19 matches found
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000957)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000957 advisory. crypto/mcryptd.c in the Linux kernel before 4.8.15 allows local users to cause a denial of service NULL pointer dereference and system crash by using an AFALG socket...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002210)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002210 advisory. crypto/mcryptd.c in the Linux kernel before 4.8.15 allows local users to cause a denial of service NULL pointer dereference and system crash by using an AFALG socket...
Denial Of Service
Linux kernel is vulnerable to denial of service attacks. A user could exploit this flaw using an AFALG socket with an incompatible algorithm, as demonstrated by mcryptdmd5 causing denial of service conditions. Affected is the file crypto/mcryptd.c...
kernel: Kernel crash by spawning mcrypt(alg) with incompatible algorithm
Algorithms not compatible with mcryptd could be spawned by mcryptd with a direct cryptoalloctfm invocation using a "mcryptdalg" name construct. This causes mcryptd to crash the kernel if an arbitrary "alg" is incompatible and not intended to be used with mcryptd...
kernel: Kernel crash by spawning mcrypt(alg) with incompatible algorithm
Algorithms not compatible with mcryptd could be spawned by mcryptd with a direct cryptoalloctfm invocation using a "mcryptdalg" name construct. This causes mcryptd to crash the kernel if an arbitrary "alg" is incompatible and not intended to be used with mcryptd...
USN-3189-2: Linux kernel (Xenial HWE) vulnerabilities | Cloud Foundry
Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 14.04 LTS Description USN-3189-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.04LTS. This update provides the corresponding updates for the Linux Hardware Enablement HWE kernel from Ubuntu 16.04 LTS for Ubuntu...
Ubuntu 14.04 LTS : Linux kernel (Xenial HWE) vulnerabilities (USN-3189-2)
The remote Ubuntu 14.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-3189-2 advisory. USN-3189-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.04 LTS. This update provides the corresponding updates for the Linux Hardware Enableme...
Ubuntu 16.10 : linux vulnerabilities (USN-3190-1)
Mikulas Patocka discovered that the asynchronous multibuffer cryptographic daemon mcryptd in the Linux kernel did not properly handle being invoked with incompatible algorithms. A local attacker could use this to cause a denial of service system crash. CVE-2016-10147 It was discovered that a...
Ubuntu 16.04 LTS : Linux kernel vulnerabilities (USN-3189-1)
The remote Ubuntu 16.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-3189-1 advisory. Mikulas Patocka discovered that the asynchronous multibuffer cryptographic daemon mcryptd in the Linux kernel did not properly handle being invoked with...
USN-3189-2 linux-lts-xenial vulnerabilities
USN-3189-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.04 LTS. This update provides the corresponding updates for the Linux Hardware Enablement HWE kernel from Ubuntu 16.04 LTS for Ubuntu 14.04 LTS. Mikulas Patocka discovered that the asynchronous multibuffer cryptographic daemon...
USN-3189-2: Linux kernel (Xenial HWE) vulnerabilities
USN-3189-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.04 LTS. This update provides the corresponding updates for the Linux Hardware Enablement HWE kernel from Ubuntu 16.04 LTS for Ubuntu 14.04 LTS. Mikulas Patocka discovered that the asynchronous multibuffer cryptographic daemon...
USN-3189-1: Linux kernel vulnerabilities
Mikulas Patocka discovered that the asynchronous multibuffer cryptographic daemon mcryptd in the Linux kernel did not properly handle being invoked with incompatible algorithms. A local attacker could use this to cause a denial of service system crash. CVE-2016-10147 Qidan He discovered that the...
USN-3189-1 linux, linux-raspi2, linux-snapdragon vulnerabilities
Mikulas Patocka discovered that the asynchronous multibuffer cryptographic daemon mcryptd in the Linux kernel did not properly handle being invoked with incompatible algorithms. A local attacker could use this to cause a denial of service system crash. CVE-2016-10147 Qidan He discovered that the...
Linux Kernel 'crypto/mcryptd.c' Denial of Service Vulnerability
The Linux kernel is the kernel used by the operating system Linux, released by the Linux Foundation in the United States. A security vulnerability exists in the crypto/mcryptd.c file in versions of Linux kernel prior to 4.8.15. A local attacker can exploit this vulnerability to cause a denial of...
CVE-2016-10147
crypto/mcryptd.c in the Linux kernel before 4.8.15 allows local users to cause a denial of service NULL pointer dereference and system crash by using an AFALG socket with an incompatible algorithm, as demonstrated by mcryptdmd5...
CVE-2016-10147
crypto/mcryptd.c in the Linux kernel before 4.8.15 allows local users to cause a denial of service NULL pointer dereference and system crash by using an AFALG socket with an incompatible algorithm, as demonstrated by mcryptdmd5...
CVE-2016-10147
Algorithms not compatible with mcryptd could be spawned by mcryptd with a direct cryptoalloctfm invocation using a "mcryptdalg" name construct. This causes mcryptd to crash the kernel if an arbitrary "alg" is incompatible and not intended to be used with mcryptd...
CVE-2016-10147
crypto/mcryptd.c in the Linux kernel before 4.8.15 allows local users to cause a denial of service NULL pointer dereference and system crash by using an AFALG socket with an incompatible algorithm, as demonstrated by mcryptdmd5...
Medium: kernel
Issue Overview: A flaw was found in the Linux kernel key management subsystem in which a local attacker could crash the kernel or corrupt the stack and additional memory denial of service by supplying a specially crafted RSA key. This flaw panics the machine during the verification of the RSA key...