Linux Kernel 'SCTP'模块存在漏洞

BUGTRAQ ID: 31121 CVE ID：CVE-2008-3792 CNCVE ID：CNCVE-20083792 Linux是一款开放源代码的操作系统。 Linux内核'SCTP'模块存在多个安全问题，本地攻击者可以利用漏洞获得敏感信息或使内核崩溃。 问题代码如下： file: net/sctp/socket.c ... SCTPSTATIC int sctpgetsockoptstruct sock sk, int level, int optname, char user optval, int user optlen int retval = 0; int len;...

CVE-2008-3901

Software suspend 2 2-2.2.1, when used with the Linux kernel 2.6.16, stores pre-boot authentication passwords in the BIOS Keyboard buffer and does not clear this buffer after use, which allows local users to obtain sensitive information by reading the physical memory locations associated with this...

CVE-2008-3901

The CVE-2008-3901 entry concerns Software suspend 2 (versions 2-2.2.1) used with Linux kernel 2.6.16, where pre-boot authentication passwords are stored in the BIOS Keyboard buffer and the buffer is not cleared after use. This allows local attackers to read sensitive data from physical memory loc...

CVE-2008-3901

Software suspend 2 2-2.2.1, when used with the Linux kernel 2.6.16, stores pre-boot authentication passwords in the BIOS Keyboard buffer and does not clear this buffer after use, which allows local users to obtain sensitive information by reading the physical memory locations associated with this...

Code injection

The process scheduler in the Linux kernel 2.6.16 gives preference to "interactive" processes that perform voluntary sleeps, which allows local users to cause a denial of service CPU consumption, as described in "Secretly Monopolizing the CPU Without Superuser Privileges."...

Linux Kernel ATM SkBuff Dereference Remote Denial of Service Vulnerability

这个问题是在Kernel处理输入ATM（异步传输模式）数据时被触发。 利用这个漏洞，攻击者可以目标Kernel死机，导致拒绝服务的发生。 本问题只影响那些具有ATM硬件并且配置成支持ATM的Kernel的系统。 Kernel版本从2.6.0到2.6.17（包括2.6.17）都受到该漏洞影响。 PHP 5 受此漏洞影响。 Trustix Secure Linux 3.0 Trustix Secure Linux 2.2 Trustix Operating System Enterprise Server 2.0 RedHat Enterprise Linux WS 4 RedHat...

CVE-2006-1524

The MADV_REMOVE issue (CVE-2006-1524) affects Linux kernel 2.6.16 up to 2.6.16.6, where madvise_remove does not enforce file/mmap restrictions, enabling a local user to bypass IPC permissions and overwrite portions of readonly tmpfs files with zeros. The problem is tied to the mprotect-related fl...

CVE-2006-0557

sysmbind in mempolicy.c in Linux kernel 2.6.16 and earlier does not sanity check the maxnod variable before making certain computations for the getnodes function, which has unknown impact and attack vectors...