26 matches found
Astra Linux – Vulnerability in Linux 5.10, Linux
In the Linux kernel, the following vulnerability has been resolved: arm64: The issue was fixed in the concurrently setting of insnemulation sysctls. The emulationprochandler function changes table-data for procdointvecminmax. However, it may cause an OOPs error if called concurrently with itself:...
EUVD-2013-4170
Malware in sbrugna...
EUVD-2005-2710
Malware in sbrugna...
kernel: sysctl: always initialize i_uid/i_gid
In the Linux kernel, the following vulnerability has been resolved: sysctl: always initialize iuid/igid Always initialize iuid/igid inside the sysfs core so setownership can safely skip setting them. Commit 5ec27ec735ba "fs/proc/procsysctl.c: fix the default values of iuid/igid on /proc/sys...
The vulnerability of the sysctl component in the Linux operating system’s kernel allows a hacker to trigger a service failure.
The vulnerability of the sysctl component in the Linux operating system’s kernel is related to improper validation of input data in the procsysmake inode function. Exploiting this vulnerability can allow an attacker to cause a service failure...
SUSE CVE-2020-10773
A stack information leak flaw was found in s390/s390x in the Linux kernel's memory manager functionality, where it incorrectly writes to the /proc/sys/vm/cmmtimeout file. This flaw allows a local user to see the kernel data...
Ubuntu: Security Advisory (USN-819-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu: Security Advisory (USN-2023-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Important: Red Hat Security Advisory: kernel security and bug fix update
An update for kernel is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...
Important: kernel security and bug fix update
The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: powerpc: KVM guest OS users can cause host OS memory corruption CVE-2021-37576 kernel: slab-out-of-bounds access in xdrsetpagebase in net/sunrpc/xdr.c CVE-2021-38201 For more details abou...
Information Disclosure
kernel is vulnerable to information disclosure.It incorrectly writes to the /proc/sys/vm/cmmtimeout file.This flaw allows to local user see the kernel stack information leak on s390/s390x...
Uninitialized Memory Disclosure
Linux kernel is vulnerable to uninitialized memory disclosure. Possibility of limited and random memory access when reading the /proc/sys/kernel/rhfeatures file...
Denial Of Service (DoS)
linux is vulnerable to denial of service DoS. There is a net/ipv4/tcpinput.c signed integer overflow in tcpackupdatertt when userspace writes a very large integer to /proc/sys/net/ipv4/tcpminrttwlen, leading to a denial of service or possibly unspecified other impact, aka CID-19fad20d15a6...
CVE-2020-10773
A stack information leak flaw was found in s390/s390x in the Linux kernel’s memory manager functionality, where it incorrectly writes to the /proc/sys/vm/cmmtimeout file. This flaw allows a local user to see the kernel data...
CVE-2020-10773
CVE-2020-10773 is a local-information-disclosure flaw in the Linux kernel for s390/s390x memory-management. The issue stems from incorrect writes to the /proc/sys/vm/cmm_timeout file, enabling a local attacker to read kernel data. The provided documents confirm the vulnerability and its affected ...
CVE-2020-10773
A stack information leak flaw was found in s390/s390x in the Linux kernel’s memory manager functionality, where it incorrectly writes to the /proc/sys/vm/cmmtimeout file. This flaw allows a local user to see the kernel data...
SUSE SLES12 Security Update : MozillaFirefox (SUSE-SU-2020:1899-1)
This update for MozillaFirefox to version 78.0.1 ESR fixes the following issues : Security issues fixed : CVE-2020-12415: AppCache manifest poisoning due to url encoded character processing bsc1173576. CVE-2020-12416: Use-after-free in WebRTC VideoBroadcaster bsc1173576. CVE-2020-12417: Memory...
Denial Of Service (DoS)
The kernel package is vulnerable to denial of service DoS. The RHSA-2009:0225 update introduced a rewrite attack flaw in the docoredump function. A local attacker able to guess the file name a process is going to dump its core to, prior to the process crashing, could use this flaw to append data ...
glibc ld.so - Memory Leak / Buffer Overflow Vulnerability
Exploit for linux platform in category local exploits Qualys Security Advisory Buffer overflow in glibc's ld.so ======================================================================== Contents ======================================================================== Summary Memory Leak Buffer...
Qualys Security Advisory - GNU C Library Memory Leak / Buffer Overflow
Qualys Security Advisory Buffer overflow in glibc's ld.so ======================================================================== Contents ======================================================================== Summary Memory Leak Buffer Overflow Exploitation Acknowledgments...