Debian: Security Advisory (DSA-1070-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2008-0269

CVE-2008-0269 describes an unspecified vulnerability in the dotoprocs function of Solaris 10. The affected product is Sun Solaris 10; the vulnerable component is the dotoprocs function, with the underlying cause not explicitly stated in the provided sources. Impact is a local denial of service (p...

openSUSE 10 Security Update : xen (xen-4854)

This update fixes various Xen issues. Two security problems were fixed: CVE-2007-5906: Xen allowed virtual guest system users to cause a denial of service hypervisor crash by using a debug register DR7 to set certain breakpoints. CVE-2007-5907: Xen 3.1.1 does not prevent modification of the CR4 T...

CVE-2007-4567

The ipv6hopjumbo function in net/ipv6/exthdrs.c in the Linux kernel before 2.6.22 does not properly validate the hop-by-hop IPv6 extended header, which allows remote attackers to cause a denial of service NULL pointer dereference and kernel panic via a crafted IPv6 packet...

Null pointer dereference

The ipv6hopjumbo function in net/ipv6/exthdrs.c in the Linux kernel before 2.6.22 does not properly validate the hop-by-hop IPv6 extended header, which allows remote attackers to cause a denial of service NULL pointer dereference and kernel panic via a crafted IPv6 packet...

CVE-2007-4567

The ipv6hopjumbo function in net/ipv6/exthdrs.c in the Linux kernel before 2.6.22 does not properly validate the hop-by-hop IPv6 extended header, which allows remote attackers to cause a denial of service NULL pointer dereference and kernel panic via a crafted IPv6 packet...

PT-2007-5736 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.22 Description: The issue is related to the improper validation of the hop-by-hop IPv6 extended header in the ipv6 hop jumbo function. This allows remote attackers to cause a denial of service, resulting in ...

CVE-2007-5966

Integer overflow in the hrtimerstart function in kernel/hrtimer.c in the Linux kernel before 2.6.23.10 allows local users to execute arbitrary code or cause a denial of service panic via a large relative timeout value. NOTE: some of these details are obtained from third party information...

Important: kernel security and bug fix update

2.6.9-67.0.1.0.1.EL - fix entropy flag in bnx2 driver to generate entropy pool John Sobecki orabug 5931647 - fix enomem due to larger mtu size page alloc Zach Brown orabug 5486128 - fix percpu api bugon with rds Zach Brown orabug 5760648 2.6.9-67.0.1 -kernel ieee80211 off-by-two integer underflow...

Linux Kernel 2.6.22 - IPv6 Hop-By-Hop Header Remote Denial of Service

/ source: https://www.securityfocus.com/bid/26943/info The Linux kernel is prone to a remote denial-of-service vulnerability because it fails to adequately validate specially crafted IPv6 'Hop-By-Hop' headers. Attackers can exploit this issue to cause a kernel panic, denying service to legitimate...

Linux Kernel 2.6.22 - IPv6 Hop-By-Hop Header Remote Denial of Service

Linux Kernel 2.6.22 - IPv6 Hop-By-Hop Header Remote Denial of Service / source: https://www.securityfocus.com/bid/26943/info The Linux kernel is prone to a remote denial-of-service vulnerability because it fails to adequately validate specially crafted IPv6 'Hop-By-Hop' headers. Attackers can...

SuSE 10 Security Update : Linux kernel (i386) (ZYPP Patch Number 2097)

This kernel update fixes the following security problems : - A double userspace copy in a SCTP ioctl allows local attackers to overflow a buffer in the kernel, potentially allowing code execution and privilege escalation. 199441. CVE-2006-3745 - Local attackers were able to crash PowerPC systems...

Code injection

The iwlsetrate function in compatible/iwl3945-base.c in iwlwifi 1.1.21 and earlier dereferences an iwlgethwmode return value without checking for NULL, which might allow remote attackers to cause a denial of service kernel panic via unspecified vectors during module initialization...

CVE-2007-5938

The iwlsetrate function in compatible/iwl3945-base.c in iwlwifi 1.1.21 and earlier dereferences an iwlgethwmode return value without checking for NULL, which might allow remote attackers to cause a denial of service kernel panic via unspecified vectors during module initialization...

CVE-2007-5938

The iwlsetrate function in compatible/iwl3945-base.c in iwlwifi 1.1.21 and earlier dereferences an iwlgethwmode return value without checking for NULL, which might allow remote attackers to cause a denial of service kernel panic via unspecified vectors during module initialization...

CVE-2007-5938

CVE-2007-5938 describes a NULL pointer dereference in the iwl driver (iwlwifi 1.1.21 and earlier) where iwl_set_rate dereferences the value returned by iwl_get_hw_mode without NULL checking. This can trigger a kernel panic during module initialization, constituting a denial of service. The connec...

Race condition

Race condition in the Remote Procedure Call kernel module rpcmod in Sun Solaris 8 through 10 allows local users to cause a denial of service NULL dereference and panic via unspecified vectors...

GLSA-200711-09 : MadWifi: Denial of Service

The remote host is affected by the vulnerability described in GLSA-200711-09 MadWifi: Denial of Service Clemens Kolbitsch and Sylvester Keil reported an error when processing beacon frames with an overly large 'length' value in the 'xrates' element. Impact : A remote attacker could act as an acce...

CVE-2007-5632

CVE-2007-5632 concerns multiple unspecified vulnerabilities in the Sun Solaris kernel (versions 8–10) that allow local users to cause a denial of service (panic). The description ties the issue to the kernel statistics retrieval mechanism and potentially to the sfmmu_mlspl_enter / sfmmu_mlist_ent...

SEC Consult SA-20071012-0 :: Madwifi xrates element remote DOS

SEC Consult Security Advisory 20071012-0 =================================================================================== title: Madwifi xrates element remote DOS program: Madwifi linux wlan driver for atheros chipsets vulnerable version: Madwifi = 0.9.3.2 homepage: www.madwifi.org found: July...