Lucene search
K

2021 matches found

OSV
OSV
added 2011/06/18 12:0 a.m.53 views

DSA-2264-1 linux-2.6 - several issues

Bulletin has no description...

9.8CVSS7AI score0.04177EPSS
Exploits23
Tenable Nessus
Tenable Nessus
added 2011/06/13 12:0 a.m.62 views

Ubuntu 10.04 LTS : linux, linux-ec2 vulnerabilities (USN-1141-1)

Brad Spengler discovered that the kernel did not correctly account for userspace memory allocations during exec calls. A local attacker could exploit this to consume all system memory, leading to a denial of service. CVE-2010-4243 Alexander Duyck discovered that the Intel Gigabit Ethernet driver...

9.8CVSS7.1AI score0.04177EPSS
Exploits25References39
Ubuntu
Ubuntu
added 2011/06/01 12:0 a.m.90 views

USN-1141-1: Linux kernel vulnerabilities

Brad Spengler discovered that the kernel did not correctly account for userspace memory allocations during exec calls. A local attacker could exploit this to consume all system memory, leading to a denial of service. CVE-2010-4243 Alexander Duyck discovered that the Intel Gigabit Ethernet driver...

9.8CVSS7.1AI score0.04177EPSS
Exploits25
Tenable Nessus
Tenable Nessus
added 2011/06/01 12:0 a.m.51 views

RHEL 5 : kernel (RHSA-2011:0833)

The remote Redhat Enterprise Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2011:0833 advisory. - kernel: proc: protect mm startcode/endcode in /proc/pid/stat CVE-2011-0726 - kernel: bt scoconninfo infoleak CVE-2011-1078 - kernel: bnep...

7.8CVSS6.6AI score0.03411EPSS
Exploits4References38
RedHat Linux
RedHat Linux
added 2011/05/31 2:3 p.m.4 views

kernel: proc: protect mm start_code/end_code in /proc/pid/stat

The dotaskstat function in fs/proc/array.c in the Linux kernel before 2.6.39-rc1 does not perform an expected uid check, which makes it easier for local users to defeat the ASLR protection mechanism by reading the startcode and endcode fields in the /proc//stat file for a process executing a PIE...

2.1CVSS7.1AI score0.00342EPSS
Exploits2References4
OSV
OSV
added 2011/05/23 12:0 a.m.44 views

DSA-2240-1 linux-2.6 - several issues

Bulletin has no description...

9.8CVSS7.1AI score0.04364EPSS
Exploits24
RedHat Linux
RedHat Linux
added 2011/05/10 6:7 p.m.12 views

kernel: proc: protect mm start_code/end_code in /proc/pid/stat

The dotaskstat function in fs/proc/array.c in the Linux kernel before 2.6.39-rc1 does not perform an expected uid check, which makes it easier for local users to defeat the ASLR protection mechanism by reading the startcode and endcode fields in the /proc//stat file for a process executing a PIE...

2.1CVSS7.1AI score0.00342EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2011/05/10 5:16 p.m.5 views

kernel: proc: protect mm start_code/end_code in /proc/pid/stat

The dotaskstat function in fs/proc/array.c in the Linux kernel before 2.6.39-rc1 does not perform an expected uid check, which makes it easier for local users to defeat the ASLR protection mechanism by reading the startcode and endcode fields in the /proc//stat file for a process executing a PIE...

2.1CVSS7.1AI score0.00342EPSS
Exploits2References4
Oracle linux
Oracle linux
added 2011/05/10 12:0 a.m.70 views

kernel security, bug fix, and enhancement update

2.6.32-71.29.1.el6 - mm Revert 'mm pdpte registers are not flushed when PGD entry is changed in x86 PAE mode' Larry Woodman 695256 691310 2.6.32-71.28.1.el6 - net bonding: fix jiffy comparison issues Andy Gospodarek 698109 696337 - drm radeon/kms: check AA resolve registers on r300 + regression f...

7.8CVSS0.2AI score0.03411EPSS
Exploits13
RedHat Linux
RedHat Linux
added 2011/04/08 2:53 a.m.8 views

kernel: s390 task_show_regs infoleak

The taskshowregs function in arch/s390/kernel/traps.c in the Linux kernel before 2.6.38-rc4-next-20110216 on the s390 platform allows local users to obtain the values of the registers of an arbitrary process by reading a status file under /proc/...

2.1CVSS6.2AI score0.00403EPSS
Exploits0References4
Oracle linux
Oracle linux
added 2011/04/07 12:0 a.m.107 views

kernel security and bug fix update

2.6.32-71.24.1.el6 - fs Revert 'fs inotify: stop kernel memory leak on file creation failure' Eric Paris 656831 656832 CVE-2010-4250 2.6.32-71.23.1.el6 - x86 Revert 'x86 mtrr: Assume SYSCFGTom2ForceMemTypeWB exists on all future AMD CPUs' Frank Arnold 683813 652208 2.6.32-71.22.1.el6 - rebuild...

7.1CVSS0.2AI score0.02523EPSS
Exploits5
NVD
NVD
added 2011/02/28 4:0 p.m.27 views

CVE-2011-1020

The proc filesystem implementation in the Linux kernel 2.6.37 and earlier does not restrict access to the /proc directory tree of a process after this process performs an exec of a setuid program, which allows local users to obtain sensitive information or cause a denial of service via open, lsee...

4.6CVSS6.7AI score0.00923EPSS
Exploits3References15
Prion
Prion
added 2011/02/28 4:0 p.m.26 views

Directory traversal

The proc filesystem implementation in the Linux kernel 2.6.37 and earlier does not restrict access to the /proc directory tree of a process after this process performs an exec of a setuid program, which allows local users to obtain sensitive information or cause a denial of service via open, lsee...

4.6CVSS6.6AI score0.00923EPSS
Exploits3References15Affected Software1
Cvelist
Cvelist
added 2011/02/28 3:0 p.m.28 views

CVE-2011-1020

The proc filesystem implementation in the Linux kernel 2.6.37 and earlier does not restrict access to the /proc directory tree of a process after this process performs an exec of a setuid program, which allows local users to obtain sensitive information or cause a denial of service via open, lsee...

6.1AI score0.00923EPSS
Exploits3References15
Prion
Prion
added 2011/02/18 8:0 p.m.21 views

Design/Logic Flaw

The taskshowregs function in arch/s390/kernel/traps.c in the Linux kernel before 2.6.38-rc4-next-20110216 on the s390 platform allows local users to obtain the values of the registers of an arbitrary process by reading a status file under /proc/...

2.1CVSS6.5AI score0.00403EPSS
Exploits0References10Affected Software1
Exploit DB
Exploit DB
added 2011/01/17 12:0 a.m.928 views

Linux Kernel 2.6.32 (Ubuntu 10.04) - '/proc' Handling SUID Privilege Escalation

Source: http://www.halfdog.net/Security/2011/SuidBinariesAndProcInterface/ proc Handling of Already Opened Files: Subvert The Stack Base Address Randomization With Suid-Binaries Problem description: Latest ubuntu lucid stock kernel 2.6.32-27-generic contains a bug that allows to keep attached to...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2011/01/17 12:0 a.m.20 views

Linux Kernel 2.6.32 (Ubuntu 10.04) - proc Handling SUID Privilege Escalation

Linux Kernel 2.6.32 Ubuntu 10.04 - proc Handling SUID Privilege Escalation Source: http://www.halfdog.net/Security/2011/SuidBinariesAndProcInterface/ proc Handling of Already Opened Files: Subvert The Stack Base Address Randomization With Suid-Binaries Problem description: Latest ubuntu lucid sto...

0.9AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2010/09/04 12:0 a.m.18 views

Fedora 12 : libHX-3.6-1.fc12 / pam_mount-2.5-1.fc12 (2010-13155)

Update to libHX 3.6 fixing a buffer overflow in HXsplit: http://libhx.gi t.sourceforge.net/git/gitweb.cgi?p=libhx/libhx;a=commitdiff;h=904a46f9 0d pammount v2.5 August 10 2010 =============================== Changes: - mount.crypt: fix incorrect processing of binary files in keyfile passthrough -...

10CVSS5.8AI score0.05506EPSS
Exploits0References5
seebug.org
seebug.org
added 2010/06/03 12:0 a.m.24 views

Joomla component SimpleDownload Local File Inclusion

No description provided by source. A vulnerability has been found in the downloader component for Joomla. It can be exploited in various ways - from sensitive information disclosure to remote code execution. Input passed to controller is not properly sanitized, allowing attacker to inject php cod...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2010/05/19 12:0 a.m.25 views

Joomla Simple Downloader 0.9.5 Local File Inclusion / Command Execution

--Description-- A vulnerability has been found in the downloader component for Joomla. It can be exploited in various ways - from sensitive information disclosure to remote code execution. Input passed to controller is not properly sanitized, allowing attacker to inject php code via Local File...

0.1AI score
Exploits0
Rows per page
Query Builder