PT-2021-7327 · Linux +9 · Linux Kernel +9

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A memory leak flaw in the Linux kernel's hugetlbfs memory usage was found in the way a user maps some regions of memory twice using the shmget function, which are aligned to PUD...

Updated x11vnc package fixes a security vulnerability

scan.c in x11vnc 0.9.16 uses IPCCREAT|0777 in shmget calls, which allows access by actors other than the current user. CVE-2020-29074...

Privilege Escalation

x11vnc is vulnerable to privilege escalation. The vulnerability exists through scan.c in IPCCREAT|0777 in shmget calls, which allows access by actors other than the current user...

CVE-2020-29074

scan.c in x11vnc 0.9.16 uses IPCCREAT|0777 in shmget calls, which allows access by actors other than the current user...

CVE-2020-29074

scan.c in x11vnc 0.9.16 uses IPCCREAT|0777 in shmget calls, which allows access by actors other than the current user...

DEBIAN-CVE-2020-29074

scan.c in x11vnc 0.9.16 uses IPCCREAT|0777 in shmget calls, which allows access by actors other than the current user...

CVE-2020-29074

scan.c in x11vnc 0.9.16 uses IPCCREAT|0777 in shmget calls, which allows access by actors other than the current user...

Design/Logic Flaw

scan.c in x11vnc 0.9.16 uses IPCCREAT|0777 in shmget calls, which allows access by actors other than the current user...

CVE-2020-29074

scan.c in x11vnc 0.9.16 uses IPCCREAT|0777 in shmget calls, which allows access by actors other than the current user...

CVE-2020-29074

CVE-2020-29074 affects x11vnc 0.9.16 where scan.c uses IPC_CREAT|0777 in shmget, enabling access by other users. Connected advisories (Fedora, Debian) confirm this vulnerability and reference x11vnc as the affected component. CVSS details show high impact (C/H/I/A) with network exposure and low a...

CVE-2020-29074

scan.c in x11vnc 0.9.16 uses IPCCREAT|0777 in shmget calls, which allows access by actors other than the current user...

CVE-2020-29074

scan.c in x11vnc 0.9.16 uses IPCCREAT|0777 in shmget calls, which allows access by actors other than the current user...

Libvnc X11vnc Security Vulnerabilities

Libvnc X11vnc is a software for Unix platforms used to connect to remote desktops by the Libvnc community. A security vulnerability exists in x11vnc version 0.9.16, which stems from scan.c's use of IPC CREAT|0777 in the shmget call, which allows access by participants other than the current user...

Amazon Linux AMI : kernel (ALAS-2017-814)

Possible double free in stcpsendmsg incorrect fix for CVE-2017-5986 : It was found that the code in net/sctp/socket.c in the Linux kernel through 4.10.1 does not properly restrict association peel-off operations during certain wait states, which allows local users to cause a denial of service...

Linux kernel local security bypass vulnerability (CNVD-2017-02602)

The Linux kernel is the kernel used by the operating system Linux, released by the Linux Foundation in the United States. A security vulnerability exists in the 'doshmat' function in the ipc/shm.c file in Linux kernel versions 4.9.12 and earlier. A local attacker can exploit this vulnerability to...

DEBIAN-CVE-2017-5669

The doshmat function in ipc/shm.c in the Linux kernel through 4.9.12 does not restrict the address calculated by a certain rounding operation, which allows local users to map page zero, and consequently bypass a protection mechanism that exists for the mmap system call, by making crafted shmget a...

CVE-2017-5669

The doshmat function in ipc/shm.c in the Linux kernel through 4.9.12 does not restrict the address calculated by a certain rounding operation, which allows local users to map page zero, and consequently bypass a protection mechanism that exists for the mmap system call, by making crafted shmget a...

CVE-2017-5669

The doshmat function in ipc/shm.c in the Linux kernel through 4.9.12 does not restrict the address calculated by a certain rounding operation, which allows local users to map page zero, and consequently bypass a protection mechanism that exists for the mmap system call, by making crafted shmget a...

UBUNTU-CVE-2017-5669

The doshmat function in ipc/shm.c in the Linux kernel through 4.9.12 does not restrict the address calculated by a certain rounding operation, which allows local users to map page zero, and consequently bypass a protection mechanism that exists for the mmap system call, by making crafted shmget a...

BSD/OS <= 4.0,FreeBSD <= 3.2,Linux kernel <= 2.3,NetBSD <= 1.4 Shared Memory Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/526/info Operating systems with a shared memory implementation based on or influenced by the 4.4BSD code may be vulnerable to a denial of service attack The problem exists because you can mmap or shmget as much memory as...