7 matches found
Denial Of Service (DoS)
kernel is vulnerable to denial of service. Missing sanity checks were found in setupargpages in the Linux kernel. When making the size of the argument and environment area on the stack very large, it could trigger a BUGON, resulting in a local denial of service...
RHEL 5 : kernel (RHSA-2011:0004)
Updated kernel packages that fix multiple security issues, several bugs, and add an enhancement are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, whi...
Linux Kernel "setup_arg_pages()"本地拒绝服务漏洞
BUGTRAQ ID: 44301 CVE ID: CVE-2010-3858 Linux Kernel是开放源码操作系统Linux所使用的内核。 Linux Kernel在实现上存在漏洞,本地攻击者可利用此漏洞导致系统崩溃。 setupargpages的CONFIGSTACKGROWSDOWN变量未检测堆栈上argument/environment区域的大小。过大时,shiftargpages会命中其BUGON。用非常大的RLIMITSTACK限制时可被利用轻易地造成系统崩溃。 Linux kernel 2.6.0 - 2.6.37 厂商补丁: Linux -----...
Sql injection
The setupargpages function in fs/exec.c in the Linux kernel before 2.6.36, when CONFIGSTACKGROWSDOWN is used, does not properly restrict the stack memory consumption of the 1 arguments and 2 environment for a 32-bit application on a 64-bit platform, which allows local users to cause a denial of...
CVE-2010-3858
The setupargpages function in fs/exec.c in the Linux kernel before 2.6.36, when CONFIGSTACKGROWSDOWN is used, does not properly restrict the stack memory consumption of the 1 arguments and 2 environment for a 32-bit application on a 64-bit platform, which allows local users to cause a denial of...
Linux Kernel 'setup_arg_pages()' Denial of Service Vulnerability
Exploit for linux platform in category dos / poc ================================================================ Linux Kernel 'setupargpages' Denial of Service Vulnerability ================================================================ / known for over a year, fixed in grsec bug is due to a b...
Linux Kernel 2.6.37 - 'setup_arg_pages()' Denial of Service
// source: https://www.securityfocus.com/bid/44301/info / known for over a year, fixed in grsec bug is due to a bad limit on the max size of the stack for 32bit apps on a 64bit OS. Instead of them being limited to 1/4th of a 32bit address space, they're limited to 1/4th of a 64bit address space -...