CVE-2008-2365

CVE-2008-2365 describes a race condition in Linux kernel ptrace/utrace support (kernel 2.6.9–2.6.25) used by RHEL4. A local user can cause a denial of service (oops) by issuing a long sequence of PTRACE_ATTACH calls that trigger a conflict between utrace_detach and report_quiescent due to a late ...

kernel security and bug fix update

2.6.9-67.0.20.0.1.EL - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug 6845794 - fix entropy flag in bnx2 driver to generate entropy pool John Sobecki orabug 5931647 - fix enomem due to larger mtu size page alloc Zach Brown orabug 5486128 - fix percpu api bugon wit...

Debian: Security Advisory (DSA-726-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian Security Advisory DSA 726-1 (oops)

The remote host is missing an update to oops announced via advisory DSA 726-1. OpenVAS Vulnerability Test $Id: deb7261.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 726-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

Linux Kernel < 2.6.11.5 BLUETOOTH Stack Local Root Exploit

No description provided by source. / LINUX KERNEL Not tainted VLI EFLAGS: 00010286 2.6.9 EIP is at btsockcreate+0x3d/0x13...

Ubuntu 5.04 / 5.10 / 6.06 LTS : linux-source-2.6.10/-2.6.12/-2.6.15 vulnerabilities (USN-311-1)

A race condition was discovered in the doaddcounters functions. Processes which do not run with full root privileges, but have the CAPNETADMIN capability can exploit this to crash the machine or read a random piece of kernel memory. In Ubuntu there are no packages that are affected by this, so th...

CVE-2007-3731

The Linux kernel 2.6.20 and 2.6.21 does not properly handle an invalid LDT segment selector in %cs the xcs field during ptrace single-step operations, which allows local users to cause a denial of service NULL dereference and OOPS via certain code that makes ptrace PTRACESETREGS and...

CVE-2007-3731

The Linux kernel 2.6.20 and 2.6.21 does not properly handle an invalid LDT segment selector in %cs the xcs field during ptrace single-step operations, which allows local users to cause a denial of service NULL dereference and OOPS via certain code that makes ptrace PTRACESETREGS and...

Design/Logic Flaw

The Linux kernel 2.6.20 and 2.6.21 does not properly handle an invalid LDT segment selector in %cs the xcs field during ptrace single-step operations, which allows local users to cause a denial of service NULL dereference and OOPS via certain code that makes ptrace PTRACESETREGS and...

CVE-2007-3739

mm/mmap.c in the hugetlb kernel, when run on PowerPC systems, does not prevent stack expansion from entering into reserved kernel page memory, which allows local users to cause a denial of service OOPS via unspecified vectors...

CVE-2007-3739

mm/mmap.c in the hugetlb kernel, when run on PowerPC systems, does not prevent stack expansion from entering into reserved kernel page memory, which allows local users to cause a denial of service OOPS via unspecified vectors...

CVE-2007-3739

mm/mmap.c in the hugetlb kernel, when run on PowerPC systems, does not prevent stack expansion from entering into reserved kernel page memory, which allows local users to cause a denial of service OOPS via unspecified vectors...

LTC36188-Don't allow the stack to grow into hugetlb reserved regions

mm/mmap.c in the hugetlb kernel, when run on PowerPC systems, does not prevent stack expansion from entering into reserved kernel page memory, which allows local users to cause a denial of service OOPS via unspecified vectors...

Null pointer dereference

The sysfsreaddir function in the Linux kernel 2.6, as used in Red Hat Enterprise Linux RHEL 4.5 and other distributions, allows users to cause a denial of service kernel OOPS by dereferencing a null pointer to an inode in a dentry...

CVE-2007-3104

The sysfsreaddir function in the Linux kernel 2.6, as used in Red Hat Enterprise Linux RHEL 4.5 and other distributions, allows users to cause a denial of service kernel OOPS by dereferencing a null pointer to an inode in a dentry...

lost fput in a 32-bit ioctl on 64-bit x86 systems

The Linux kernel before 2.6.9-42.0.8 in Red Hat 4.4 allows local users to cause a denial of service kernel OOPS from null dereference via fput in a 32-bit ioctl on 64-bit x86 systems, an incomplete fix of CVE-2005-3044.1...

NFS lockd deadlock

The nlmclntmarkreclaim in clntlock.c in NFS lockd in Linux kernel before 2.6.16 allows remote attackers to cause a denial of service process crash and deny access to NFS exports via unspecified vectors that trigger a kernel oops null dereference and a deadlock...

CVE-2007-1592

net/ipv6/tcpipv6.c in Linux kernel 2.6.x up to 2.6.21-rc3 inadvertently copies the ipv6flsocklist from a listening TCP socket to child sockets, which allows local users to cause a denial of service OOPS or double free by opening a listening IPv6 socket, attaching a flow label, and connecting to...

CVE-2007-1592

net/ipv6/tcpipv6.c in Linux kernel 2.6.x up to 2.6.21-rc3 inadvertently copies the ipv6flsocklist from a listening TCP socket to child sockets, which allows local users to cause a denial of service OOPS or double free by opening a listening IPv6 socket, attaching a flow label, and connecting to...

Important: kernel security update

2.6.9-42.0.10.0.1 -Fix bonding primary=ethX so it picks correct network Bert Barbe IT 101532 ORA 5136660 2.6.9-42.0.10 -fix key serial number collision problem David Howells 227495 CVE-2007-0006 -fix audit panic on watched files Eric Paris 223129 CVE-2007-0001 2.6.9-42.0.9 -fix icmp oops in sctp...