Important: Red Hat Security Advisory: kernel security, bug fix, and enhancement update

Updated kernel packages that fix multiple security issues, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 7. The Red Hat Security Response Team has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base score...

Linux Kernel信息泄漏漏洞(CVE-2014-2568)

Bugtraq ID:66348 CVE ID:CVE-2014-2568 Linux Kernel是一款开源的操作系统。 Linux Kernel skbzerocopy拷贝skb到用户空间缓冲区时存在安全漏洞，允许攻击者利用漏洞获取敏感内存信息，导致敏感信息泄漏。 0 Linux Kernel 用户可参考厂商的GIT库以获得补丁修复此漏洞： https://lkml.org/lkml/2014/3/20/421...

Design/Logic Flaw

Use-after-free vulnerability in the nfqnlzcopy function in net/netfilter/nfnetlinkqueuecore.c in the Linux kernel through 3.13.6 allows attackers to obtain sensitive information from kernel memory by leveraging the absence of a certain orphaning operation. NOTE: the affected code was moved to the...

CVE-2014-2568

Use-after-free vulnerability in the nfqnlzcopy function in net/netfilter/nfnetlinkqueuecore.c in the Linux kernel through 3.13.6 allows attackers to obtain sensitive information from kernel memory by leveraging the absence of a certain orphaning operation. NOTE: the affected code was moved to the...

CVE-2014-2568

Use-after-free vulnerability in the nfqnlzcopy function in net/netfilter/nfnetlinkqueuecore.c in the Linux kernel through 3.13.6 allows attackers to obtain sensitive information from kernel memory by leveraging the absence of a certain orphaning operation. NOTE: the affected code was moved to the...