CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

739 matches found

RedHat Linux•added 2010/04/27 12:46 p.m.•3 views

kernel: bug in GFS/GFS2 locking code leads to dos

The gfs2lock function in the Linux kernel before 2.6.34-rc1-next-20100312, and the gfslock function in the Linux kernel on Red Hat Enterprise Linux RHEL 5 and 6, does not properly remove POSIX locks on files that are setgid without group-execute permission, which allows local users to cause a...

4.9CVSS5.8AI score0.00081EPSS

Exploits2References4

OpenVAS•added 2010/04/19 12:0 a.m.•20 views

Mandriva Update for nss_db MDVSA-2010:077 (nss_db)

Check for the Version of nssdb OpenVAS Vulnerability Test Mandriva Update for nssdb MDVSA-2010:077 nssdb Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

1.9CVSS6.3AI score0.00093EPSS

Exploits1References2

Exploit DB•added 2010/04/09 12:0 a.m.•320 views

ReiserFS (Linux Kernel 2.6.34-rc3 / RedHat / Ubuntu 9.10) - 'xattr' Local Privilege Escalation

!/usr/bin/env python ''' team-edward.py Linux Kernel http://jon.oberheide.org Information: https://bugzilla.redhat.com/showbug.cgi?id=568041 The kernel allows processes to access the internal ".reiserfspriv" directory at the top of a reiserfs filesystem which is used to store xattrs. Permissions...

7.4AI score

Exploits0

OSV•added 2010/04/05 3:30 p.m.•1 views

DEBIAN-CVE-2010-0826

The Free Software Foundation FSF Berkeley DB NSS module aka libnss-db 2.2.3pre1 reads the DBCONFIG file in the current working directory, which allows local users to obtain sensitive information via a symlink attack involving a setgid or setuid application that uses this module...

1.9CVSS6.2AI score0.00093EPSS

Exploits1References1

NVD•added 2010/04/05 3:30 p.m.•12 views

CVE-2010-0826

1.9CVSS5.5AI score0.00093EPSS

Exploits1References12

Prion•added 2010/04/05 3:30 p.m.•17 views

Design/Logic Flaw

1.9CVSS5.9AI score0.00093EPSS

Exploits1References12Affected Software1

Cvelist•added 2010/04/05 3:15 p.m.•18 views

CVE-2010-0826

5.3AI score0.00093EPSS

Exploits1References12

Debian CVE•added 2010/04/05 3:15 p.m.•32 views

CVE-2010-0826

1.9CVSS5.4AI score0.00093EPSS

Exploits1

CVE•added 2010/04/05 3:15 p.m.•79 views

CVE-2010-0826

The CVE-2010-0826 issue affects the Free Software Foundation’s Berkeley DB NSS module (libnss-db) in the nss_db package (2.2.3pre1). The vulnerability arises because DB_CONFIG can be read from the current working directory, enabling a local attacker with setgid/setuid usage of the module to exfil...

1.9CVSS5.4AI score0.00093EPSS

Exploits1References12Affected Software1

RedHat Linux•added 2010/03/30 4:52 p.m.•4 views

kernel: bug in GFS/GFS2 locking code leads to dos

4.9CVSS5.8AI score0.00081EPSS

Exploits2References4

RedHat Linux•added 2010/03/30 4:48 p.m.•2 views

kernel: bug in GFS/GFS2 locking code leads to dos

4.9CVSS5.8AI score0.00081EPSS

Exploits2References4

RedHat Linux•added 2010/03/29 12:0 p.m.•2 views

kernel: bug in GFS/GFS2 locking code leads to dos

4.9CVSS5.8AI score0.00081EPSS

Exploits2References4

RedHat Linux•added 2010/03/29 12:0 p.m.•4 views

kernel: bug in GFS/GFS2 locking code leads to dos

4.9CVSS5.8AI score0.00081EPSS

Exploits2References4

ATTACKERKB•added 2010/03/16 7:30 p.m.•5 views

CVE-2007-6733

The nfslock function in fs/nfs/file.c in the Linux kernel 2.6.9 does not properly remove POSIX locks on files that are setgid without group-execute permission, which allows local users to cause a denial of service BUG and system crash by locking a file on an NFS filesystem and then changing this...

4.9CVSS5.3AI score0.00081EPSS

Exploits4References4

RedHat Linux•added 2010/02/02 9:1 p.m.•4 views

kernel: personality: fix PER_CLEAR_ON_SETID

The personality subsystem in the Linux kernel before 2.6.31-rc3 has a PERCLEARONSETID setting that does not clear the ADDRCOMPATLAYOUT and MMAPPAGEZERO flags when executing a setuid or setgid program, which makes it easier for local users to leverage the details of memory usage to 1 conduct NULL...

7.2CVSS6.1AI score0.0006EPSS

Exploits1References4

RedHat Linux•added 2009/11/03 6:21 p.m.•1 views

kernel: personality: fix PER_CLEAR_ON_SETID

7.2CVSS6.1AI score0.0006EPSS

Exploits1References4

RedHat Linux•added 2009/09/15 8:19 a.m.•52 views

Important: Red Hat Security Advisory: kernel security and bug fix update

Updated kernel packages that fix several security issues and several bugs are now available for Red Hat Enterprise Linux 4. This update has been rated as having important security impact by the Red Hat Security Response Team. Updated 21st July 2010 Added links to KBase articles expanding on three...

7.8CVSS6AI score0.00241EPSS

Exploits6References19

RedHat Linux•added 2009/09/15 8:19 a.m.•1 views

kernel: personality: fix PER_CLEAR_ON_SETID

7.2CVSS6.1AI score0.0006EPSS

Exploits1References4

Prion•added 2009/07/16 3:30 p.m.•21 views

Null pointer dereference

7.2CVSS6.5AI score0.0006EPSS

Exploits1References35Affected Software3

NVD•added 2009/07/16 3:30 p.m.•17 views

CVE-2009-1895