Kernel: net: leakage of uninitialized memory to user-space via recv syscalls

The Linux kernel before 3.12.4 updates certain length values before ensuring that associated data structures have been initialized, which allows local users to obtain sensitive information from kernel stack memory via a 1 recvfrom, 2 recvmmsg, or 3 recvmsg system call, related to net/ipv4/ping.c,...

Ubuntu Update for linux USN-2096-1

Check for the Version of linux OpenVAS Vulnerability Test $Id: gbubuntuUSN20961.nasl 7957 2017-12-01 06:40:08Z santu $ Ubuntu Update for linux USN-2096-1 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; yo...

Ubuntu Update for linux-lts-raring USN-2094-1

Check for the Version of linux-lts-raring OpenVAS Vulnerability Test $Id: gbubuntuUSN20941.nasl 7957 2017-12-01 06:40:08Z santu $ Ubuntu Update for linux-lts-raring USN-2094-1 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This progra...

Ubuntu: Security Advisory (USN-2095-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu: Security Advisory (USN-2094-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu Update for linux-lts-saucy USN-2095-1

Check for the Version of linux-lts-saucy OpenVAS Vulnerability Test $Id: gbubuntuUSN20951.nasl 7957 2017-12-01 06:40:08Z santu $ Ubuntu Update for linux-lts-saucy USN-2095-1 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program ...

USN-2095-1: Linux kernel (Saucy HWE) vulnerability

Pageexec reported a bug in the Linux kernel's recvmsg syscall when called from code using the x32 ABI. An unprivileged local user could exploit this flaw to cause a denial of service system crash or gain administrator privileges...

USN-2094-1: Linux kernel (Raring HWE) vulnerability

Pageexec reported a bug in the Linux kernel's recvmsg syscall when called from code using the x32 ABI. An unprivileged local user could exploit this flaw to cause a denial of service system crash or gain administrator privileges...

Ubuntu 12.04 LTS : linux-lts-raring vulnerability (USN-2094-1)

Pageexec reported a bug in the Linux kernel's recvmsg syscall when called from code using the x32 ABI. An unprivileged local user could exploit this flaw to cause a denial of service system crash or gain administrator privileges. Note that Tenable Network Security has extracted the preceding...

Ubuntu 12.04 LTS : linux-lts-saucy vulnerability (USN-2095-1)

Pageexec reported a bug in the Linux kernel's recvmsg syscall when called from code using the x32 ABI. An unprivileged local user could exploit this flaw to cause a denial of service system crash or gain administrator privileges. Note that Tenable Network Security has extracted the preceding...

Ubuntu 13.10 : linux vulnerability (USN-2096-1)

Pageexec reported a bug in the Linux kernel's recvmsg syscall when called from code using the x32 ABI. An unprivileged local user could exploit this flaw to cause a denial of service system crash or gain administrator privileges. Note that Tenable Network Security has extracted the preceding...

Kernel: atm: update msg_namelen in vcc_recvmsg()

The vccrecvmsg function in net/atm/common.c in the Linux kernel before 3.9-rc7 does not initialize a certain length variable, which allows local users to obtain sensitive information from kernel stack memory via a crafted recvmsg or recvfrom system call...