20 matches found
EUVD-2009-0856
Malware in sbrugna...
SUSE CVE-2005-0176
The shmctl function in Linux 2.6.9 and earlier allows local users to unlock the memory of other processes, which could cause sensitive memory to be swapped to disk, which could allow it to be read by other users once it has been released...
SUSE CVE-2006-4342
The kernel in Red Hat Enterprise Linux 3, when running on SMP systems, allows local users to cause a denial of service deadlock by running the shmat function on an shm at the same time that shmctl is removing that shm IPCRMID, which prevents a spinlock from being unlocked...
SUSE CVE-2010-4072
The copyshmidtouser function in ipc/shm.c in the Linux kernel before 2.6.37-rc1 does not initialize a certain structure, which allows local users to obtain potentially sensitive information from kernel stack memory via vectors related to the shmctl system call and the "old shm interface."...
Memory Overwrite
github.com/google/gvisor is vulnerable to memory overwrite attacks. The vulnerability through repeated calls of shmctlIPCRMID which forces a segment to be destroyed prematurely. This could be reused and accessible by a different process...
Memory corruption
pkg/sentry/kernel/shm/shm.go in Google gVisor before 2018-11-01 allows attackers to overwrite memory locations in processes running as root but not escape the sandbox via vectors involving IPCRMID shmctl calls, because reference counting is mishandled...
CVE-2018-19333
pkg/sentry/kernel/shm/shm.go in Google gVisor before 2018-11-01 allows attackers to overwrite memory locations in processes running as root but not escape the sandbox via vectors involving IPCRMID shmctl calls, because reference counting is mishandled...
CVE-2018-19333
CVE-2018-19333 affects Google gVisor (pkg/sentry/kernel/shm/shm.go) prior to 2018-11-01. The issue arises from mishandled reference counting, allowing attackers to overwrite memory locations in processes running as root (but not escape the sandbox) via IPC_RMID shmctl-related vectors. This is a m...
CVE-2013-7026
Multiple race conditions in ipc/shm.c in the Linux kernel before 3.12.2 allow local users to cause a denial of service use-after-free and system crash or possibly have unspecified other impact via a crafted application that uses shmctl IPCRMID operations in conjunction with other shm system calls...
kernel: ipc/shm.c: reading uninitialized stack memory
The copyshmidtouser function in ipc/shm.c in the Linux kernel before 2.6.37-rc1 does not initialize a certain structure, which allows local users to obtain potentially sensitive information from kernel stack memory via vectors related to the shmctl system call and the "old shm interface."...
kernel: ipc/shm.c: reading uninitialized stack memory
The copyshmidtouser function in ipc/shm.c in the Linux kernel before 2.6.37-rc1 does not initialize a certain structure, which allows local users to obtain potentially sensitive information from kernel stack memory via vectors related to the shmctl system call and the "old shm interface."...
CVE-2010-4072
The copyshmidtouser function in ipc/shm.c in the Linux kernel before 2.6.37-rc1 does not initialize a certain structure, which allows local users to obtain potentially sensitive information from kernel stack memory via vectors related to the shmctl system call and the "old shm interface."...
CVE-2010-4072
The copyshmidtouser function in ipc/shm.c in the Linux kernel before 2.6.37-rc1 does not initialize a certain structure, which allows local users to obtain potentially sensitive information from kernel stack memory via vectors related to the shmctl system call and the "old shm interface."...
CVE-2010-4072
The copyshmidtouser function in ipc/shm.c in the Linux kernel before 2.6.37-rc1 does not initialize a certain structure, which allows local users to obtain potentially sensitive information from kernel stack memory via vectors related to the shmctl system call and the "old shm interface."...
Debian DSA-1787-1 : linux-2.6.24 - denial of service/privilege escalation/information leak
Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or privilege escalation. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2008-4307 Bryn M. Reeves reported a denial of service in the NFS filesystem...
Linux Kernel /ipc/shm.c文件本地拒绝服务漏洞
BUGTRAQ ID: 34020 CVECAN ID: CVE-2009-0859 Linux Kernel是开放源码操作系统Linux所使用的内核。 如果禁用了CONFIGSHMEM的话,Linux Kernel的shm子系统中ipc/shm.c文件的shmgetstat函数没有正确地解释inode的数据类型,这允许本地用户通过SHMINFO shmctl调用导致系统挂起。 Linux kernel 2.6.x 厂商补丁: Linux ----- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...
security flaw
The kernel in Red Hat Enterprise Linux 3, when running on SMP systems, allows local users to cause a denial of service deadlock by running the shmat function on an shm at the same time that shmctl is removing that shm IPCRMID, which prevents a spinlock from being unlocked...
PT-2006-5148 · Red Hat · Red Hat
Name of the Vulnerable Software and Affected Versions: Red Hat Enterprise Linux version 3 Description: The issue allows local users to cause a denial of service, resulting in a deadlock. This occurs when the shmat function is run on a shared memory segment at the same time that the shmctl functio...
security flaw
The shmctl function in Linux 2.6.9 and earlier allows local users to unlock the memory of other processes, which could cause sensitive memory to be swapped to disk, which could allow it to be read by other users once it has been released...
security flaw
The shmctl function in Linux 2.6.9 and earlier allows local users to unlock the memory of other processes, which could cause sensitive memory to be swapped to disk, which could allow it to be read by other users once it has been released...