Lucene search
K

7 matches found

Tenable Nessus
Tenable Nessus
added 2017/01/03 12:0 a.m.34 views

GLSA-201701-14 : LZO: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201701-14 LZO: Multiple vulnerabilities LZO is vulnerable to an integer overflow condition in the lzo1xdecompresssafe function which could result in a possible buffer overrun when processing maliciously crafted compressed input...

8.8CVSS7.2AI score0.05315EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2014/11/04 12:0 a.m.37 views

Scientific Linux Security Update : kernel on SL6.x i386/x86_64 (20141014)

A NULL pointer dereference flaw was found in the way the Linux kernel's Stream Control Transmission Protocol SCTP implementation handled simultaneous connections between the same hosts. A remote attacker could use this flaw to crash the system. CVE-2014-5077, Important An integer overflow flaw wa...

7.8CVSS7.2AI score0.05794EPSS
Exploits5References12
Tenable Nessus
Tenable Nessus
added 2014/10/22 12:0 a.m.39 views

Oracle Linux 6 : kernel (ELSA-2014-1392)

The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2014-1392 advisory. - kernel futex: Fix errors in nested key ref-counting Denys Vlasenko 1094458 CVE-2014-0205 Tenable has extracted the preceding description block direct...

7.8CVSS7.3AI score0.05794EPSS
Exploits6References12
RedHat Linux
RedHat Linux
added 2014/10/13 9:28 p.m.3 views

kernel: lzo1x_decompress_safe() integer overflow

An integer overflow flaw was found in the way the lzo1xdecompresssafe function of the Linux kernel's LZO implementation processed Literal Runs. A local attacker could, in extremely rare cases, use this flaw to crash the system or, potentially, escalate their privileges on the system...

7.5CVSS7AI score0.05421EPSS
Exploits0References4
Amazon
Amazon
added 2014/07/09 12:0 a.m.328 views

Medium: kernel

Issue Overview: arch/x86/kernel/entry32.S in the Linux kernel through 3.15.1 on 32-bit x86 platforms, when syscall auditing is enabled and the sep CPU feature flag is set, allows local users to cause a denial of service OOPS and system crash via an invalid syscall number, as demonstrated by numbe...

7.5CVSS6.5AI score0.05421EPSS
Exploits4
CVE
CVE
added 2014/07/03 1:0 a.m.151 views

CVE-2014-4608

CVE-2014-4608 refers to multiple integer overflows in the LZO decompressor (lzo1x_decompress_safe) in the Linux kernel before 3.15.2, which can cause memory corruption and denial of service via a crafted Literal Run. Some advisories note the Linux kernel is not affected (media hype), while securi...

7.5CVSS5.7AI score0.05421EPSS
In wildExploits0References22Affected Software1
OSV
OSV
added 2014/07/03 12:0 a.m.2 views

UBUNTU-CVE-2014-4608

Multiple integer overflows in the lzo1xdecompresssafe function in lib/lzo/lzo1xdecompresssafe.c in the LZO decompressor in the Linux kernel before 3.15.2 allow context-dependent attackers to cause a denial of service memory corruption via a crafted Literal Run. NOTE: the author of the LZO...

7.3CVSS6.9AI score0.05421EPSS
Exploits0References21
Rows per page
Query Builder