Lucene search
+L

364 matches found

redhat
redhat
added 2008/12/16 7:30 a.m.9 views

kernel: don't allow splice() to files opened with O_APPEND

The dosplicefrom function in fs/splice.c in the Linux kernel before 2.6.27 does not reject file descriptors that have the OAPPEND flag set, which allows local users to bypass append mode and make arbitrary changes to other locations in the file...

4.6CVSS5.9AI score0.00392EPSS
Exploits1References4
nessus
nessus
added 2008/12/16 12:0 a.m.43 views

Debian DSA-1687-1 : linux-2.6 - denial of service/privilege escalation

Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or privilege escalation. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2008-3527 Tavis Ormandy reported a local DoS and potential privilege escalation...

7.8CVSS5.8AI score0.0368EPSS
Exploits12References20
osv
osv
added 2008/12/15 12:0 a.m.45 views

DSA-1687-1 fai-kernels linux-2.6 user-mode-linux - several vulnerabilities

Bulletin has no description...

7.8CVSS5.8AI score0.0368EPSS
Exploits12
nessus
nessus
added 2008/12/05 12:0 a.m.59 views

Debian DSA-1681-1 : linux-2.6.24 - denial of service/privilege escalation

Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or privilege escalation. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2008-3528 Eugene Teo reported a local DoS issue in the ext2 and ext3 filesystem...

10CVSS5.8AI score0.05261EPSS
Exploits6References23
ubuntu
ubuntu
added 2008/11/27 5:43 p.m.78 views

USN-679-1: Linux kernel vulnerabilities

It was discovered that the Xen hypervisor block driver did not correctly validate requests. A user with root privileges in a guest OS could make a malicious IO request with a large number of blocks that would crash the host OS, leading to a denial of service. This only affected Ubuntu 7.10...

7.8CVSS7.1AI score0.0368EPSS
Exploits7
redhat
redhat
added 2008/11/04 10:11 a.m.4 views

kernel: splice: fix bad unlock_page() in error case

fs/splice.c in the splice subsystem in the Linux kernel before 2.6.22.2 does not properly handle a failure of the addtopagecachelru function, and subsequently attempts to unlock a page that was not locked, which allows local users to cause a denial of service kernel BUG and system crash, as...

5.5CVSS6.1AI score0.00616EPSS
Exploits1References4
attackerkb
attackerkb
added 2008/10/15 8:7 p.m.22 views

CVE-2008-4554

The dosplicefrom function in fs/splice.c in the Linux kernel before 2.6.27 does not reject file descriptors that have the OAPPEND flag set, which allows local users to bypass append mode and make arbitrary changes to other locations in the file...

4.6CVSS5.7AI score0.00392EPSS
Exploits1References26
nessus
nessus
added 2008/10/14 12:0 a.m.48 views

Debian DSA-1653-1 : linux-2.6 - denial of service/privilege escalation

Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or privilege escalation. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2007-6716 Joe Jin reported a local denial of service vulnerability that allows...

7.2CVSS6.1AI score0.03209EPSS
Exploits7References15
ptsecurity
ptsecurity
added 2008/10/03 12:0 a.m.3 views

PT-2008-5180 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.19 Description: The issue allows local users to gain the privileges of a different group, and obtain sensitive information or possibly have unspecified other impact, by splicing into an inode in order to...

7.1CVSS6.3AI score0.03209EPSS
Exploits5References174
nvd
nvd
added 2008/09/29 5:17 p.m.21 views

CVE-2008-4302

fs/splice.c in the splice subsystem in the Linux kernel before 2.6.22.2 does not properly handle a failure of the addtopagecachelru function, and subsequently attempts to unlock a page that was not locked, which allows local users to cause a denial of service kernel BUG and system crash, as...

5.5CVSS5AI score0.00616EPSS
Exploits1References15
ubuntucve
ubuntucve
added 2008/09/29 5:17 p.m.35 views

CVE-2008-4302

fs/splice.c in the splice subsystem in the Linux kernel before 2.6.22.2 does not properly handle a failure of the addtopagecachelru function, and subsequently attempts to unlock a page that was not locked, which allows local users to cause a denial of service kernel BUG and system crash, as...

5.5CVSS6.1AI score0.00616EPSS
Exploits1References1
prion
prion
added 2008/09/29 5:17 p.m.22 views

Design/Logic Flaw

fs/splice.c in the splice subsystem in the Linux kernel before 2.6.22.2 does not properly handle a failure of the addtopagecachelru function, and subsequently attempts to unlock a page that was not locked, which allows local users to cause a denial of service kernel BUG and system crash, as...

4.9CVSS6AI score0.00616EPSS
Exploits1References15Affected Software3
cvelist
cvelist
added 2008/09/29 5:0 p.m.35 views

CVE-2008-4302

fs/splice.c in the splice subsystem in the Linux kernel before 2.6.22.2 does not properly handle a failure of the addtopagecachelru function, and subsequently attempts to unlock a page that was not locked, which allows local users to cause a denial of service kernel BUG and system crash, as...

5.1AI score0.00616EPSS
Exploits1References15
cve
cve
added 2008/09/29 5:0 p.m.77 views

CVE-2008-4302

CVE-2008-4302 affects the Linux kernel splice subsystem specifically fs/splice.c. The root cause is a failure in add_to_page_cache_lru, after which code attempts to unlock a page that was not locked, enabling a local user to trigger a kernel BUG and system crash (denial of service). Public adviso...

5.5CVSS5.1AI score0.00616EPSS
Exploits1References15Affected Software1
ptsecurity
ptsecurity
added 2008/09/29 12:0 a.m.4 views

PT-2008-5563 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.22.2 Description: The issue is related to the splice subsystem in the Linux kernel, where a failure in the add to page cache lru function is not properly handled, leading to an attempt to unlock a page that...

7.1CVSS5.5AI score0.03209EPSS
Exploits5References177
oraclelinux
oraclelinux
added 2008/09/24 12:0 a.m.71 views

kernel security and bug fix update

2.6.18-92.1.13.0.1.el5 - NET Add entropy support to e1000 and bnx2 John Sobecki orabug 6045759 - splice Fix bad unlockpage in error case Jens Axboe orabug 6263574 - NET fix netpoll race Tina Yang orabugz 5791 2.6.18-92.1.13.el5 - md fix crashes in iteraterdev Doug Ledford 460128 455471 - sound...

7.2CVSS0.2AI score0.00518EPSS
Exploits7
redhat
redhat
added 2008/07/14 1:38 p.m.5 views

ruby: integer overflow in rb_ary_splice/update/replace() - REALLOC_N

Integer overflow in the 1 rbarysplice function in Ruby 1.8.4 and earlier, 1.8.5 before 1.8.5-p231, 1.8.6 before 1.8.6-p230, and 1.8.7 before 1.8.7-p22; and 2 the rbaryreplace function in 1.6.x allows context-dependent attackers to trigger memory corruption via unspecified vectors, aka the...

7.8CVSS7.1AI score0.037EPSS
Exploits1References4
redhat
redhat
added 2008/07/14 1:38 p.m.5 views

ruby: integer overflow in rb_ary_splice/update/replace() - beg + rlen

Integer overflow in the 1 rbarysplice function in Ruby 1.8.4 and earlier, 1.8.5 before 1.8.5-p231, 1.8.6 before 1.8.6-p230, 1.8.7 before 1.8.7-p22, and 1.9.0 before 1.9.0-2; and 2 the rbaryreplace function in 1.6.x allows context-dependent attackers to trigger memory corruption, aka the "beg +...

7.8CVSS7AI score0.03759EPSS
Exploits1References4
redhat
redhat
added 2008/07/14 1:26 p.m.5 views

ruby: integer overflow in rb_ary_splice/update/replace() - beg + rlen

Integer overflow in the 1 rbarysplice function in Ruby 1.8.4 and earlier, 1.8.5 before 1.8.5-p231, 1.8.6 before 1.8.6-p230, 1.8.7 before 1.8.7-p22, and 1.9.0 before 1.9.0-2; and 2 the rbaryreplace function in 1.6.x allows context-dependent attackers to trigger memory corruption, aka the "beg +...

7.8CVSS7AI score0.03759EPSS
Exploits1References4
oraclelinux
oraclelinux
added 2008/06/26 12:0 a.m.61 views

kernel security and bug fix update

2.6.18-92.1.6.0.2.el5 - NET Add entropy support to e1000 and bnx2 John Sobecki orabug 6045759 - splice Fix bad unlockpage in error case Jens Axboe orabug 6263574 - dio fix error-path crashes Linus Torvalds orabug 6242289 - NET fix netpoll race Tina Yang orabugz 5791 2.6.18-92.1.6.el5 - x86 sanity...

10CVSS0.7AI score0.07091EPSS
Exploits5
Rows per page
Query Builder