CVE-2016-6239

The mmap extension MAPNOFAULT in OpenBSD 5.8 and 5.9 allows attackers to cause a denial of service kernel panic and crash via a large size value...

Integer overflow

Integer overflow in the uvmmapisavail function in uvm/uvmmap.c in OpenBSD 5.9 allows local users to cause a denial of service kernel panic via a crafted mmap call, which triggers the new mapping to overlap with an existing mapping...

CVE-2016-6239

The mmap extension MAPNOFAULT in OpenBSD 5.8 and 5.9 allows attackers to cause a denial of service kernel panic and crash via a large size value...

Code injection

The mmap extension MAPNOFAULT in OpenBSD 5.8 and 5.9 allows attackers to cause a denial of service kernel panic and crash via a large size value...

CVE-2016-6522

Integer overflow in the uvmmapisavail function in uvm/uvmmap.c in OpenBSD 5.9 allows local users to cause a denial of service kernel panic via a crafted mmap call, which triggers the new mapping to overlap with an existing mapping...

CVE-2016-6239

The mmap extension MAPNOFAULT in OpenBSD 5.8 and 5.9 allows attackers to cause a denial of service kernel panic and crash via a large size value...

CVE-2016-6522

CVE-2016-6522 concerns OpenBSD 5.9 kernel code, where an integer overflow in the uvm_map_isavail function (uvm/uvm_map.c) can be triggered by a crafted mmap call. This may cause a denial of service via a kernel panic due to the new mapping overlapping an existing mapping. Elevation or remote impa...

CVE-2016-6239

CVE-2016-6239 affects OpenBSD 5.8 and 5.9. The mmap extension __MAP_NOFAULT can be triggered by a large size value to cause a denial of service via kernel panic/crash. Impact is availability disruption as stated. No explicit exploitation details or remediation are provided in the connected docume...

CVE-2017-5669

The doshmat function in ipc/shm.c in the Linux kernel, through 4.9.12, does not restrict the address calculated by a certain rounding operation. This allows privileged local users to map page zero and, consequently, bypass a protection mechanism that exists for the mmap system call. This is...

CVE-2017-5669

The doshmat function in ipc/shm.c in the Linux kernel through 4.9.12 does not restrict the address calculated by a certain rounding operation, which allows local users to map page zero, and consequently bypass a protection mechanism that exists for the mmap system call, by making crafted shmget a...

DEBIAN-CVE-2017-5669

The doshmat function in ipc/shm.c in the Linux kernel through 4.9.12 does not restrict the address calculated by a certain rounding operation, which allows local users to map page zero, and consequently bypass a protection mechanism that exists for the mmap system call, by making crafted shmget a...

CVE-2017-5669

The doshmat function in ipc/shm.c in the Linux kernel through 4.9.12 does not restrict the address calculated by a certain rounding operation, which allows local users to map page zero, and consequently bypass a protection mechanism that exists for the mmap system call, by making crafted shmget a...

CVE-2017-5669

The doshmat function in ipc/shm.c in the Linux kernel through 4.9.12 does not restrict the address calculated by a certain rounding operation, which allows local users to map page zero, and consequently bypass a protection mechanism that exists for the mmap system call, by making crafted shmget a...

CVE-2017-5669

The doshmat function in ipc/shm.c in the Linux kernel through 4.9.12 does not restrict the address calculated by a certain rounding operation, which allows local users to map page zero, and consequently bypass a protection mechanism that exists for the mmap system call, by making crafted shmget a...

UBUNTU-CVE-2017-5669

The doshmat function in ipc/shm.c in the Linux kernel through 4.9.12 does not restrict the address calculated by a certain rounding operation, which allows local users to map page zero, and consequently bypass a protection mechanism that exists for the mmap system call, by making crafted shmget a...

CVE-2016-4794

Use-after-free vulnerability in mm/percpu.c in the Linux kernel through 4.6 allows local users to cause a denial of service BUG or possibly have unspecified other impact via crafted use of the mmap and bpf system calls...

Linux Kernel Dirty COW PTRACE_POKEDATA Privilege Escalation

// $ echo pikachu|sudo tee pokeball;ls -l pokeball;gcc -pthread pokemon.c -o d;./d pokeball miltank;cat pokeball include //// pikachu include //// -rw-r--r-- 1 root root 8 Apr 4 12:34 pokeball include //// pokeball include //// include //// o o/ include //// @@ \ include //// \ , /miltank include...

Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2016-3644)

The remote Oracle Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2016-3644 advisory. - acpi: Disable ACPI table override if securelevel is set Linn Crosetto Orabug: 25058966 CVE-2016-3699 - aacraid: Check size values after...

DEBIAN-CVE-2016-7389

For the NVIDIA Quadro, NVS, GeForce, and Tesla products, NVIDIA GPU Display Driver on Linux R304 before 304.132, R340 before 340.98, R367 before 367.55, R36193 before 361.93.03, and R370 before 370.28 contains a vulnerability in the kernel mode layer nvidia.ko handler for mmap where improper inpu...

CVE-2016-7389

For the NVIDIA Quadro, NVS, GeForce, and Tesla products, NVIDIA GPU Display Driver on Linux R304 before 304.132, R340 before 340.98, R367 before 367.55, R36193 before 361.93.03, and R370 before 370.28 contains a vulnerability in the kernel mode layer nvidia.ko handler for mmap where improper inpu...