EUVD-2008-3901

Malware in sbrugna...

Heap overflow

Heap-based buffer overflow in the stripescapes function in signal.c in GNU ed before 1.0 allows context-dependent or user-assisted attackers to execute arbitrary code via a long filename. NOTE: since ed itself does not typically run with special privileges, this issue only crosses privilege...

CVE-2008-3916

Heap-based buffer overflow in the stripescapes function in signal.c in GNU ed before 1.0 allows context-dependent or user-assisted attackers to execute arbitrary code via a long filename. NOTE: since ed itself does not typically run with special privileges, this issue only crosses privilege...

CVE-2008-3916

Heap-based buffer overflow in the stripescapes function in signal.c in GNU ed before 1.0 allows context-dependent or user-assisted attackers to execute arbitrary code via a long filename. NOTE: since ed itself does not typically run with special privileges, this issue only crosses privilege...

Linux Kernel auto-reap ptraced子进程本地拒绝服务漏洞

BUGTRAQ ID: 15625 CVECAN ID: CVE-2005-3784 Linux Kernel是开放源码操作系统Linux所使用的内核。 Linux Kernel对系统进程的处理上存在问题，本地攻击者可能利用此漏洞进行拒绝服务攻击。 漏洞存在于signal.c文件中，内核对子进程执行auto-reap操作时，操作对象包含了已经被ptrace附着的进程，这可能导致ptrace引用混乱，允许本地攻击者触发拒绝服务问题。 Linux kernel = 2.6.15-rc2 S.u.S.E. Linux Enterprise Server 9 S.u.S.E. Linux...

CVE-2005-3527

CVE-2005-3527 describes a race condition in the Linux 2.6 kernel’s do_coredump (signal.c) that can cause a denial of service when a core dump is triggered in one thread while another thread has a pending SIGSTOP. The vulnerability is a kernel-level issue affecting 2.6-series kernels as cited by m...

CVE-2005-3527

Race condition in docoredump in signal.c in Linux kernel 2.6 allows local users to cause a denial of service by triggering a core dump in one thread while another thread has a pending SIGSTOP...