13 matches found
CLSA-2026-1776940861 screen: Fix of CVE-2023-24626
CVE-2023-24626: fix missing signal sending permission check on failed query messages...
EUVD-2009-1335
Malware in sbrugna...
EUVD-2025-5223
Malicious code in bioql PyPI...
CVE-2025-46805
A flaw was found in Screen. A possible denial of service caused by race conditions when sending signals exists. The CheckPid function drops privileges to the real user ID and tests whether the kernel can send a signal to the target PID using these credentials. The signal is sent later via Kill,...
SUSE CVE-2025-46805
Screen version 5.0.0 and older version 4 releases have a TOCTOU race potentially allowing to send SIGHUP, SIGCONT to privileged processes when installed setuid-root...
CVE-2025-21728
In the Linux kernel, the following vulnerability has been resolved: bpf: Send signals asynchronously if !preemptible BPF programs can execute in all kinds of contexts and when a program running in a non-preemptible context uses the bpfsendsignal kfunc, it will cause issues because this kfunc can...
ROS-20240329-13
Vulnerability of PostgreSQL database management system is related to the possibility of sending signals to superuser processes using the pgsignalbackend role. to superuser processes using the pgsignalbackend role. Exploitation of the vulnerability could allow a remote attacker to cause a denial o...
UBUNTU-CVE-2020-16126
An Ubuntu-specific modification to AccountsService in versions before 0.6.55-0ubuntu13.2, among other earlier versions, improperly dropped the ruid, allowing untrusted users to send signals to AccountService, thus stopping it from handling D-Bus messages in a timely fashion...
kernel: possible to send arbitrary signals to a privileged (suidroot) parent process
A flaw was found in the Linux kernel loose validation of child/parent process identification handling while filtering signal handlers. A local attacker is able to abuse this flaw to bypass checks to send any signal to a privileged process...
Linux kernel 2.0/2.1 SIGIO Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/111/info A vulnerability in the Linux kernel allows any user to send a SIGIO signal to any process. If the process does not catch or ignore the signal is will exit. / On non-glibc systems you must add define OASYNC FASYNC...
fuser -- missing user's privileges check
Denis Barov reports: sysutils/fuser allows user to send any signal to any process when installed with suid bit...
KDE start_kdeinit privilege escalation
It's possible to execute code with root privileges or send signals to privileged processes...
PT-2003-2252 · Apache +2 · Apache Http Server +2
Name of the Vulnerable Software and Affected Versions: Apache HTTP Server with mod php module affected versions not specified Description: The mod php module for the Apache HTTP Server allows local users with write access to PHP scripts to send signals to the server's process group and use the...