Lucene search
K

115 matches found

RedHat Linux
RedHat Linux
added 2013/02/20 4:32 p.m.5 views

kernel: net: CIPSO_V4_TAG_LOCAL tag NULL pointer dereference

The cipsov4validate function in net/ipv4/cipsoipv4.c in the Linux kernel before 3.4.8 allows local users to cause a denial of service NULL pointer dereference and system crash or possibly have unspecified other impact via an IPOPTCIPSO IPOPTIONS setsockopt system call...

6.6CVSS6.3AI score0.00317EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2011/05/31 12:0 a.m.6 views

PT-2012-1505 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.39 Description: The issue is related to the sco sock getsockopt old function in the Linux kernel, which does not properly initialize a certain structure. This allows local users to potentially obtain sensiti...

7.8CVSS5.4AI score0.03477EPSS
Exploits5References36
RedHat Linux
RedHat Linux
added 2011/05/10 5:16 p.m.9 views

kernel: bt sco_conninfo infoleak

The scosockgetsockoptold function in net/bluetooth/sco.c in the Linux kernel before 2.6.39 does not initialize a certain structure, which allows local users to obtain potentially sensitive information from kernel stack memory via the SCOCONNINFO option...

1.9CVSS7.1AI score0.00362EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2011/03/10 8:1 p.m.7 views

kernel: possible kernel oops from user MSS

The dotcpsetsockopt function in net/ipv4/tcp.c in the Linux kernel before 2.6.37-rc2 does not properly restrict TCPMAXSEG aka MSS values, which allows local users to cause a denial of service OOPS via a setsockopt call that specifies a small value, leading to a divide-by-zero error or incorrect u...

4.9CVSS5.8AI score0.01355EPSS
Exploits15References4
RedHat Linux
RedHat Linux
added 2008/10/07 7:16 p.m.11 views

Linux kernel dccp_setsockopt_change() integer overflow

Integer overflow in the dccpsetsockoptchange function in net/dccp/proto.c in the Datagram Congestion Control Protocol DCCP subsystem in the Linux kernel 2.6.17-rc1 through 2.6.26.2 allows remote attackers to cause a denial of service panic via a crafted integer value, related to Change L and Chan...

7.1CVSS5.9AI score0.03209EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2007/04/30 4:36 p.m.3 views

security flaw

The doipv6setsockopt function in net/ipv6/ipv6sockglue.c in Linux kernel before 2.6.20, and possibly other versions, allows local users to cause a denial of service oops by calling setsockopt with the IPV6RTHDR option name and possibly a zero option length or invalid option value, which triggers ...

4.4CVSS5.8AI score0.00551EPSS
Exploits0References4
securityvulns
securityvulns
added 2006/11/14 12:0 a.m.85 views

VMSA-2006-0006 - VMware ESX Server 2.5.3 Upgrade Patch 4

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 - - ------------------------------------------------------------------- VMware Security Advisory Advisory ID: VMSA-2006-0006 Synopsis: VMware ESX Server 2.5.3 Upgrade Patch 4 Patch URL: http://www.vmware.com/download/esx/esx-253-200610-patch.html...

7.5CVSS8AI score0.05503EPSS
Exploits2
securityvulns
securityvulns
added 2006/11/14 12:0 a.m.75 views

VMSA-2006-0005 - VMware ESX Server 2.5.4 Upgrade Patch 1

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 - - ------------------------------------------------------------------- VMware Security Advisory Advisory ID: VMSA-2006-0005 Synopsis: VMware ESX Server 2.5.4 Upgrade Patch 1 Patch URL: http://www.vmware.com/download/esx/esx-254-200610-patch.html...

7.5CVSS7.7AI score0.04304EPSS
Exploits1
Cvelist
Cvelist
added 2006/06/23 8:0 p.m.24 views

CVE-2006-3202

The ip6savecontrol function in NetBSD 2.0 through 3.0, under certain configurations, does not check to see if IPv4-mapped sockets are being used before processing IPv6 socket options, which allows local users to cause a denial of service crash by creating an IPv4-mapped IPv6 socket with the...

6.2AI score0.00386EPSS
Exploits0References3
Cvelist
Cvelist
added 2006/04/14 10:0 a.m.21 views

CVE-2005-4782

NetBSD 2.0 before 2.0.4, 2.1 before 2.1.1, and 3, when the kernel is compiled with "options DIAGNOSTIC," allows local users to cause a denial of service kernel assertion panic via a negative linger time in the SOLINGER socket option...

6.1AI score0.00343EPSS
Exploits0References4
securityvulns
securityvulns
added 2005/10/19 12:0 a.m.22 views

Sun Solaris SCTP socket option DoS

No description provided...

1.4AI score
Exploits0References1Affected Software1
CVE
CVE
added 2005/10/14 4:0 a.m.45 views

CVE-2005-3238

Affected software: Solaris 10. The CVE-2005-3238 entry describes multiple unspecified vulnerabilities in SCTP Socket Option Processing that can be exploited locally to cause a denial of service (panic). The available sources indicate local-access impact with no details on the exact root cause, vu...

2.1CVSS6.8AI score0.00334EPSS
Exploits0References4
Cvelist
Cvelist
added 2005/05/10 4:0 a.m.22 views

CVE-2004-2013

Integer overflow in the SCTPSOCKOPTDEBUGNAME SCTP socket option in socket.c in the Linux kernel 2.4.25 and earlier allows local users to execute arbitrary code via an optlen value of -1, which causes kmalloc to allocate 0 bytes of memory...

7.8AI score0.00617EPSS
Exploits1References5
NVD
NVD
added 2004/12/31 5:0 a.m.22 views

CVE-2004-2013

Integer overflow in the SCTPSOCKOPTDEBUGNAME SCTP socket option in socket.c in the Linux kernel 2.4.25 and earlier allows local users to execute arbitrary code via an optlen value of -1, which causes kmalloc to allocate 0 bytes of memory...

7.8CVSS7.8AI score0.00617EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2004/12/31 12:0 a.m.4 views

PT-2004-2909 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel versions 2.4.25 and earlier Description: The issue is related to an integer overflow in the SCTP SOCKOPT DEBUG NAME SCTP socket option in socket.c. This overflow allows local users to execute arbitrary code via an optlen value of...

7.8CVSS7.4AI score0.00617EPSS
Exploits1References7
Rows per page
Query Builder