Race condition

Race condition in the smbsendrqst function in fs/cifs/transport.c in the Linux kernel before 3.7.2 allows local users to cause a denial of service NULL pointer dereference and OOPS or possibly have unspecified other impact via vectors involving a reconnection event...

CVE-2013-3302

Race condition in the smbsendrqst function in fs/cifs/transport.c in the Linux kernel before 3.7.2 allows local users to cause a denial of service NULL pointer dereference and OOPS or possibly have unspecified other impact via vectors involving a reconnection event...

CVE-2013-3302

Race condition in the smbsendrqst function in fs/cifs/transport.c in the Linux kernel before 3.7.2 allows local users to cause a denial of service NULL pointer dereference and OOPS or possibly have unspecified other impact via vectors involving a reconnection event...

CVE-2013-3302

The CVE-2013-3302 entry refers to a race condition in the Linux kernel’s CIFS transport path: smb_send_rqst in fs/cifs/transport.c, exploitable on affected kernels prior to 3.7.2. The vulnerability can allow local users to trigger a NULL pointer dereference and OOPS, with potential unspecified im...

Oracle Linux 6 kernel security and bugfix update

2.6.32-358.el6 - fs Fix sget race with failing mount Eric Sandeen 883276 2.6.32-357.el6 - virt xen: Fix stack corruption in xenfailsafecallback for 32bit PVOPS guests Andrew Jones 896050 CVE-2013-0190 - block sgio: use different default filters for each device class Paolo Bonzini 875361...

kernel security and bug fix update

2.6.32-279.22.1 - virt kvm: invalid opcode oops on SETSREGS with OSXSAVE bit set Petr Matousek 862903 862904 CVE-2012-4461 - fs fuse: optimize fusedirectio Brian Foster 865305 858850 - fs fuse: optimize fusegetuserpages Brian Foster 865305 858850 - fs fuse: use getuserpagesfast Brian Foster 86530...

RHEL 6 : kernel (RHSA-2012:0116)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2012:0116 advisory. - kernel: no access restrictions of /proc/pid/ after setuid program exec CVE-2011-1020 - kernel: be2net: promiscuous mode and non-member VLA...

CVE-2012-4461

The KVM subsystem in the Linux kernel before 3.6.9, when running on hosts that use qemu userspace without XSAVE, allows local users to cause a denial of service kernel OOPS by using the KVMSETSREGS ioctl to set the X86CR4OSXSAVE bit in the guest cr4 register, then calling the KVMRUN ioctl...

Denial of service

The tcpillinoisinfo function in net/ipv4/tcpillinois.c in the Linux kernel before 3.4.19, when the net.ipv4.tcpcongestioncontrol illinois setting is enabled, allows local users to cause a denial of service divide-by-zero error and OOPS by reading TCP stats...

Vm86 - Syscall Task Switch Kernel Panic (Denial of Service) Privilege Escalation

Vm86 - Syscall Task Switch Kernel Panic Denial of Service Privilege Escalation Source: http://www.halfdog.net/Security/2013/Vm86SyscallTaskSwitchKernelPanic/ Introduction Problem description: The initial observation was, that the linux vm86 syscall, which allows to use the virtual-8086 mode from...

Scientific Linux Security Update : kernel on SL5.x i386/x86_64

These new kernel packages fix the following security issues : A flaw was found in the virtual filesystem VFS. An unprivileged local user could truncate directories to which they had write permission; this could render the contents of the directory inaccessible. CVE-2008-0001, Important A flaw was...

USN-1499-1: Linux kernel (OMAP4) vulnerability

A flaw was discovered in the Linux kernel's NFSv4 Network file system handling of ACLs access control lists. A remote NFS server attacker could cause a denial of service OOPS...

Ubuntu Update for linux-lts-backport-oneiric USN-1489-1

Ubuntu Update for Linux kernel vulnerabilities USN-1489-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN14891.nasl 7960 2017-12-01 06:58:16Z santu $ Ubuntu Update for linux-lts-backport-oneiric USN-1489-1 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH,...

USN-1489-1: Linux kernel (Oneiric backport) vulnerability

A flaw was discovered in the Linux kernel's NFSv4 Network file system handling of ACLs access control lists. A remote NFS server attacker could cause a denial of service OOPS...

USN-1488-1: Linux kernel vulnerabilities

Stephan Mueller reported a flaw in the Linux kernel's dl2k network driver's handling of ioctls. An unprivileged local user could leverage this flaw to cause a denial of service. CVE-2012-2313 Timo Warns reported multiple flaws in the Linux kernel's hfsplus filesystem. An unprivileged local user...

abrt, libreport, btparser, and python-meh security and bug fix update

abrt 2.0.8-6.0.1.el6 - Add abrt-oracle-enterprise.patch to be product neutral - Remove abrt-plugin-rhtsupport dependency for cli and desktop - Make abrt Obsoletes/Provides abrt-plugin-rhtsupprot 2.0.8-6 - enable plugin services after install rhbz820515 - Resolves: 820515 2.0.8-5 - removed the...

Design/Logic Flaw

The ext4fillsuper function in fs/ext4/super.c in the Linux kernel before 2.6.39 does not properly initialize a certain error-report data structure, which allows local users to cause a denial of service OOPS by attempting to mount a crafted ext4 filesystem...

Design/Logic Flaw

The nfs4getacluncached function in fs/nfs/nfs4proc.c in the NFSv4 implementation in the Linux kernel before 3.3.2 uses an incorrect length variable during a copy operation, which allows remote NFS servers to cause a denial of service OOPS by sending an excessive number of bitmap words in an...

CVE-2012-2375

CVE-2012-2375 affects the Linux kernel NFSv4 implementation where __nfs4_get_acl_uncached in fs/nfs/nfs4proc.c uses an incorrect length variable during a copy, enabling remote NFS servers to trigger a denial of service (OOPS) by sending excessive bitmap words in an FATTR4_ACL reply. Affected are ...

CVE-2011-4081

crypto/ghash-generic.c in the Linux kernel before 3.1 allows local users to cause a denial of service NULL pointer dereference and OOPS or possibly have unspecified other impact by triggering a failed or missing ghashsetkey function call, followed by a 1 ghashupdate function call or 2 ghashfinal...