5121 matches found
Google Android - Unprotected MSRs in EL1 RKP Privilege Escalation Exploit
Exploit for Android platform in category dos / poc Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=980 As part of Samsung KNOX, Samsung phones include a security hypervisor called RKP Real-time Kernel Protection, running in EL2. This hypervisor is meant to ensure that the HLOS...
[SECURITY] Fedora 24 Update: mapserver-6.2.4-1.fc24
Mapserver is an internet mapping program that converts GIS data to map images in real time. With appropriate interface pages, Mapserver can provide an interactive internet map based on custom GIS data...
[SECURITY] Fedora 25 Update: mapserver-7.0.4-1.gitb4bc015.fc25
Mapserver is an internet mapping program that converts GIS data to map images in real time. With appropriate interface pages, Mapserver can provide an interactive internet map based on custom GIS data...
Network drives aren't mapped correctly from DFS namespace in Windows Server 2012 R2-based RDS server
Network drives aren't mapped correctly from DFS namespace in Windows Server 2012 R2-based RDS server This article describes an issue that occurs on a Windows Server 2012 R2-based computer that has the Remote Desktop Services RDS role installed. You can fix this issue by using the update in this...
DEBIAN-CVE-2015-8817
QEMU aka Quick Emulator built to use 'addressspacetranslate' to map an address to a MemoryRegionSection is vulnerable to an OOB r/w access issue. It could occur while doing pcidmaread/write calls. Affects QEMU versions = 1.6.0 and = 2.3.1. A privileged user inside guest could use this flaw to cra...
[SECURITY] Fedora 24 Update: mapserver-6.2.3-1.fc24
Mapserver is an internet mapping program that converts GIS data to map images in real time. With appropriate interface pages, Mapserver can provide an interactive internet map based on custom GIS data...
mod_jk: Buffer overflow when concatenating virtual host name and URI
It was found that the length checks prior to writing to the target buffer for creating a virtual host mapping rule did not take account of the length of the virtual host name, creating the potential for a buffer overflow...
CVE-2016-5195
Race condition in mm/gup.c in the Linux kernel 2.x through 4.x before 4.8.3 allows local users to gain privileges by leveraging incorrect handling of a copy-on-write COW feature to write to a read-only memory mapping, as exploited in the wild in October 2016, aka "Dirty COW."...
CVE-2016-7383
For the NVIDIA Quadro, NVS, and GeForce products, NVIDIA Windows GPU Display Driver R340 before 342.00 and R375 before 375.63 contains a vulnerability in a memory mapping API in the kernel mode layer nvlddmkm.sys handler, leading to denial of service or potential escalation of privileges...
CVE-2016-7383
For the NVIDIA Quadro, NVS, and GeForce products, NVIDIA Windows GPU Display Driver R340 before 342.00 and R375 before 375.63 contains a vulnerability in a memory mapping API in the kernel mode layer nvlddmkm.sys handler, leading to denial of service or potential escalation of privileges...
Design/Logic Flaw
For the NVIDIA Quadro, NVS, and GeForce products, NVIDIA Windows GPU Display Driver R340 before 342.00 and R375 before 375.63 contains a vulnerability in a memory mapping API in the kernel mode layer nvlddmkm.sys handler, leading to denial of service or potential escalation of privileges...
NVIDIA Linux GPU Display Driver 304.x < 304.132 / 340.x < 340.98 / 361.93.x < 361.93.03 / 367.x < 367.55 / 370.x < 370.28 Multiple Vulnerabilities
The version of the NVIDIA GPU display driver installed on the remote Linux host is 304.x prior to 304.132, 340.x prior to 340.98, 361.93.x prior to 361.93.03, 367.x prior to 367.55, or 370.x prior to 370.28. It is, therefore, affected by multiple vulnerabilities : - A flaw exists in the kernel-mo...
CVE-2016-5195
Race condition in mm/gup.c in the Linux kernel 2.x through 4.x before 4.8.3 allows local users to gain privileges by leveraging incorrect handling of a copy-on-write COW feature to write to a read-only memory mapping, as exploited in the wild in October 2016, aka "Dirty COW."...
The Linux kernel through kill to mention the right vulnerability alerts-a vulnerability alert-the black bar safety net
The Linux kernel in the processing memory write copies Copy-on-Write when the existence conditions of competitive vulnerability, the result can be destruction of private read-only memory mapping. A low-privileged local user can exploit this vulnerability to obtain additional read-only memory-mapp...
kernel: mm: privilege escalation via MAP_PRIVATE COW breakage
A race condition was found in the way the Linux kernel's memory subsystem handled the copy-on-write COW breakage of private read-only memory mappings. An unprivileged, local user could use this flaw to gain write access to otherwise read-only memory mappings and thus increase their privileges on...
MGASA-2016-0347 Updated kernel packages fixes security vulnerabilities
This update is based on the upstream 4.4.26 kernel and fixes at least theese security issues: A race condition was found in the way the Linux kernel's memory subsystem handled the copy-on-write COW breakage of private read-only memory mappings. An unprivileged local user could use this flaw to ga...
UBUNTU-CVE-2016-5195
Race condition in mm/gup.c in the Linux kernel 2.x through 4.x before 4.8.3 allows local users to gain privileges by leveraging incorrect handling of a copy-on-write COW feature to write to a read-only memory mapping, as exploited in the wild in October 2016, aka "Dirty COW."...
UPnP Internet Gateway Device (IGD) Port Mapping Listing
According to its UPnP data, the remote device is a NAT router that supports the Internet Gateway Device IGD Standardized Device Control Protocol. Nessus was able to list 'port mappings' that redirect ports from the device's external interface to the scanner address. An unauthenticated, remote...
GraphicsMagick Heap Overflow Vulnerability
GraphicsMagick is the Swiss Army Knife of image processing. The short and compact code provides a robust and efficient collection of tools and libraries. GraphicsMagick WPG format reader fails to check if a color mapping table entry is greater than 256, leading to a potential heap overflow...
DEBIAN-CVE-2015-8950
arch/arm64/mm/dma-mapping.c in the Linux kernel before 4.0.3, as used in the ION subsystem in Android and other products, does not initialize certain data structures, which allows local users to obtain sensitive information from kernel memory by triggering a dmammap call...