EUVD-2010-4315

Malware in sbrugna...

EUVD-2009-1890

Malware in sbrugna...

Ubuntu: Security Advisory (USN-819-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Access Control Bypass

kernel is vulnerable to access control bypass. A missing security check in the Linux kernel's implementation of the installspecialmapping function could allow a local, unprivileged user to bypass the mmapminaddr protection mechanism...

Denial Of Service (DoS)

The kernel is vulnerable to denial of service DoS.The ADDRCOMPATLAYOUT and MMAPPAGEZERO flags were not cleared when a setuid or setgid program was executed. A local, unprivileged user could use this flaw to bypass the mmapminaddr protection mechanism and perform a NULL pointer dereference attack,...

Design/Logic Flaw

The LISTPOISON feature in include/linux/poison.h in the Linux kernel before 4.3, as used in Android 6.0.1 before 2016-03-01, does not properly consider the relationship to the mmapminaddr value, which makes it easier for attackers to bypass a poison-pointer protection mechanism by triggering the...

CVE-2016-0821

The LISTPOISON feature in include/linux/poison.h in the Linux kernel before 4.3, as used in Android 6.0.1 before 2016-03-01, does not properly consider the relationship to the mmapminaddr value, which makes it easier for attackers to bypass a poison-pointer protection mechanism by triggering the...

CVE-2016-0821

The LISTPOISON feature in include/linux/poison.h in the Linux kernel before 4.3, as used in Android 6.0.1 before 2016-03-01, does not properly consider the relationship to the mmapminaddr value, which makes it easier for attackers to bypass a poison-pointer protection mechanism by triggering the...

OracleVM 2.2 : kernel (OVMSA-2009-0033)

The remote OracleVM system is missing necessary patches to address critical security updates : - security require root for mmapminaddr Eric Paris 518142 518143 CVE-2009-2695 - md prevent crash when accessing suspend sysfs attr Danny Feng 518135 518136 CVE-2009-2849 - nfs knfsd: fix NFSv4 OEXCL...

Linux Kernel 2.6.0 Sendpage Local 权限提升漏洞

No description provided by source. / Linux socksendpage NULL pointer dereference Copyright 2009 Ramon de Carvalho Valle This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either...

Linux Kernel 2.4/2.6 - sock_sendpage() Local Root Exploit (PPC Edition)

No description provided by source. / Linux socksendpage NULL pointer dereference Copyright 2009 Ramon de Carvalho Valle [email protected] This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Softwar...

Scientific Linux Security Update : kernel on SL5.x i386/x86_64

CVE-2009-2695 kernel: SELinux and mmapminaddr CVE-2009-3228 kernel: tc: uninitialised kernel memory leak CVE-2009-3286 kernel: OEXCL creates on NFSv4 are broken CVE-2009-2908 kernel ecryptfs NULL pointer dereference CVE-2009-3613 kernel: flood ping cause out-of-iommu error and panic when mtu larg...

Scientific Linux Security Update : kernel on SL3.x i386/x86_64

CVE-2008-5029 kernel: Unix sockets kernel panic CVE-2008-5300 kernel: fix soft lockups/OOM issues with unix socket garbage collector CVE-2009-1337 kernel: exitnotify: kill the wrong capableCAPKILL check CVE-2009-1385 kernel: e1000cleanrxirq denial of service CVE-2009-1895 kernel: personality: fix...

Scientific Linux Security Update : kernel on SL6.x i386/x86_64

This update fixes the following security issues : - A flaw was found in the sctpicmpprotounreachable function in the Linux kernel's Stream Control Transmission Protocol SCTP implementation. A remote attacker could use this flaw to cause a denial of service. CVE-2010-4526, Important - A missing...

Scientific Linux Security Update : kernel on SL5.x i386/x86_64

This update fixes the following security issues : - A missing boundary check was found in the dvbcaioctl function in the Linux kernel's av7110 module. On systems that use old DVB cards that require the av7110 module, a local, unprivileged user could use this flaw to cause a denial of service or...

CentOS Update for kernel CESA-2009:1438 centos4 i386

Check for the Version of kernel OpenVAS Vulnerability Test CentOS Update for kernel CESA-2009:1438 centos4 i386 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it und...

Ubuntu 10.04 LTS : linux-lts-backport-maverick vulnerabilities (USN-1187-1)

It was discovered that KVM did not correctly initialize certain CPU registers. A local attacker could exploit this to crash the system, leading to a denial of service. CVE-2010-3698 Thomas Pollet discovered that the RDS network protocol did not check certain iovec buffers. A local attacker could...

USN-1105-1: Linux kernel vulnerabilities

Dan Rosenberg discovered that multiple terminal ioctls did not correctly initialize structure memory. A local attacker could exploit this to read portions of kernel stack memory, leading to a loss of privacy. CVE-2010-4075 Dan Rosenberg discovered that the socket filters did not correctly...

USN-1081-1: Linux kernel vulnerabilities

It was discovered that KVM did not correctly initialize certain CPU registers. A local attacker could exploit this to crash the system, leading to a denial of service. CVE-2010-3698 Thomas Pollet discovered that the RDS network protocol did not check certain iovec buffers. A local attacker could...

USN-1080-1: Linux kernel vulnerabilities

Thomas Pollet discovered that the RDS network protocol did not check certain iovec buffers. A local attacker could exploit this to crash the system or possibly execute arbitrary code as the root user. CVE-2010-3865 Vasiliy Kulikov discovered that the Linux kernel X.25 implementation did not...