Ubuntu 10.04 LTS : linux-lts-backport-maverick vulnerabilities (USN-1292-1)

A bug was discovered in the XFS filesystem's handling of pathnames. A local attacker could exploit this to crash the system, leading to a denial of service, or gain root privileges. CVE-2011-4077 Nick Bowler discovered the kernel GHASH message digest algorithm incorrectly handled error conditions...

kernel: ext4: ext4_ext_insert_extent() kernel oops

fs/ext4/extents.c in the Linux kernel before 3.0 does not mark a modified extent as dirty in certain cases of extent splitting, which allows local users to cause a denial of service system crash via vectors involving ext4 umount and mount operations...

Ubuntu Update for linux USN-1286-1

Ubuntu Update for Linux kernel vulnerabilities USN-1286-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN12861.nasl 7964 2017-12-01 07:32:11Z santu $ Ubuntu Update for linux USN-1286-1 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This...

CVE-2011-2203

The hfsfindinit function in the Linux kernel 2.6 allows local users to cause a denial of service NULL pointer dereference and Oops by mounting an HFS file system with a malformed MDB extent record...

kernel: keys: NULL pointer deref in the user-defined key type

The userupdate function in security/keys/userdefined.c in the Linux kernel 2.6 allows local users to cause a denial of service NULL pointer dereference and kernel oops via vectors related to a user-defined key and "updating a negative key into a fully instantiated key."...

PT-2011-4849 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel version 2.6 Description: The issue is related to the user update function in the Linux kernel, which allows local users to cause a denial of service. This can be achieved through vectors related to a user-defined key and updating...

kernel: corrupted GUID partition tables can cause kernel oops

Heap-based buffer overflow in the isgptvalid function in fs/partitions/efi.c in the Linux kernel 2.6.38 and earlier allows physically proximate attackers to cause a denial of service OOPS or possibly have unspecified other impact via a crafted size of the EFI GUID partition-table header on...

CVE-2011-4081

crypto/ghash-generic.c in the Linux kernel before 3.1 allows local users to cause a denial of service NULL pointer dereference and OOPS or possibly have unspecified other impact by triggering a failed or missing ghashsetkey function call, followed by a 1 ghashupdate function call or 2 ghashfinal...

CVE-2011-3619

The apparmorsetprocattr function in security/apparmor/lsm.c in the Linux kernel before 3.0 does not properly handle invalid parameters, which allows local users to cause a denial of service NULL pointer dereference and OOPS or possibly have unspecified other impact by writing to a...

CVE-2011-1573

net/sctp/smmakechunk.c in the Linux kernel before 2.6.34, when addipenable and authenable are used, does not consider the amount of zero padding during calculation of chunk lengths for 1 INIT and 2 INIT ACK chunks, which allows remote attackers to cause a denial of service OOPS via crafted packet...

CVE-2011-1768

The tunnels implementation in the Linux kernel before 2.6.34, when tunnel functionality is configured as a module, allows remote attackers to cause a denial of service OOPS by sending a packet during module loading...

CVE-2011-1076

net/dnsresolver/dnskey.c in the Linux kernel before 2.6.38 allows remote DNS servers to cause a denial of service NULL pointer dereference and OOPS by not providing a valid response to a DNS query, as demonstrated by an erroneous grand.centrall.org query, which triggers improper handling of error...

kernel: corrupted GUID partition tables can cause kernel oops

Heap-based buffer overflow in the isgptvalid function in fs/partitions/efi.c in the Linux kernel 2.6.38 and earlier allows physically proximate attackers to cause a denial of service OOPS or possibly have unspecified other impact via a crafted size of the EFI GUID partition-table header on...

Null pointer dereference

The keyreplacesessionkeyring function in security/keys/processkeys.c in the Linux kernel before 2.6.39.1 does not initialize a certain structure member, which allows local users to cause a denial of service NULL pointer dereference and OOPS or possibly have unspecified other impact via a...

Heap overflow

The isgptvalid function in fs/partitions/efi.c in the Linux kernel before 2.6.39 does not check the size of an Extensible Firmware Interface EFI GUID Partition Table GPT entry, which allows physically proximate attackers to cause a denial of service heap-based buffer overflow and OOPS or obtain...

Denial of service

SystemTap 1.4 and earlier, when unprivileged aka stapusr mode is enabled, allows local users to cause a denial of service divide-by-zero error and OOPS via a crafted ELF program with DWARF expressions that are not properly handled by a stap script that performs context variable access...

DEBIAN-CVE-2011-1769

SystemTap 1.4 and earlier, when unprivileged aka stapusr mode is enabled, allows local users to cause a denial of service divide-by-zero error and OOPS via a crafted ELF program with DWARF expressions that are not properly handled by a stap script that performs context variable access...

CVE-2011-1769

SystemTap 1.4 and earlier, when unprivileged aka stapusr mode is enabled, allows local users to cause a denial of service divide-by-zero error and OOPS via a crafted ELF program with DWARF expressions that are not properly handled by a stap script that performs context variable access...

CVE-2011-1781

SystemTap 1.4, when unprivileged aka stapusr mode is enabled, allows local users to cause a denial of service divide-by-zero error and OOPS via a crafted ELF program with DWARF expressions that are not properly handled by a stap script that performs stack unwinding aka backtracing...

CVE-2011-2928

CVE-2011-2928 affects the Linux kernel prior to 3.1-rc3, specifically the befs_follow_link function in fs/befs/linuxvfs.c. The flaw does not validate the length attribute of long symlinks on a malformed Be filesystem, enabling a local attacker to trigger an incorrect pointer dereference and OOPS,...