds Write via Kernel Command-line
Vulnerable Versions Linux 4.12-rc1 and below Linux 3.x Linux 2.6.x Linux 2.4.x Linux 2.2.x Mitigation Patch has been committed to the mainline tree, available in the 4.12-rc2 release. 3.18 / 4.4 stable releases with the patch are also avaialble see timeline. Technical Details Due to a missing...
Debian DLA-439-1 : linux-2.6 security update
This update fixes the CVEs described below. CVE-2015-8812 A flaw was found in the iwcxgb3 Infiniband driver. Whenever it could not send a packet because the network was congested, it would free the packet buffer but later attempt to send the packet again. This use-after-free could result in a...
[SECURITY] [DLA 439-1] linux-2.6 security update
Package : linux-2.6 Version : 2.6.32-48squeeze20 CVE ID : CVE-2015-8812 CVE-2016-0774 CVE-2016-2384 This update fixes the CVEs described below. CVE-2015-8812 A flaw was found in the iwcxgb3 Infiniband driver. Whenever it could not send a packet because the network was...
DLA-439-1 linux-2.6 - security update
Bulletin has no description...
Debian DLA-412-1 : linux-2.6 security update
This update fixes the CVEs described below. CVE-2015-7566 Ralf Spenneberg of OpenSource Security reported that the visor driver crashes when a specially crafted USB device without bulk-out endpoint is detected. CVE-2015-8767 An SCTP denial of service was discovered which can be triggered by a loc...
[SECURITY] [DLA 412-1] linux-2.6 security update
Package : linux-2.6 Version : 2.6.32-48squeeze19 CVE ID : CVE-2015-7566 CVE-2015-8767 CVE-2015-8785 CVE-2016-0723 CVE-2016-2069 This update fixes the CVEs described below. CVE-2015-7566 Ralf Spenneberg of OpenSource Security reported that the visor...
DLA-412-1 linux-2.6 - security update
Bulletin has no description...
[SECURITY] [DLA 378-1] linux-2.6 security update
Package : linux-2.6 Version : 2.6.32-48squeeze18 CVE ID : CVE-2015-7550 CVE-2015-8543 CVE-2015-8575 Debian Bug : 808293 This update fixes the CVEs described below. CVE-2015-7550 Dmitry Vyukov discovered a race condition in the keyring subsystem that allows a local...
Debian DLA-360-1 : linux-2.6 security update
This update fixes the CVEs described below. CVE-2013-7446 Dmitry Vyukov discovered that a particular sequence of valid operations on local AFUNIX sockets can result in a use-after-free. This may be used to cause a denial of service crash or possibly for privilege escalation. CVE-2015-7799...
[SECURITY] [DLA 360-1] linux-2.6 security update
Package : linux-2.6 Version : 2.6.32-48squeeze17 CVE ID : CVE-2013-7446 CVE-2015-7799 CVE-2015-7833 CVE-2015-7990 CVE-2015-8324 This update fixes the CVEs described below. CVE-2013-7446 Dmitry Vyukov discovered that a particular sequence of valid...
DLA-360-1 linux-2.6 - security update
Bulletin has no description...
Debian DLA-310-1 : linux-2.6 security update
This update fixes the CVEs described below. CVE-2015-0272 It was discovered that NetworkManager would set IPv6 MTUs based on the values received in IPv6 RAs Router Advertisements, without sufficiently validating these values. A remote attacker could exploit this attack to disable IPv6 connectivit...
[SECURITY] Fedora 22 Update: audit-2.4.4-1.fc22
The audit package contains the user space utilities for storing and searching the audit records generate by the audit subsystem in the Linux 2.6 kernel...
[SECURITY] Fedora 21 Update: audit-2.4.4-1.fc21
The audit package contains the user space utilities for storing and searching the audit records generate by the audit subsystem in the Linux 2.6 kernel...
[SECURITY] [DLA 246-2] linux-2.6 regression update
Package : linux-2.6 Version : 2.6.32-48squeeze13 CVE ID : CVE-2011-5321 CVE-2012-6689 CVE-2014-3184 CVE-2014-8159 CVE-2014-9683 CVE-2014-9728 CVE-2014-9729 CVE-2014-9730 CVE-2014-9731 CVE-2015-1805 CVE-2015-2041 CVE-2015-2042 CVE-2015-2830 CVE-2015-2922 CVE-2015-3339 CVE-2015-4167 Debian Bug :...
[SECURITY] [DLA 246-1] linux-2.6 security update
Package : linux-2.6 Version : 2.6.32-48squeeze12 CVE ID : CVE-2011-5321 CVE-2012-6689 CVE-2014-3184 CVE-2014-8159 CVE-2014-9683 CVE-2014-9728 CVE-2014-9729 CVE-2014-9730 CVE-2014-9731 CVE-2015-1805 CVE-2015-2041 CVE-2015-2042 CVE-2015-2830 CVE-2015-2922 CVE-2015-3339 CVE-2015-4167 This update fix...
DLA-246-2 linux-2.6 - security update
Bulletin has no description...
DLA-246-1 linux-2.6 - security update
Bulletin has no description...
Debian DLA-103-1 : linux-2.6 security update
This security upload has been prepared in cooperation of the Debian Kernel, Security and LTS Teams and features the upstream stable release 2.6.32.64 see https://lkml.org/lkml/2014/11/23/181 for more information for that. It fixes the CVEs described below. Note: if you are using the openvz flavor...
Debian DLA-118-1 : linux-2.6 security update
Non-maintainer upload by the Squeeze LTS and Kernel Teams. New upstream stable release 2.6.32.65, see http://lkml.org/lkml/2014/12/13/81 for more information. The stable release 2.6.32.65 includes the following new commits compared to the previous 2.6.32-48squeeze9 package : - USB: whiteheat: Add...