Ubuntu 10.04 LTS : linux vulnerabilities (USN-2015-1)

Dan Carpenter discovered an information leak in the HP Smart Aray and Compaq SMART2 disk-array driver in the Linux kernel. A local user could exploit this flaw to obtain sensitive information from kernel memory. CVE-2013-2147 Kees Cook discovered flaw in the Human Interface Device HID subsystem...

USN-2019-1: Linux kernel (Quantal HWE) vulnerabilities

An information leak was discovered in the handling of ICMPv6 Router Advertisement RA messages in the Linux kernel's IPv6 network stack. A remote attacker could exploit this flaw to cause a denial of service excessive retries and address-generation outage, and consequently obtain sensitive...

Null pointer dereference

arch/arm/kvm/arm.c in the Linux kernel before 3.10 on the ARM platform, when KVM is used, allows host OS users to cause a denial of service NULL pointer dereference, OOPS, and host OS crash or possibly have unspecified other impact by omitting vCPU initialization before a KVMGETREGLIST ioctl call...

CVE-2013-5634

arch/arm/kvm/arm.c in the Linux kernel before 3.10 on the ARM platform, when KVM is used, allows host OS users to cause a denial of service NULL pointer dereference, OOPS, and host OS crash or possibly have unspecified other impact by omitting vCPU initialization before a KVMGETREGLIST ioctl call...

CVE-2013-2899

drivers/hid/hid-picolcdcore.c in the Human Interface Device HID subsystem in the Linux kernel through 3.11, when CONFIGHIDPICOLCD is enabled, allows physically proximate attackers to cause a denial of service NULL pointer dereference and OOPS via a crafted device...

DEBIAN-CVE-2013-2896

drivers/hid/hid-ntrig.c in the Human Interface Device HID subsystem in the Linux kernel through 3.11, when CONFIGHIDNTRIG is enabled, allows physically proximate attackers to cause a denial of service NULL pointer dereference and OOPS via a crafted device...

Null pointer dereference

drivers/hid/hid-ntrig.c in the Human Interface Device HID subsystem in the Linux kernel through 3.11, when CONFIGHIDNTRIG is enabled, allows physically proximate attackers to cause a denial of service NULL pointer dereference and OOPS via a crafted device...

CVE-2013-2899

drivers/hid/hid-picolcdcore.c in the Human Interface Device HID subsystem in the Linux kernel through 3.11, when CONFIGHIDPICOLCD is enabled, allows physically proximate attackers to cause a denial of service NULL pointer dereference and OOPS via a crafted device...

CVE-2013-2895

drivers/hid/hid-logitech-dj.c in the Human Interface Device HID subsystem in the Linux kernel through 3.11, when CONFIGHIDLOGITECHDJ is enabled, allows physically proximate attackers to cause a denial of service NULL pointer dereference and OOPS or obtain sensitive information from kernel memory...

CVE-2013-2897

CVE-2013-2897 affects the Linux kernel HID multitouch driver (drivers/hid/hid-multitouch.c) with CONFIG_HID_MULTITOUCH enabled, up to kernel 3.11. The vulnerability allows physically proximate attackers to trigger a denial of service via crafted HID devices, causing heap memory corruption or a NU...

CVE-2013-2897

Multiple array index errors in drivers/hid/hid-multitouch.c in the Human Interface Device HID subsystem in the Linux kernel through 3.11, when CONFIGHIDMULTITOUCH is enabled, allow physically proximate attackers to cause a denial of service heap memory corruption, or NULL pointer dereference and...

CVE-2013-4127

Use-after-free vulnerability in the vhostnetsetbackend function in drivers/vhost/net.c in the Linux kernel through 3.10.3 allows local users to cause a denial of service OOPS and system crash via vectors involving powering on a virtual machine...

Design/Logic Flaw

Use-after-free vulnerability in the vhostnetsetbackend function in drivers/vhost/net.c in the Linux kernel through 3.10.3 allows local users to cause a denial of service OOPS and system crash via vectors involving powering on a virtual machine...

CVE-2013-4127

Use-after-free vulnerability in the vhostnetsetbackend function in drivers/vhost/net.c in the Linux kernel through 3.10.3 allows local users to cause a denial of service OOPS and system crash via vectors involving powering on a virtual machine...

CVE-2013-4127

CVE-2013-4127 is a use-after-free in the Linux kernel's vhost_net_set_backend (drivers/vhost/net.c) up to and including version 3.10.3, enabling local attackers to trigger a denial of service (OOPS and system crash) by powering on a virtual machine. The connected Nessus advisories (Unity Linux se...

PT-2013-4860 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 3.10.3 Description: A use-after-free issue in the vhost net set backend function allows local users to cause a denial of service, resulting in an OOPS and system crash, via vectors involving powering on a virtua...

Oracle Linux 5 : Important: / kernel (ELSA-2007-0376)

The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2007-0376 advisory. 2.6.18-8.1.6.0.1.el5 -Fix bonding primary=ethX so it picks correct network Bert Barbe IT 101532 ORA 5136660 -Add entropy module option to e1000 John...

CVE-2011-3619

CVE-2011-3619 affects the Linux kernel (before 3.0) via AppArmor’s apparmor_setprocattr in security/apparmor/lsm.c. Unvalidated parameters can trigger a NULL pointer dereference/OOPS by writing to /proc/#####/attr/current, enabling local denial-of-service; kernel patch exists in 3.0+ (see ChangeL...

CVE-2013-2850

Heap-based buffer overflow in the iscsiaddnotunderstoodresponse function in drivers/target/iscsi/iscsitargetparameters.c in the iSCSI target subsystem in the Linux kernel through 3.9.4 allows remote attackers to cause a denial of service memory corruption and OOPS or possibly execute arbitrary co...

CVE-2013-3302

Race condition in the smbsendrqst function in fs/cifs/transport.c in the Linux kernel before 3.7.2 allows local users to cause a denial of service NULL pointer dereference and OOPS or possibly have unspecified other impact via vectors involving a reconnection event...