CVE-2020-12658

gssproxy aka gss-proxy before 0.8.3 does not unlock condmutex before pthread exit in gpworkermain in gpworkers.c. NOTE: An upstream comment states "We are already on a shutdown path when running the code in question, so a DoS there doesn't make any sense, and there has been no additional...

linuxkernel_pwn

It is an offensive tool for Linux kernel exploitation. The repository contains a Makefile that compiles and builds two exploits: expdoublefetch and expsidechannel. The primary CVE ID is not explicitly mentioned, but the exploits target Linux kernel vulnerabilities. The probable entry points are t...

Sony PS4 / FreeBSD ip6_setpktopt Local Privilege Escalation

/ FreeBSD 12.0-RELEASE x64 Kernel Exploit Usage: $ clang -o exploit exploit.c -lpthread $ ./exploit / include include include include include include include include define KERNEL include undef KERNEL define WANTFILE include include include include include define WANTSOCKET include include define...

Moderate: Red Hat Security Advisory: podman security, bug fix, and enhancement update

An update for podman is now available for Red Hat Enterprise Linux 7 Extras. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

openSUSE Security Update : glibc (openSUSE-2020-381)

This update for glibc fixes the following issues : - CVE-2020-10029: Fixed a potential overflow in on-stack buffer during range reduction bsc1165784. - Fixed an issue where pthread were not always locked correctly bsc1164505. - Document mprotect and introduce section on memory protection...

openSUSE: Security Advisory for glibc (openSUSE-SU-2020:0381-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

OPENSUSE-SU-2020:0381-1 Security update for glibc

This update for glibc fixes the following issues: - CVE-2020-10029: Fixed a potential overflow in on-stack buffer during range reduction bsc1165784. - Fixed an issue where pthread were not always locked correctly bsc1164505. - Document mprotect and introduce section on memory protection bsc116318...

Security update for glibc (moderate)

openSUSE Security Update: Security update for glibc Announcement ID: openSUSE-SU-2020:0381-1 Rating: moderate References: 1163184 1164505 1165784 Cross-References: CVE-2020-10029 Affected Products: openSUSE Leap 15.1 An update that solves one vulnerability and has two fixes is now available...

SUSE SLED15 / SLES15 Security Update : glibc (SUSE-SU-2020:0668-1)

This update for glibc fixes the following issues : CVE-2020-10029: Fixed a potential overflow in on-stack buffer during range reduction bsc1165784. Fixed an issue where pthread were not always locked correctly bsc1164505. Document mprotect and introduce section on memory protection bsc1163184. No...

SUSE-SU-2020:0668-1 Security update for glibc

This update for glibc fixes the following issues: - CVE-2020-10029: Fixed a potential overflow in on-stack buffer during range reduction bsc1165784. - Fixed an issue where pthread were not always locked correctly bsc1164505. - Document mprotect and introduce section on memory protection bsc116318...

DEBIAN-CVE-2019-1010025

GNU Libc current is affected by: Mitigation bypass. The impact is: Attacker may guess the heap addresses of pthreadcreated thread. The component is: glibc. NOTE: the vendor's position is "ASLR bypass itself is not a vulnerability...

Design/Logic Flaw

DISPUTED GNU Libc current is affected by: Mitigation bypass. The impact is: Attacker may guess the heap addresses of pthreadcreated thread. The component is: glibc. NOTE: the vendor's position is "ASLR bypass itself is not a vulnerability."...

CVE-2019-1010025

GNU Libc current is affected by: Mitigation bypass. The impact is: Attacker may guess the heap addresses of pthreadcreated thread. The component is: glibc. NOTE: the vendor's position is "ASLR bypass itself is not a vulnerability...

PT-2019-11441 · Gnu +1 · Glibc +1

Name of the Vulnerable Software and Affected Versions: glibc affected versions not specified Description: The issue concerns a mitigation bypass in glibc, allowing an attacker to potentially guess the heap addresses of pthread-created threads. The vendor's stance is that ASLR bypass itself is not...

OPENSUSE-SU-2019:1250-1 Security update for glibc

This update for glibc fixes the following issues: Security issue fixed: - CVE-2016-10739: Fixed an improper implementation of getaddrinfo function which could allow applications to incorrectly assume that had parsed a valid string, without the possibility of embedded HTTP headers or other...

Linux Kernel 4.11.8 - mq_notify: double sock_put() Local Privilege Escalation

Linux Kernel 4.11.8 - mqnotify: double sockput Local Privilege Escalation / CVE-2017-11176: "mqnotify: double sockput" by LEXFO 2018. DISCLAIMER: The following code is for EDUCATIONAL purpose only. Do not use it on a system without authorizations. WARNING: The exploit WILL NOT work on your target...

Linux Kernel < 3.16.39 (Debian 8 x64) - inotfiy Local Privilege Escalation Exploit

Exploit for linux platform in category local exploits / CVE-2017-7533 inotfiy linux kernel vulnerability. $ gcc -o exploit exploit.c -lpthread $./exploit Listening for events. Listening for events. alloclen : 50 longname="testdir/bbbb32103210321032100��1����" handleevents event-name : b, event-le...

Linux kernel < 4.10.15 - Race Condition Privilege Escalation Exploit

Exploit for linux platform in category local exploits PoC for CVE-2017-10661, triggers UAF with KASan enabled in kernel 4.10 / include include include include include include include include include include include include include include include include include define RACETIME 1000000 int fd; in...

Linux kernel &lt; 4.10.15 - Race Condition Privilege Escalation

/ PoC for CVE-2017-10661, triggers UAF with KASan enabled in kernel 4.10 / include include include include include include include include include include include include include include include include include define RACETIME 1000000 int fd; int fddumb; int count=0; void listaddthreadvoid arg in...

Linux kernel 4.10.15 - Race Condition Privilege Escalation

Linux kernel 4.10.15 - Race Condition Privilege Escalation / PoC for CVE-2017-10661, triggers UAF with KASan enabled in kernel 4.10 / include include include include include include include include include include include include include include include include include define RACETIME 1000000 int...