Lucene search
K

385 matches found

Tenable Nessus
Tenable Nessus
added 2015/04/08 12:0 a.m.36 views

RHEL 5 : kernel (RHSA-2015:0783)

The remote Redhat Enterprise Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2015:0783 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. It was found that the Linux kernel's Infiniband...

6.9CVSS6.2AI score0.00465EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2015/04/07 3:8 p.m.57 views

Important: Red Hat Security Advisory: kernel security and bug fix update

Updated kernel packages that fix two security issues and two bugs are now available for Red Hat Enterprise Linux 5. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...

6.9CVSS6.2AI score0.00465EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2015/02/03 5:10 p.m.3 views

kernel: net: sctp: remote memory pressure from excessive queueing

A flaw was found in the way the Linux kernel's Stream Control Transmission Protocol SCTP implementation handled the association's output queue. A remote attacker could send specially crafted packets that would cause the system to use an excessive amount of memory, leading to a denial of service...

5CVSS6.7AI score0.0585EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2014/12/22 12:0 a.m.37 views

Ubuntu 14.04 LTS : Linux kernel (Utopic HWE) regression (USN-2447-2)

The remote Ubuntu 14.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-2447-2 advisory. USN-2447-1 fixed vulnerabilities in the Linux kernel. Due to an unrelated regression TCP Throughput drops to zero for several drivers after upgrading. This update...

5.6AI score
Exploits0References1
securityvulns
securityvulns
added 2014/12/21 12:0 a.m.112 views

[USN-2441-1] Linux kernel vulnerabilities

========================================================================== Ubuntu Security Notice USN-2441-1 December 12, 2014 linux vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

7.8CVSS0.7AI score0.08579EPSS
Exploits5
Ubuntu
Ubuntu
added 2014/12/19 12:49 p.m.110 views

USN-2447-2: Linux kernel (Utopic HWE) regression

USN-2447-1 fixed vulnerabilities in the Linux kernel. Due to an unrelated regression TCP Throughput drops to zero for several drivers after upgrading. This update fixes the problem. We apologize for the inconvenience. Original advisory details: An information leak in the Linux kernel was discover...

6.8AI score
Exploits0References1
Ubuntu
Ubuntu
added 2014/12/19 12:43 p.m.80 views

USN-2448-2: Linux kernel regression

USN-2448-1 fixed vulnerabilities in the Linux kernel. Due to an unrelated regression TCP Throughput drops to zero for several drivers after upgrading. This update fixes the problem. We apologize for the inconvenience. Original advisory details: An information leak in the Linux kernel was discover...

6.8AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2014/12/15 12:0 a.m.62 views

Ubuntu 14.04 LTS : Linux kernel vulnerabilities (USN-2446-1)

The remote Ubuntu 14.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-2446-1 advisory. Andy Lutomirski discovered that the Linux kernel does not properly handle faults associated with the Stack Segment SS register in the x86 architecture. A...

7.8CVSS6.9AI score0.08579EPSS
Exploits15References10
Ubuntu
Ubuntu
added 2014/12/12 7:47 a.m.82 views

USN-2447-1: Linux kernel (Utopic HWE) vulnerabilities

Andy Lutomirski discovered that the Linux kernel does not properly handle faults associated with the Stack Segment SS register in the x86 architecture. A local attacker could exploit this flaw to gain administrative privileges. CVE-2014-9322 An information leak in the Linux kernel was discovered...

7.8CVSS6.8AI score0.08579EPSS
Exploits17
Ubuntu
Ubuntu
added 2014/12/12 7:40 a.m.88 views

USN-2445-1: Linux kernel (Trusty HWE) vulnerabilities

Andy Lutomirski discovered that the Linux kernel does not properly handle faults associated with the Stack Segment SS register in the x86 architecture. A local attacker could exploit this flaw to gain administrative privileges. CVE-2014-9322 An information leak in the Linux kernel was discovered...

7.8CVSS6.7AI score0.08579EPSS
Exploits15
Ubuntu
Ubuntu
added 2014/12/12 7:32 a.m.85 views

USN-2442-1: Linux kernel (EC2) vulnerabilities

An information leak in the Linux kernel was discovered that could leak the high 16 bits of the kernel stack address on 32-bit Kernel Virtual Machine KVM paravirt guests. A user in the guest OS could exploit this leak to obtain information that could potentially be used to aid in attacking the...

7.8CVSS6.6AI score0.08579EPSS
Exploits5
Ubuntu
Ubuntu
added 2014/12/12 7:29 a.m.80 views

USN-2441-1: Linux kernel vulnerabilities

An information leak in the Linux kernel was discovered that could leak the high 16 bits of the kernel stack address on 32-bit Kernel Virtual Machine KVM paravirt guests. A user in the guest OS could exploit this leak to obtain information that could potentially be used to aid in attacking the...

7.8CVSS6.6AI score0.08579EPSS
Exploits5
Tenable Nessus
Tenable Nessus
added 2014/11/25 12:0 a.m.53 views

Ubuntu 12.04 LTS : linux vulnerabilities (USN-2417-1)

Nadav Amit reported that the KVM Kernel Virtual Machine mishandles noncanonical addresses when emulating instructions that change the rip Instruction Pointer. A guest user with access to I/O or the MMIO can use this flaw to cause a denial of service system crash of the guest. CVE-2014-3647 A flaw...

7.8CVSS7AI score0.08579EPSS
Exploits4References13
OpenVAS
OpenVAS
added 2014/10/31 12:0 a.m.43 views

Debian Security Advisory DSA 3060-1 (linux - security update)

Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service: CVE-2014-3610 Lars Bull of Google and Nadav Amit reported a flaw in how KVM handles noncanonical writes to certain MSR registers. A privileged guest user can exploit this flaw to cause a denial ...

7.8CVSS0.5AI score0.08579EPSS
Exploits4References1
OSV
OSV
added 2014/10/31 12:0 a.m.59 views

DSA-3060-1 linux - security update

Bulletin has no description...

7.8CVSS6.8AI score0.08579EPSS
Exploits4
Tenable Nessus
Tenable Nessus
added 2014/09/05 12:0 a.m.37 views

Oracle Linux 5 : kernel (ELSA-2014-1143)

The remote Oracle Linux 5 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2014-1143 advisory. - audit auditsc: auditkrule mask accesses need bounds checking Denys Vlasenko 1102702 1102703 CVE-2014-3917 Tenable has extracted the preceding description bloc...

3.3CVSS7.2AI score0.0036EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2014/09/03 5:53 p.m.61 views

Moderate: Red Hat Security Advisory: kernel security and bug fix update

Updated kernel packages that fix one security issue and several bugs are now available for Red Hat Enterprise Linux 5. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, ...

3.3CVSS6.2AI score0.0036EPSS
Exploits0References2
securityvulns
securityvulns
added 2014/03/27 12:0 a.m.61 views

VUPEN Security Research - Mozilla Firefox "BumpChunk" Object Processing Use-after-free (Pwn2Own)

VUPEN Security Research - Mozilla Firefox "BumpChunk" Object Processing Use-after-free Pwn2Own Website : http://www.vupen.com Twitter : http://twitter.com/vupen I. BACKGROUND --------------------- "Mozilla Firefox is a free and open-source web browser developed for Windows, OS X, and Linux, with ...

0.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2014/03/22 12:0 a.m.36 views

Ubuntu 12.04 LTS / 12.10 / 13.10 : thunderbird vulnerabilities (USN-2151-1)

Benoit Jacob, Olli Pettay, Jan Varga, Jan de Mooij, Jesse Ruderman, Dan Gohman and Christoph Diehl discovered multiple memory safety issues in Thunderbird. If a user were tricked in to opening a specially crafted message with scripting enabled, an attacker could potentially exploit these to cause...

10CVSS8.1AI score0.83633EPSS
Exploits17References11
Mozilla
Mozilla
added 2014/03/18 12:0 a.m.50 views

Use-after-free in TypeObject — Mozilla

Security research firm VUPEN, via TippingPoint's Pwn2Own contest, reported that memory pressure during Garbage Collection could lead to memory corruption of TypeObjects in the JS engine, resulting in an exploitable use-after-free condition...

10CVSS9.2AI score0.31373EPSS
Exploits1References2Affected Software4
Rows per page
Query Builder