139 matches found
Null pointer dereference
The sctpsfdo524dupcook function in net/sctp/smstatefuns.c in the SCTP implementation in the Linux kernel before 3.8.5 does not properly handle associations during the processing of a duplicate COOKIE ECHO chunk, which allows remote attackers to cause a denial of service NULL pointer dereference a...
CVE-2013-2206
CVE-2013-2206 concerns the Linux kernel SCTP implementation. The sctp_sf_do_5_2_4_dupcook function in net/sctp/sm_statefuns.c does not properly handle associations during processing of a duplicate COOKIE ECHO chunk, allowing remote attackers to trigger a denial of service via NULL pointer derefer...
Null pointer dereference
The SCTP implementation in FreeBSD 8.2 allows remote attackers to cause a denial of service NULL pointer dereference and kernel panic via a crafted ASCONF chunk...
CVE-2012-3549
The CVE-2012-3549 entry involves the SCTP implementation in FreeBSD 8.2, where remote attackers can trigger a denial of service (NULL pointer dereference and kernel panic) by sending a crafted ASCONF chunk. The vulnerability is rooted in the FreeBSD 8.2 SCTP stack handling of ASCONF, leading to a...
Scientific Linux Security Update : kernel on SL4.x i386/x86_64
Security fixes : - A flaw in sctppacketconfig in the Linux kernel's Stream Control Transmission Protocol SCTP implementation could allow a remote attacker to cause a denial of service. CVE-2010-3432, Important - A missing integer overflow check in sndctlnew in the Linux kernel's sound subsystem...
Scientific Linux Security Update : kernel on SL6.x i386/x86_64
This update fixes the following security issues : - Missing sanity checks in the Intel i915 driver in the Linux kernel could allow a local, unprivileged user to escalate their privileges. CVE-2010-2962, Important - compatallocuserspace in the Linux kernel 32/64-bit compatibility layer...
SuSE 10 Security Update : Linux kernel (ZYPP Patch Number 7516)
This kernel update for the SUSE Linux Enterprise 10 SP4 kernel fixes several security issues and bugs. The following security issues were fixed : - The code for evaluating LDM partitions in fs/partitions/ldm.c contained bugs that could crash the kernel for certain corrupted LDM partitions...
RHEL 6 : kernel (RHSA-2011:0498)
Updated kernel packages that fix several security issues, various bugs, and add an enhancement are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, whic...
CVE-2010-0008
The sctprcvootb function in the SCTP implementation in the Linux kernel before 2.6.23 allows remote attackers to cause a denial of service infinite loop via 1 an Out Of The Blue OOTB chunk or 2 a chunk of zero length...
CVE-2010-0008
The sctprcvootb function in the SCTP implementation in the Linux kernel before 2.6.23 allows remote attackers to cause a denial of service infinite loop via 1 an Out Of The Blue OOTB chunk or 2 a chunk of zero length...
CVE-2010-0008
CVE-2010-0008 affects the Linux kernel SCTP implementation prior to 2.6.23. The vulnerability in sctp_rcv_ootb allows remote attackers to cause a denial of service (infinite loop) via an Out Of The Blue (OOTB) chunk or a zero-length chunk. This CVE is also referenced in MiracleLinux AXSA-2010-166...
CVE-2010-0008
The sctprcvootb function in the SCTP implementation in the Linux kernel before 2.6.23 allows remote attackers to cause a denial of service infinite loop via 1 an Out Of The Blue OOTB chunk or 2 a chunk of zero length...
Important: Red Hat Security Advisory: kernel security and bug fix update
Updated kernel packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed...
Code injection
Unspecified vulnerability in the SCTP implementation in Sun Solaris 10, and OpenSolaris before snv120, allows remote attackers to cause a denial of service panic via unspecified packets...
Debian: Security Advisory (DSA-1794-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian DSA-1794-1 : linux-2.6 - denial of service/privilege escalation/information leak
Several vulnerabilities have been discovered in the Linux kernel that may lead to denial of service, privilege escalation, or information leak. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2008-4307 Bryn M. Reeves reported a denial of service in the N...
DSA-1794-1 linux-2.6 - multiple vulnerabilities
Bulletin has no description...
[SECURITY] [DSA 1787-1] New Linux 2.6.24 packages fix several vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ---------------------------------------------------------------------- Debian Security Advisory DSA-1787-1 [email protected] http://www.debian.org/security/ Dann Frazier May 2, 2009 http://www.debian.org/security/faq -...
Debian DSA-1787-1 : linux-2.6.24 - denial of service/privilege escalation/information leak
Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or privilege escalation. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2008-4307 Bryn M. Reeves reported a denial of service in the NFS filesystem...
[SECURITY] [DSA 1787-1] New Linux 2.6.24 packages fix several vulnerabilities
---------------------------------------------------------------------- Debian Security Advisory DSA-1787-1 [email protected] http://www.debian.org/security/ Dann Frazier May 2, 2009 http://www.debian.org/security/faq - ----------------------------------------------------------------------...