618 matches found
CVE-2015-2830
arch/x86/kernel/entry64.S in the Linux kernel before 3.19.2 does not prevent the TSCOMPAT flag from reaching a user-mode task, which might allow local users to bypass the seccomp or audit protection mechanism via a crafted application that uses the 1 fork or 2 close system call, as demonstrated b...
Code injection
arch/x86/kernel/entry64.S in the Linux kernel before 3.19.2 does not prevent the TSCOMPAT flag from reaching a user-mode task, which might allow local users to bypass the seccomp or audit protection mechanism via a crafted application that uses the 1 fork or 2 close system call, as demonstrated b...
CVE-2015-2830
arch/x86/kernel/entry64.S in the Linux kernel before 3.19.2 does not prevent the TSCOMPAT flag from reaching a user-mode task, which might allow local users to bypass the seccomp or audit protection mechanism via a crafted application that uses the 1 fork or 2 close system call, as demonstrated b...
CVE-2015-2830
CVE-2015-2830 affects the Linux kernel (arch/x86/kernel/entry_64.S) prior to 3.19.2. The TS_COMPAT flag can reach a user-mode task, potentially allowing local attackers to bypass seccomp or audit protections via crafted applications using fork or close. A fix is available in 3.19.2 and later; att...
CVE-2015-2830
arch/x86/kernel/entry64.S in the Linux kernel before 3.19.2 does not prevent the TSCOMPAT flag from reaching a user-mode task, which might allow local users to bypass the seccomp or audit protection mechanism via a crafted application that uses the 1 fork or 2 close system call, as demonstrated b...
CVE-2015-2830
arch/x86/kernel/entry64.S in the Linux kernel before 3.19.2 does not prevent the TSCOMPAT flag from reaching a user-mode task, which might allow local users to bypass the seccomp or audit protection mechanism via a crafted application that uses the 1 fork or 2 close system call, as demonstrated b...
UBUNTU-CVE-2015-2830
arch/x86/kernel/entry64.S in the Linux kernel before 3.19.2 does not prevent the TSCOMPAT flag from reaching a user-mode task, which might allow local users to bypass the seccomp or audit protection mechanism via a crafted application that uses the 1 fork or 2 close system call, as demonstrated b...
Did the “Man With No Name” Feel Insecure?
Posted by James Forshaw, Taker of Names Sometimes when I'm doing security research I'll come across a bug which surprises me. I discovered just such a bug in the Windows version of Chrome which exposed a little-known security detail in the OS. The bug, CVE-2014-3196 was fixed in M38, so it seemed...
docker 0.11 VMM-container Breakout
No description provided by source. / shocker: docker PoC VMM-container breakout C 2014 Sebastian Krahmer Demonstrates that any given docker image someone is asking you to run in your docker setup can access ANY file on your host, e.g. dumping hosts /etc/shadow or other sensitive info, compromisin...
Linux Kernel 2.6.x 'seccomp' System Call Security Bypass Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/33948/info The Linux kernel is prone to a local security-bypass vulnerability. A local attacker may be able to exploit this issue to bypass access control and make restricted system calls, which may result in an elevation...
[oss-security] CVE request: Another Linux syscall auditing bug
On a 32-bit x86 kernel with syscall auditing enabled, syscall1000 will cause an OOPS. This problem goes at least as far back as Linux 3.11 and appears to be present in Linux 3.15 as well. I suspect that this bug is very old. In order to see this bug, you'll need syscall auditing on auditctl -e 1...
DEBIAN-CVE-2014-4157
arch/mips/include/asm/threadinfo.h in the Linux kernel before 3.14.8 on the MIPS platform does not configure TIFSECCOMP checks on the fast system-call path, which allows local users to bypass intended PRSETSECCOMP restrictions by executing a crafted application without invoking a trace or audit...
CVE-2014-4157
arch/mips/include/asm/threadinfo.h in the Linux kernel before 3.14.8 on the MIPS platform does not configure TIFSECCOMP checks on the fast system-call path, which allows local users to bypass intended PRSETSECCOMP restrictions by executing a crafted application without invoking a trace or audit...
openSUSE Security Update : chromium (openSUSE-SU-2014:0668-1)
Update to Chromium 34.0.1847.132 - Security update : - CVE-2014-1730: Type confusion in V8 - CVE-2014-1731: Type confusion in DOM - CVE-2014-1732: Use-after-free in Speech Recognition - CVE-2014-1733: Compiler bug in Seccomp-BPF - CVE-2014-1734: Various fixes from internal audits, fuzzing and...
Updated chromium-browser-stable packages fix multiple vulnerabilities
Updated chromium-browser-stable packages fix security vulnerabilities: A type confusion issue was discovered in the v8 javascript library CVE-2014-1730. John Butler discovered a type confusion issue in the WebKit/Blink document object model implementation CVE-2014-1731. Khalil Zhani discovered a...
Debian DSA-2920-1 : chromium-browser - security update
Several vulnerabilities have been discovered in the chromium web browser. - CVE-2014-1730 A type confusion issue was discovered in the v8 JavaScript library. - CVE-2014-1731 John Butler discovered a type confusion issue in the WebKit/Blink document object model implementation. - CVE-2014-1732...
Debian Security Advisory DSA 2920-1 (chromium-browser - security update)
Several vulnerabilities have been discovered in the chromium web browser. CVE-2014-1730 A type confusion issue was discovered in the v8 javascript library. CVE-2014-1731 John Butler discovered a type confusion issue in the WebKit/Blink document object model implementation. CVE-2014-1732 Khalil...
FreeBSD : chromium -- multiple vulnerabilities (7cf25a0c-d031-11e3-947b-00262d5ed8ee)
Google Chrome Releases reports belatedly : 9 security fixes in this release, including : - 354967 High CVE-2014-1730: Type confusion in V8. Credit to Anonymous. - 349903 High CVE-2014-1731: Type confusion in DOM. Credit to John Butler. - 359802 High CVE-2014-1736: Integer overflow in V8. Credit t...
Google Chrome < 34.0.1847.132 (Linux) Multiple Vulnerabilities
Binary data 8241.pasl...
Google Chrome < 34.0.1847.131 (Windows) Multiple Vulnerabilities
Binary data 8242.pasl...