7306 matches found
CVE-2004-0491
CVE-2004-0491 concerns a flaw in Red Hat Enterprise Linux 3 where the linux-2.4.21-mlock.patch mismanages the mlock page count when a process unlocks pages owned by another process, allowing local users to mlock more memory than the rlIMIT. The issue is documented across multiple sources (NVD, CV...
CVE-2004-1057
Multiple drivers in Linux kernel 2.4.19 and earlier do not properly mark memory with the VMIO flag, which causes incorrect reference counts and may lead to a denial of service kernel panic when accessing freed kernel pages...
CVE-2004-1092
CVE-2004-1092 affects Midnight Commander (mc) 4.5.55 and earlier. The issue allows remote Denial-of-Service by causing mc to free unallocated memory (root cause: improper memory handling). The connected sources indicate a fix in Midnight Commander 4.6.0. Remediation: upgrade to MC 4.6.0 or newer ...
CVE-2004-1057
Multiple drivers in Linux kernel 2.4.19 and earlier do not properly mark memory with the VMIO flag, which causes incorrect reference counts and may lead to a denial of service kernel panic when accessing freed kernel pages...
up-imapproxy multiple bugs
Signed/unsigned conversion and memory management bugs...
tiff -- multiple integer overflows
Dmitry V. Levin discovered numerous integer overflow bugs in libtiff. Most of these bugs are related to memory management, and are believed to be exploitable for arbitrary code execution...
Debian DSA-145-1 : tinyproxy - doubly freed memory
The authors of tinyproxy, a lightweight HTTP proxy, discovered a bug in the handling of some invalid proxy requests. Under some circumstances, an invalid request may result in allocated memory being freed twice. This can potentially result in the execution of arbitrary code. %NASLMINLEVEL 70300 C...
Debian DSA-439-1 : linux-kernel-2.4.16-arm - several vulnerabilities
Several local root exploits have been discovered recently in the Linux kernel. This security advisory updates the ARM kernel for Debian GNU/Linux. The Common Vulnerabilities and Exposures project identifies the following problems that are fixed with this update : - CAN-2003-0961 : An integer...
Debian DSA-441-1 : linux-kernel-2.4.17-mips+mipsel - missing function return value check
Paul Starzetz and Wojciech Purczynski of isec.pl discovered a critical security vulnerability in the memory management code of Linux inside the mremap2 system call. Due to missing function return value check of internal functions a local attacker can gain root privileges. %NASLMINLEVEL 70300 C...
Debian DSA-470-1 : linux-kernel-2.4.17-hppa - several vulnerabilities
Several local root exploits have been discovered recently in the Linux kernel. This security advisory updates the hppa kernel 2.4.17 for Debian GNU/Linux. The Common Vulnerabilities and Exposures project identifies the following problems that are fixed with this update : - CAN-2003-0961 : An...
Debian DSA-444-1 : linux-kernel-2.4.17-ia64 - missing function return value check
Paul Starzetz and Wojciech Purczynski of isec.pl discovered a critical security vulnerability in the memory management code of Linux inside the mremap2 system call. Due to missing function return value check of internal functions a local attacker can gain root privileges. %NASLMINLEVEL 70300 C...
Debian DSA-454-1 : linux-kernel-2.2.22-alpha - failing function and TLB flush
Paul Starzetz and Wojciech Purczynski of isec.pl discovered a critical security vulnerability in the memory management code of Linux inside the mremap2 system call. Due to flushing the TLB Translation Lookaside Buffer, an address cache too early it is possible for an attacker to trigger a local...
Debian DSA-466-1 : linux-kernel-2.2.10-powerpc-apus - failing function and TLB flush
Paul Starzetz and Wojciech Purczynski of isec.pl discovered a critical security vulnerability in the memory management code of Linux inside the mremap2 system call. Due to flushing the TLB Translation Lookaside Buffer, an address cache too early it is possible for an attacker to trigger a local...
Debian DSA-475-1 : linux-kernel-2.4.18-hppa - several vulnerabilities
Several local root exploits have been discovered recently in the Linux kernel. This security advisory updates the PA-RISC kernel 2.4.18 for Debian GNU/Linux. The Common Vulnerabilities and Exposures project identifies the following problems that are fixed with this update : - CAN-2003-0961 : An...
Debian DSA-456-1 : linux-kernel-2.2.19-arm - failing function and TLB flush
Paul Starzetz and Wojciech Purczynski of isec.pl discovered a critical security vulnerability in the memory management code of Linux inside the mremap2 system call. Due to flushing the TLB Translation Lookaside Buffer, an address cache too early it is possible for an attacker to trigger a local...
Debian DSA-440-1 : linux-kernel-2.4.17-powerpc-apus - several vulnerabilities
Several local root exploits have been discovered recently in the Linux kernel. This security advisory updates the PowerPC/Apus kernel for Debian GNU/Linux. The Common Vulnerabilities and Exposures project identifies the following problems that are fixed with this update : - CAN-2003-0961 : An...
Debian DSA-453-1 : linux-kernel-2.2.20-i386+m68k+powerpc - failing function and TLB flush
Paul Starzetz and Wojciech Purczynski of isec.pl discovered a critical security vulnerability in the memory management code of Linux inside the mremap2 system call. Due to flushing the TLB Translation Lookaside Buffer, an address cache too early it is possible for an attacker to trigger a local...
Debian DSA-514-1 : kernel-image-sparc-2.2 - failing function and TLB flush
Paul Starzetz and Wojciech Purczynski of isec.pl discovered a critical security vulnerability in the memory management code of Linux inside the mremap2 system call. Due to flushing the TLB Translation Lookaside Buffer, an address cache too early it is possible for an attacker to trigger a local...
Debian DSA-450-1 : linux-kernel-2.4.19-mips - several vulnerabilities
Several local root exploits have been discovered recently in the Linux kernel. This security advisory updates the mips kernel 2.4.19 for Debian GNU/Linux. The Common Vulnerabilities and Exposures project identifies the following problems that are fixed with this update : - CAN-2003-0961 : An...
GLSA-200401-01 : Linux kernel do_mremap() local privilege escalation vulnerability
The remote host is affected by the vulnerability described in GLSA-200401-01 Linux kernel domremap local privilege escalation vulnerability The memory subsystem allows for shrinking, growing, and moving of chunks of memory along any of the allocated memory areas which the kernel possesses. A...