14 matches found
Astra Linux - уязвимость в linux
The fs/seqfile.c file in the Linux kernel versions 3.16 through 5.13.x, prior to 5.13.4, does not properly restrict seq buffer allocations. This results in an integer overflow, an Out-of-bounds Write, and an escalation of privileges to the root user by an unprivileged user, identified as...
CVE-2022-50380
In the Linux kernel, the following vulnerability has been resolved: mm: /proc/pid/smapsrollup: fix no vma's null-deref Commit 258f669e7e88 "mm: /proc/pid/smapsrollup: convert to single value seqfile" introduced a null-deref if there are no vma's in the task in showsmapsrollup...
Important: kernel
Issue Overview: An out-of-bounds write flaw was found in the Linux kernel's seqfile in the Filesystem layer. This flaw allows a local attacker with a user privilege to gain access to out-of-bound memory, leading to a system crash or a leak of internal kernel information. The issue results from no...
kernel: size_t-to-int conversion vulnerability in the filesystem layer
An out-of-bounds write flaw was found in the Linux kernel's seqfile in the Filesystem layer. This flaw allows a local attacker with a user privilege to gain access to out-of-bound memory, leading to a system crash, leak of internal kernel information and can escalate privileges. The issue results...
kernel: size_t-to-int conversion vulnerability in the filesystem layer
An out-of-bounds write flaw was found in the Linux kernel's seqfile in the Filesystem layer. This flaw allows a local attacker with a user privilege to gain access to out-of-bound memory, leading to a system crash, leak of internal kernel information and can escalate privileges. The issue results...
kernel: size_t-to-int conversion vulnerability in the filesystem layer
An out-of-bounds write flaw was found in the Linux kernel's seqfile in the Filesystem layer. This flaw allows a local attacker with a user privilege to gain access to out-of-bound memory, leading to a system crash, leak of internal kernel information and can escalate privileges. The issue results...
kernel: size_t-to-int conversion vulnerability in the filesystem layer
An out-of-bounds write flaw was found in the Linux kernel's seqfile in the Filesystem layer. This flaw allows a local attacker with a user privilege to gain access to out-of-bound memory, leading to a system crash, leak of internal kernel information and can escalate privileges. The issue results...
AZL-6565 CVE-2021-33909 affecting package kernel for versions less than 5.10.78.1-1
fs/seqfile.c in the Linux kernel 3.16 through 5.13.x before 5.13.4 does not properly restrict seq buffer allocations, leading to an integer overflow, an Out-of-bounds Write, and escalation to root by an unprivileged user, aka CID-8cae8cd89f05...
kernel: Use after free in seq file
A flaw was found in the Linux kernel's implementation of seqfile where a local attacker could manipulate memory in the put function pointer. This could lead to memory corruption and possible privileged escalation...
kernel: Use after free in seq file
A flaw was found in the Linux kernel's implementation of seqfile where a local attacker could manipulate memory in the put function pointer. This could lead to memory corruption and possible privileged escalation...
kernel: Use after free in seq file
A flaw was found in the Linux kernel's implementation of seqfile where a local attacker could manipulate memory in the put function pointer. This could lead to memory corruption and possible privileged escalation...
Unbreakable Enterprise kernel security update
2.6.39-400.294.7 - udp: properly support MSGPEEK with truncated buffers Eric Dumazet Orabug: 25874741 CVE-2016-10229 - block: fix use-after-free in seq file Vegard Nossum Orabug: 25877531 CVE-2016-7910...
kernel: Use after free in seq file
A flaw was found in the Linux kernel's implementation of seqfile where a local attacker could manipulate memory in the put function pointer. This could lead to memory corruption and possible privileged escalation...
Critical kernel security update: vulnerability fixes CVE-2016-7910, CVE-2016-7911 (and other), new kernel 2.6.32-042stab120.11
This update provides a new Virtuozzo 6.0 kernel 2.6.32-042stab120.11 based on the Red Hat Enterprise Linux 6.8 kernel 2.6.32-642.6.1.el6. The new kernel provides security and stability fixes. Vulnerability id: CVE-2016-1583 Stack overflow via ecryptfs and /proc/$pid/environ. It was found that...