USN-1218-1: Linux kernel vulnerabilities

Dan Rosenberg discovered that multiple terminal ioctls did not correctly initialize structure memory. A local attacker could exploit this to read portions of kernel stack memory, leading to a loss of privacy. CVE-2010-4076, CVE-2010-4077 Alex Shi and Eric Dumazet discovered that the network stack...

Ubuntu 10.04 LTS : linux-ec2 vulnerabilities (USN-1216-1)

Dan Rosenberg discovered that multiple terminal ioctls did not correctly initialize structure memory. A local attacker could exploit this to read portions of kernel stack memory, leading to a loss of privacy. CVE-2010-4076, CVE-2010-4077 Alex Shi and Eric Dumazet discovered that the network stack...

[USN-1211-1] Linux kernel vulnerabilities

========================================================================== Ubuntu Security Notice USN-1211-1 September 21, 2011 linux vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

Ubuntu 11.04 : linux vulnerabilities (USN-1211-1)

It was discovered that the /proc filesystem did not correctly handle permission changes when programs executed. A local attacker could hold open files to examine details about programs running with higher privileges, potentially increasing the chances of exploiting additional vulnerabilities...

USN-1211-1: Linux kernel vulnerabilities

It was discovered that the /proc filesystem did not correctly handle permission changes when programs executed. A local attacker could hold open files to examine details about programs running with higher privileges, potentially increasing the chances of exploiting additional vulnerabilities...

Ubuntu Update for linux USN-1201-1

Ubuntu Update for Linux kernel vulnerabilities USN-1201-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN12011.nasl 7964 2017-12-01 07:32:11Z santu $ Ubuntu Update for linux USN-1201-1 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This...

Ubuntu: Security Advisory (USN-1205-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu Update for linux-mvl-dove USN-1208-1

Ubuntu Update for Linux kernel vulnerabilities USN-1208-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN12081.nasl 7964 2017-12-01 07:32:11Z santu $ Ubuntu Update for linux-mvl-dove USN-1208-1 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.n...

Ubuntu Update for linux-mvl-dove USN-1203-1

Ubuntu Update for Linux kernel vulnerabilities USN-1203-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN12031.nasl 7964 2017-12-01 07:32:11Z santu $ Ubuntu Update for linux-mvl-dove USN-1203-1 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.n...

USN-1204-1 : linux-fsl-imx51 vulnerabilities

Dan Rosenberg discovered that the Linux kernel TIPC implementation contained multiple integer signedness errors. A local attacker could exploit this to gain root privileges. CVE-2010-3859 Dan Rosenberg discovered that multiple terminal ioctls did not correctly initialize structure memory. A local...

USN-1203-1: Linux kernel (Marvel DOVE) vulnerabilities

Dan Rosenberg discovered that multiple terminal ioctls did not correctly initialize structure memory. A local attacker could exploit this to read portions of kernel stack memory, leading to a loss of privacy. CVE-2010-4076, CVE-2010-4077 Alex Shi and Eric Dumazet discovered that the network stack...

USN-1204-1: Linux kernel (i.MX51) vulnerabilities

Dan Rosenberg discovered that the Linux kernel TIPC implementation contained multiple integer signedness errors. A local attacker could exploit this to gain root privileges. CVE-2010-3859 Dan Rosenberg discovered that multiple terminal ioctls did not correctly initialize structure memory. A local...

Ubuntu Update for linux USN-1189-1

Ubuntu Update for Linux kernel vulnerabilities USN-1189-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN11891.nasl 7964 2017-12-01 07:32:11Z santu $ Ubuntu Update for linux USN-1189-1 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This...

Ubuntu 8.04 LTS : linux vulnerabilities (USN-1189-1)

It was discovered that the /proc filesystem did not correctly handle permission changes when programs executed. A local attacker could hold open files to examine details about programs running with higher privileges, potentially increasing the chances of exploiting additional vulnerabilities...

PT-2011-3432 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Microsoft Windows versions prior to the fixed version Description: A denial of service issue exists in the Windows TCP/IP stack, caused by improper handling of specially crafted ICMP messages. This can allow remote attackers to cause a denial...

Ubuntu 11.04 : linux vulnerabilities (USN-1167-1)

Aristide Fattori and Roberto Paleari reported a flaw in the Linux kernel's handling of IPv4 icmp packets. A remote user could exploit this to cause a denial of service. CVE-2011-1927 Goldwyn Rodrigues discovered that the OCFS2 filesystem did not correctly clear memory when writing certain file...

openSUSE Security Update : kernel (openSUSE-SU-2011:0346-1)

This update of the openSUSE 11.2 kernel fixes lots of security issues. Following security issues were fixed: CVE-2011-1493: In the rose networking stack, when parsing the FACNATIONALDIGIS facilities field, it was possible for a remote host to provide more digipeaters than expected, resulting in...

PT-2010-3516 · Microsoft · Windows +3

Name of the Vulnerable Software and Affected Versions: Microsoft Windows versions prior to the fixed version Description: The issue is related to an integer overflow in the TCP/IP stack, allowing local users to gain privileges. It is also described as an elevation of privilege vulnerability in...

PT-2009-4384 · Microsoft · Windows Vista +2

Name of the Vulnerable Software and Affected Versions: Microsoft Windows Vista versions Gold, SP1, and SP2 Microsoft Windows Server 2008 versions Gold and SP2 Description: A remote code execution issue exists due to improper management of state information in the TCP/IP implementation. This allow...

FreeBSD IPv6 SIOCSIFINFO_IN6权限检查绕过安全限制漏洞

BUGTRAQ ID: 35285 FreeBSD就是一种运行在Intel平台上、可以自由使用的开放源码Unix类系统。 IPv6是用于替换当前IPv4的新一代Internet协议，可通过ioctl2接口配置FreeBSD IPv6网络栈的很多属性。由于SIOCSIFINFOIN6 ioctl缺少必要的权限检查，本地用户（包括非root用户和牢笼中用户）可以设置一些IPv6接口属性，包括更改链路MTU和完全禁用接口。请注意这个漏洞只影响IPv6，无法利用这个漏洞影响IPv4功能。 FreeBSD FreeBSD 7.2 FreeBSD FreeBSD 7.1 FreeBSD FreeBS...