CVE-2017-1081

In FreeBSD before 11.0-STABLE, 11.0-RELEASE-p10, 10.3-STABLE, and 10.3-RELEASE-p19, ipfilter using "keep state" or "keep frags" options can cause a kernel panic when fed specially crafted packet fragments due to incorrect memory handling...

CVE-2017-1081

In FreeBSD before 11.0-STABLE, 11.0-RELEASE-p10, 10.3-STABLE, and 10.3-RELEASE-p19, ipfilter using "keep state" or "keep frags" options can cause a kernel panic when fed specially crafted packet fragments due to incorrect memory handling...

CVE-2017-1081

Removed by vendor...

CVE-2017-1081

CVE-2017-1081 affects FreeBSD: ipfilter (ipfilter(4)) processing of packet fragments when using keep state or keep frags can trigger a kernel panic in certain older builds (FreeBSD before 11.0-STABLE, 11.0-RELEASE-p10, 10.3-STABLE, 10.3-RELEASE-p19). The root cause is incorrect memory handling in...

CVE-2017-1081

In FreeBSD before 11.0-STABLE, 11.0-RELEASE-p10, 10.3-STABLE, and 10.3-RELEASE-p19, ipfilter using "keep state" or "keep frags" options can cause a kernel panic when fed specially crafted packet fragments due to incorrect memory handling...

kernel: Incorrect updates of uninstantiated keys crash the kernel

A vulnerability was found in the key management subsystem of the Linux kernel. An update on an uninstantiated key could cause a kernel panic, leading to denial of service DoS...

SUSE-SU-2018:0834-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 12 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2018-1068: Fixed flaw in the implementation of 32-bit syscall interface for bridging. This allowed a privileged user to arbitrarily write to a limited range of...

Virtuozzo 6 : parallels-server-bm-release / etc (VZA-2018-017)

According to the versions of the parallels-server-bm-release / etc packages installed, the Virtuozzo installation on the remote host is affected by the following vulnerabilities : - In the Linux kernel through 4.14.13, the rdsmessageallocsgs function does not validate a value that is used during...

Kernel security update: CVE-2017-18017 and other; new kernel 2.6.32-042stab128.2, Virtuozzo 6.0 Update 12 Hotfix 22 (6.0.12-3701)

This update provides a new Virtuozzo 6.0 kernel 2.6.32-042stab128.2 that introduces security and stability fixes and is a rebase to the Red Hat Enterprise Linux 6.9 kernel 2.6.32-696.23.1.el6. This kernel was recompiled by the updated gcc with retpolines support. Retpolines are a technique used b...

CVE-2017-18241

fs/f2fs/segment.c in the Linux kernel allows local users to cause a denial of service NULL pointer dereference and panic by using a noflushmerge option that triggers a NULL value for a flushcmdcontrol data structure...

CVE-2017-18241

fs/f2fs/segment.c in the Linux kernel before 4.13 allows local users to cause a denial of service NULL pointer dereference and panic by using a noflushmerge option that triggers a NULL value for a flushcmdcontrol data structure...

CVE-2017-18241

fs/f2fs/segment.c in the Linux kernel before 4.13 allows local users to cause a denial of service NULL pointer dereference and panic by using a noflushmerge option that triggers a NULL value for a flushcmdcontrol data structure...

CVE-2017-18241

fs/f2fs/segment.c in the Linux kernel before 4.13 allows local users to cause a denial of service NULL pointer dereference and panic by using a noflushmerge option that triggers a NULL value for a flushcmdcontrol data structure...

kernel: rds_message_alloc_sgs() function doesn't validate value used during DMA page allocation causes heap out-of-bounds write

In the Linux kernel through 4.14.13, the rdsmessageallocsgs function does not validate a value that is used during DMA page allocation, leading to a heap-based out-of-bounds write related to the rdsrdmaextrasize function in 'net/rds/rdma.c' and thus to a system panic. Due to the nature of the fla...

kernel: Null pointer dereference in rds_atomic_free_op() allowing denial-of-service

In the Linux kernel through 4.14.13, the rdscmsgatomic function in 'net/rds/rdma.c' mishandles cases where page pinning fails or an invalid address is supplied by a user. This can lead to a NULL pointer dereference in rdsatomicfreeop and thus to a system panic...

CVE-2018-7995

Race condition in the storeintwithrestart function in arch/x86/kernel/cpu/mcheck/mce.c in the Linux kernel through 4.15.7 allows local users to cause a denial of service panic by leveraging root access to write to the checkinterval file in a /sys/devices/system/machinecheck/machinecheck directory...

CVE-2018-7995

CVE-2018-7995 describes a race condition in Linux kernel’s store_int_with_restart() (arch/x86/kernel/cpu/mcheck/mce.c) up to version 4.15.7. This flaw lets a local attacker with root access to write to /sys/devices/system/machinecheck/machinecheck/check_interval and trigger a denial of service/pa...

FreeBSD-SA-18:01.ipsec

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-18:01.ipsec REVISED Security Advisory The FreeBSD Project Topic: ipsec validation and use-after-free Category: core Module: ipsec Announced: 2018-03-07 Credits:...

FreeBSD -- ipsec validation and use-after-free

Problem Description: Due to a lack of strict checking, an attacker from a trusted host can send a specially constructed IP packet that may lead to a system crash. Additionally, a use-after-free vulnerability in the AH handling code could cause unpredictable results. Impact: Access to out of bound...

Apple OS X Yosemite - flow_divert-heap-overflow Kernel Panic Exploit

Exploit for macOS platform in category dos / poc / flowdivert-heap-overflow.c Brandon Azad CVE-2016-1827: Kernel heap overflow in the function flowdiverthandleappmapcreate on OS X and iOS. Exploitation requires root privileges. The vulnerability was patched in OS X El Capitan 10.11.5 and iOS 9.3....