489 matches found
USN-1941-1: Linux kernel vulnerabilities
Chanam Park reported a Null pointer flaw in the Linux kernel's Ceph client. A remote attacker could exploit this flaw to cause a denial of service system crash. CVE-2013-1059 Vasily Kulikov discovered a flaw in the Linux Kernel's perf tool that allows for privilege escalation. A local user could...
Ubuntu 13.04 : linux vulnerabilities (USN-1938-1)
Vasily Kulikov discovered a flaw in the Linux Kernel's perf tool that allows specified to be run as root. A local could exploit this flaw to run commands as root when using the perf tool. user could exploit this CVE-2013-1060 A flaw was discovered in the Xen subsystem of the Linux kernel when it...
Ubuntu: Security Advisory (USN-1938-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-1938-1: Linux kernel vulnerabilities
Vasily Kulikov discovered a flaw in the Linux Kernel's perf tool that allows specified to be run as root. A local could exploit this flaw to run commands as root when using the perf tool. user could exploit this CVE-2013-1060 A flaw was discovered in the Xen subsystem of the Linux kernel when it...
CVE-2013-4162
The udpv6pushpendingframes function in net/ipv6/udp.c in the IPv6 implementation in the Linux kernel through 3.10.3 makes an incorrect function call for pending data, which allows local users to cause a denial of service BUG and system crash via a crafted application that uses the UDPCORK option ...
CVE-2013-4163
The ip6appenddatamtu function in net/ipv6/ip6output.c in the IPv6 implementation in the Linux kernel through 3.10.3 does not properly maintain information about whether the IPV6MTU setsockopt option had been specified, which allows local users to cause a denial of service BUG and system crash via...
Information disclosure
The ip6appenddatamtu function in net/ipv6/ip6output.c in the IPv6 implementation in the Linux kernel through 3.10.3 does not properly maintain information about whether the IPV6MTU setsockopt option had been specified, which allows local users to cause a denial of service BUG and system crash via...
UBUNTU-CVE-2013-4163
The ip6appenddatamtu function in net/ipv6/ip6output.c in the IPv6 implementation in the Linux kernel through 3.10.3 does not properly maintain information about whether the IPV6MTU setsockopt option had been specified, which allows local users to cause a denial of service BUG and system crash via...
CVE-2013-4163
The ip6appenddatamtu function in net/ipv6/ip6output.c in the IPv6 implementation in the Linux kernel through 3.10.3 does not properly maintain information about whether the IPV6MTU setsockopt option had been specified, which allows local users to cause a denial of service BUG and system crash via...
CVE-2013-4162
The udpv6pushpendingframes function in net/ipv6/udp.c in the IPv6 implementation in the Linux kernel through 3.10.3 makes an incorrect function call for pending data, which allows local users to cause a denial of service BUG and system crash via a crafted application that uses the UDPCORK option ...
UBUNTU-CVE-2013-4162
The udpv6pushpendingframes function in net/ipv6/udp.c in the IPv6 implementation in the Linux kernel through 3.10.3 makes an incorrect function call for pending data, which allows local users to cause a denial of service BUG and system crash via a crafted application that uses the UDPCORK option ...
CVE-2013-4163
CVE-2013-4163 affects the Linux kernel IPv6 path (ip6_output.c: ip6_append_data_mtu). The bug stems from not correctly tracking whether IPV6_MTU was set via setsockopt, enabling local attackers to crash the system by crafting a UDP_CORK-reliant application. Impact is local denial of service/OS cr...
CVE-2013-4163
The ip6appenddatamtu function in net/ipv6/ip6output.c in the IPv6 implementation in the Linux kernel through 3.10.3 does not properly maintain information about whether the IPV6MTU setsockopt option had been specified, which allows local users to cause a denial of service BUG and system crash via...
CVE-2013-4162
The udpv6pushpendingframes function in net/ipv6/udp.c in the IPv6 implementation in the Linux kernel through 3.10.3 makes an incorrect function call for pending data, which allows local users to cause a denial of service BUG and system crash via a crafted application that uses the UDPCORK option ...
CVE-2013-4163
The ip6appenddatamtu function in net/ipv6/ip6output.c in the IPv6 implementation in the Linux kernel through 3.10.3 does not properly maintain information about whether the IPV6MTU setsockopt option had been specified, which allows local users to cause a denial of service BUG and system crash via...
CVE-2013-0310
The cipsov4validate function in net/ipv4/cipsoipv4.c in the Linux kernel before 3.4.8 allows local users to cause a denial of service NULL pointer dereference and system crash or possibly have unspecified other impact via an IPOPTCIPSO IPOPTIONS setsockopt system call...
CVE-2013-0310
The cipsov4validate function in net/ipv4/cipsoipv4.c in the Linux kernel before 3.4.8 allows local users to cause a denial of service NULL pointer dereference and system crash or possibly have unspecified other impact via an IPOPTCIPSO IPOPTIONS setsockopt system call...
CVE-2013-0310
The cipsov4validate function in net/ipv4/cipsoipv4.c in the Linux kernel before 3.4.8 allows local users to cause a denial of service NULL pointer dereference and system crash or possibly have unspecified other impact via an IPOPTCIPSO IPOPTIONS setsockopt system call...
UBUNTU-CVE-2013-0310
The cipsov4validate function in net/ipv4/cipsoipv4.c in the Linux kernel before 3.4.8 allows local users to cause a denial of service NULL pointer dereference and system crash or possibly have unspecified other impact via an IPOPTCIPSO IPOPTIONS setsockopt system call...
PT-2013-2222 · Linux +3 · Linux Kernel +3
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 3.4.8 Description: The issue allows local users to cause a denial of service, resulting in a system crash due to a NULL pointer dereference. This is achieved through an IPOPT CIPSO IP OPTIONS setsockopt system...