Linux 4.10 __do_semtimedop() Use-After-Free

Linux versions from 4.10 suffers from a use-after-free condition in dosemtimedop due to a lockless check outside RCU section...

Ubuntu: Security Advisory (USN-3082-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-3082-2: Linux kernel (OMAP4) vulnerability

Chiachih Wu, Yuan-Tsung Lo, and Xuxian Jiang discovered that the legacy ABI for ARM OABI had incomplete access checks for epollwait2 and semtimedop2. A local attacker could use this to possibly execute arbitrary code...

PT-2012-1532 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.39 Description: The issue is related to an integer overflow in the sys oabi semtimedop function, which can be exploited by local users to gain privileges or cause a denial of service, resulting in heap memor...

Linux Kernel 'semtimedop' OABI封装堆缓冲区溢出漏洞

Bugtraq ID: 47645 Linux是一款开放源代码的操作系统。 当设置了CONFIGOABICOMPAT时，semtimedop封装程序没有正确对nsops参数进行边界检查，超大值可绕过安全检查，并分配过小的缓冲区，后续拷贝过多数据到分配的缓冲区可触发缓冲区溢出。 Linux kernel 2.6.37 Linux kernel 2.6.36 Linux kernel 2.6.35 Linux kernel 2.6.35 Linux kernel 2.6.35 Linux kernel 2.6.34 Linux kernel 2.6.34 Linux kernel 2.6.3...