Ubuntu: Security Advisory (USN-3-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu: Security Advisory (USN-15-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2020-8248

A vulnerability in the Pulse Secure Desktop Client Linux 9.1R9 could allow local attackers to escalate privilege...

Best Free Password Manager Software You Can Download For 2018

When it comes to safeguarding your Internet security, installing an antivirus software or running a Secure Linux OS on your system does not mean you are safe enough from all kinds of cyber-threats. Today majority of Internet users are vulnerable to cyber attacks, not because they aren't using any...

Python < 2.5.2 Imageop Module - 'imageop.crop()' Buffer Overflow Vulnerability

No description provided by source. Python's 'imageop' module is prone to a buffer-overflow vulnerability. Successful exploits may allow attackers to execute arbitrary code in the context of applications using the vulnerable Python module. This may result in a compromise of the underlying system...

OpenSSL 0.9.7 < 0.9.7f Vulnerability

The version of OpenSSL installed on the remote host is prior to 0.9.7f. It is, therefore, affected by a vulnerability as referenced in the 0.9.7f advisory. - The derchop script in the openssl package in Trustix Secure Linux 1.5 through 2.1 and other operating systems allows local users to overwri...

Linux Kernel SCTP INIT/INIT-ACK块长度远程拒绝服务漏洞

Bugtraq ID: 47308 Linux是一款开放源代码的操作系统。 在计算INIT/INIT-ACK块长度时，代码只计算了参数长度，而没有计算参数的零填充长度，如AUTH HMACS参数和CHUNKS参数。没有计算零填充长度参数可导致内核触发oops。 Linux kernel 2.6.38 Linux kernel 2.6.37 Linux kernel 2.6.37 Linux kernel 2.6.36 Linux kernel 2.6.35 Linux kernel 2.6.35 Linux kernel 2.6.35 Linux kernel 2.6.34 Linux...

Linux Kernel 'net/ipv6/ip6_output.c' NULL Pointer Dereference DoS

Exploit for linux platform in category dos / poc ================================================================= Linux Kernel 'net/ipv6/ip6output.c' NULL Pointer Dereference DoS ================================================================= Credit: Remi Denis-Courmont Vulnerable: RedHat...

Linux Kernel 'fasync_helper()' Local Privilege Escalation Vulnerability

Exploit for linux platform in category local exploits ======================================================================= Linux Kernel 'fasynchelper' Local Privilege Escalation Vulnerability ======================================================================= Credit: Tavis Ormandy...

Linux Kernel 64bit Personality Handling Local DoS Vulnerability

Exploit for linux platform in category dos / poc ============================================================================= Linux Kernel 64bit Personality Handling Local Denial of Service Vulnerability ============================================================================= Vulnerable:...

Linux Kernel 'fasync_helper()'本地特权提升漏洞

Bugraq ID: 37806 CVE ID：CVE-2009-4141 Linux是一款开放源代码的操作系统。 Linux内核处理锁定fasync文件描述符存在安全漏洞，允许攻击者以内核特权执行任意代码或使系统崩溃。 根据Linus分析，“问题是相同文件描述符可在多个fasync列表上，它可以在特定fasync列表上存在一次，但是文件锁定比较特殊，会使用 'fl-flfasync'列表无视在什么底层设备驱动或其他的情况下增加任意文件到它所属的fasync列表中。" 这个问题是因为它不正确假定某个文件只能在一个fasync列表中，所以fasynchelper会清除FASYNC标记。...

Linux Kernel 'drivers/firewire/ohci.c'空指针引用拒绝服务漏洞

Bugraq ID: 37339 CVE ID：CVE-2009-4138 Linux是一款开放源代码的操作系统。 ohci接口在处理数据长度为零的报文时存在问题，本地攻击者可以利用漏洞对系统进行拒绝服务攻击。 可以打开新1394栈新版本中的任意/dev/fw文件的用户，发送部分ioctls可导致使用ohci 1.0控制器或由于硬件缺陷ohci 1.0模式中使用ohci 1.1控制器的机器崩溃。这可导致fw-,ohci.c中引用空指针。 在那些使用不被列入黑名单的ohci1.1控制器的机器，调用不会发生任何事情，虽然是个缺陷，但不会导致崩溃。 在Red Hat Enterprise...

Linux Kernel Ext4 'move extents' ioctl本地特权提升漏洞

Bugraq ID: 37277 CVE ID：CVE-2009-4131 Linux是一款开放源代码的操作系统。 处理"EXT4IOCMOVEEXT" IOCTL时缺少充分的访问检查，本地攻击者发送特殊构建的IOCTL可以ROOT权限覆盖系统任意文件，导致拒绝服务或特权提升。 Linux kernel 2.6.31 5 Linux kernel 2.6.31 .2 Linux kernel 2.6.31 -rc7 Linux kernel 2.6.31 -rc6 Linux kernel 2.6.31 -rc3 + Trustix Secure Enterprise Linux 2.0...

Python 2.5.2 Imageop Module - imageop.crop() Buffer Overflow

Python 2.5.2 Imageop Module - imageop.crop Buffer Overflow Python's 'imageop' module is prone to a buffer-overflow vulnerability. Successful exploits may allow attackers to execute arbitrary code in the context of applications using the vulnerable Python module. This may result in a compromise of...

Linux Kernel KVM 'KVM_MAX_MCE_BANKS'内存破坏漏洞

Bugraq ID: 37035 Linux是一款开放源代码的操作系统。 Linux内核KVM中存在一个内存破坏问题，本地攻击者可以利用漏洞以超级用户特权执行任意指令。 系统只对32 MCE banksKVMMAXMCEBANKS分配了相应的内存，但是存在漏洞允许用户空间在setupmcgcap & 0xff上填充255，可破坏内核内存。 Linux kernel 2.6.31 .2 Linux kernel 2.6.31 -rc7 + Trustix Secure Enterprise Linux 2.0 + Trustix Secure Linux 2.2 + Trustix...

Expat 2.0.1 UTF-8 Character XML Parsing Remote Denial of Service Vulnerability

No description provided by source. Bugtraq ID: 36097 Class: Input Validation Error Published: Jan 17 2009 12:00AM Updated: Nov 12 2009 08:06PM Credit: Peter Valchev Vulnerable: SuSE openSUSE 11.0 SuSE openSUSE 10.3 SuSE Linux 9 SuSE Linux 11 SuSE Linux 10.0 RedHat Fedora 11 RedHat Fedora 10 RedHa...

Expat 2.0.1 - UTF-8 Character XML Parsing Remote Denial of Service

Expat 2.0.1 - UTF-8 Character XML Parsing Remote Denial of Service Bugtraq ID: 36097 Class: Input Validation Error Published: Jan 17 2009 12:00AM Updated: Nov 12 2009 08:06PM Credit: Peter Valchev Vulnerable: SuSE openSUSE 11.0 SuSE openSUSE 10.3 SuSE Linux 9 SuSE Linux 11 SuSE Linux 10.0 RedHat...

Expat 2.0.1 - UTF-8 Character XML Parsing Remote Denial of Service

Bugtraq ID: 36097 Class: Input Validation Error Published: Jan 17 2009 12:00AM Updated: Nov 12 2009 08:06PM Credit: Peter Valchev Vulnerable: SuSE openSUSE 11.0 SuSE openSUSE 10.3 SuSE Linux 9 SuSE Linux 11 SuSE Linux 10.0 RedHat Fedora 11 RedHat Fedora 10 RedHat Enterprise Linux WS 4 RedHat...

Linux Kernel 'posix-timers.c' NULL指针引用拒绝服务漏洞

Bugraq ID: 35976 Linux是一款开放源代码的操作系统。 kernel/posix-timers.c文件中的"clocknanosleep"函数存在错误，调用clockid等于 CLOCKMONOTONICRAW的donanosleep可导致NULL指针引用而造成系统触发Panic，造成拒绝服务攻击。 Linux kernel 2.6.31 -rc3 + Trustix Secure Enterprise Linux 2.0 + Trustix Secure Linux 2.2 + Trustix Secure Linux 2.1 + Trustix Secure Lin...

Linux Kernel CIFS 'decode_unicode_ssetup()'远程缓冲区溢出漏洞

BUGTRAQ ID: 34612 CNCAN ID：CNCAN-2009042104 Linux是一款开放源代码的操作系统。 Linux Kernel CIFS 'decodeunicodessetup'存在缓冲区溢出，远程攻击者可以利用漏洞使系统崩溃。 在处理unicode字符串域对齐时存在错误，decodeunicodessetup存在不且当的假设，无论何时都进行垫字节处理，因此如果字符串域词对齐的情况下，组合serverDomain字符串的不正确缓冲区大小，可导致内存破坏。 Linux kernel 2.6.29 1 Linux kernel 2.6.29 -git8 Linux...