SuSE 11.1 Security Update : Linux kernel (SAT Patch Numbers 4039 / 4042 / 4043)

The SUSE Linux Enterprise 11 Service Pack 1 kernel was updated to 2.6.32.29 and fixes various bugs and security issues. - The ax25getname function in net/ax25/afax25.c in the Linux kernel did not initialize a certain structure, which allowed local users to obtain potentially sensitive information...

CVE-2011-1010

Concretely, CVE-2011-1010 is reported in MiracleLinux advisory AXSA:2011-282:05 as affecting kernel-2.6.18-238.2.AXS3. It describes a buffer overflow in the mac_partition function (fs/partitions/mac.c) of the Linux kernel, prior to version 2.6.37.2, which can allow a local user to cause a denial ...

CVE-2011-1010

Buffer overflow in the macpartition function in fs/partitions/mac.c in the Linux kernel before 2.6.37.2 allows local users to cause a denial of service panic or possibly have unspecified other impact via a malformed Mac OS partition table...

SuSE9 Security Update : the Linux kernel (YOU Patch Number 12672)

This patch updates the SUSE Linux Enterprise Server 9 kernel to fix various security issues and some bugs. The following security issues were fixed : - The hciuartttyopen function in the HCI UART driver drivers/bluetooth/hcildisc.c in the Linux kernel did not verify whether the tty has a write...

kernel security and bug fix update

2.6.18-238.1.1.0.1.el5 - fix filpclose race Joe Jin orabug 10335998 - fix missing aiocomplete in endio Joel Becker orabug 10365195 - make xenkbd.abspointer=1 by default orabug 67188919 - xen check to see if hypervisor supports memory reservation change Chuck Anderson orabug 7556514 - net Enable...

CentOS Update for kernel CESA-2010:0936 centos4 i386

Check for the Version of kernel OpenVAS Vulnerability Test CentOS Update for kernel CESA-2010:0936 centos4 i386 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it und...

DSA-2153-1 linux-2.6 - several issues

Bulletin has no description...

kernel security update

CentOS Errata and Security Advisory CESA-2010:0936 Updated kernel packages that fix two security issues and multiple bugs are now available for Red Hat Enterprise Linux 4. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring...

CVE-2010-4238

The vbdcreate function in Xen 3.1.2, when the Linux kernel 2.6.18 on Red Hat Enterprise Linux RHEL 5 is used, allows guest OS users to cause a denial of service host OS panic via an attempted access to a virtual CD-ROM device through the blkback driver. NOTE: some of these details are obtained fr...

kernel: sctp: a race between ICMP protocol unreachable and connect()

Race condition in the sctpicmpprotounreachable function in net/sctp/input.c in Linux kernel 2.6.11-rc2 through 2.6.33 allows remote attackers to cause a denial of service panic via an ICMP unreachable message to a socket that is already locked by a user, which causes the socket to be freed and...

CVE-2010-4263

The igbreceiveskb function in drivers/net/igb/igbmain.c in the Intel Gigabit Ethernet aka igb subsystem in the Linux kernel before 2.6.34, when Single Root I/O Virtualization SR-IOV and promiscuous mode are enabled but no VLANs are registered, allows remote attackers to cause a denial of service...

CVE-2010-3086

include/asm-x86/futex.h in the Linux kernel before 2.6.25 does not properly implement exception fixup, which allows local users to cause a denial of service panic via an invalid application that triggers a page fault...

CVE-2010-3086

include/asm-x86/futex.h in the Linux kernel before 2.6.25 does not properly implement exception fixup, which allows local users to cause a denial of service panic via an invalid application that triggers a page fault...

kernel: igb panics when receiving tag vlan packet

The igbreceiveskb function in drivers/net/igb/igbmain.c in the Intel Gigabit Ethernet aka igb subsystem in the Linux kernel before 2.6.34, when Single Root I/O Virtualization SR-IOV and promiscuous mode are enabled but no VLANs are registered, allows remote attackers to cause a denial of service...

kernel: panic when submitting certain 0-length I/O requests

The blkrqmapuseriov function in block/blk-map.c in the Linux kernel before 2.6.36.2 allows local users to cause a denial of service panic via a zero-length I/O request in a device ioctl to a SCSI device...

CVE-2010-4526

Race condition in the sctpicmpprotounreachable function in net/sctp/input.c in Linux kernel 2.6.11-rc2 through 2.6.33 allows remote attackers to cause a denial of service panic via an ICMP unreachable message to a socket that is already locked by a user, which causes the socket to be freed and...

CVE-2010-4526

CVE-2010-4526 describes a race condition in the Linux kernel between 2.6.11-rc2 and 2.6.33 in sctp_icmp_proto_unreachable (net/sctp/input.c). An ICMP Unreachable to a socket that is already locked by a user can free the socket and trigger list corruption via sctp_wait_for_connect, enabling remote...

Rumors of Facebook shutting down !

Rumors of an impending Facebook shutdown had the site's millions of users in a panic Saturday as they wondered who would take their number one procrastination tool away. The Internet rumor was sparked by a report from the "Weekly World News," a website which also includes a story insisting "Alien...

CVE-2010-4160

Multiple integer overflows in the 1 pppol2tpsendmsg function in net/l2tp/l2tpppp.c, and the 2 l2tpipsendmsg function in net/l2tp/l2tpip.c, in the PPPoL2TP and IPoL2TP implementations in the Linux kernel before 2.6.36.2 allow local users to cause a denial of service heap memory corruption and pani...

Cross site request forgery (csrf)

The blkrqmapuseriov function in block/blk-map.c in the Linux kernel before 2.6.37-rc7 allows local users to cause a denial of service panic via a zero-length I/O request in a device ioctl to a SCSI device, related to an unaligned map. NOTE: this vulnerability exists because of an incomplete fix f...