Updated libffi packages fix security vulnerability

libffi, a library used to call code written in one language from code written in a different language, was enforcing an executable stack on the i386 architecture. While this might not be considered a vulnerability by itself, this could be leveraged when exploiting other vulnerabilities, such as t...

Slackware 14.0 : Slackware 14.0 kernel (SSA:2017-184-01) (Stack Clash)

New kernel packages are available for Slackware 14.0 to fix security issues. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Slackware Security Advisory 2017-184-01. The text itself is copyright C Slackware Linux, Inc...

Slackware 14.2 / current : glibc (SSA:2017-181-01) (Stack Clash)

New glibc packages are available for Slackware 14.2 and -current to fix security issues. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Slackware Security Advisory 2017-181-01. The text itself is copyright C Slackwar...

SUSE SLES12 Security Update : kernel (SUSE-SU-2017:1735-1) (Stack Clash)

This Linux kernel update for SUSE Linux Enterprise 12 fixes the following issues : - A previous security update to address CVE-2017-1000364 caused unintended side-effects in several other tools, most notably Java. These issues have been remedied. bsc1045340 Note that Tenable Network Security has...

openSUSE Security Update : the Linux Kernel (openSUSE-2017-734) (Stack Clash)

The openSUSE Leap 42.2 kernel was updated to 4.4.73 to receive security and bugfixes. The following security bugs were fixed : - CVE-2017-1000364: An issue was discovered in the size of the stack guard page on Linux, specifically a 4k stack guard page is not sufficiently large and can be 'jumped'...

openSUSE Security Update : glibc (openSUSE-2017-715) (Stack Clash)

This update for glibc fixes the following issues : - CVE-2017-1000366: Fix a potential privilege escalation vulnerability that allowed unprivileged system users to manipulate the stack of setuid binaries to gain special privileges. bsc1039357 - A bug in glibc that could result in deadlocks betwee...

OracleVM 3.4 : Unbreakable / etc (OVMSA-2017-0115) (Stack Clash)

The remote OracleVM system is missing necessary patches to address critical security updates : - mm: fix new crash in unmappedareatopdown Hugh Dickins Orabug: 26326143 CVE-2017-1000364 - mm: larger stack guard gap, between vmas Hugh Dickins Orabug: 26326143 CVE-2017-1000364 %NASLMINLEVEL 70300 C...

openSUSE Security Update : exim (openSUSE-2017-714) (Stack Clash)

This update for exim fixes the following issues : - CVE-2017-1000369: Fixed a memory leak in exim commandline handling, which could be used to exhaust memory and make 'stack crash' attacks likely. boo1044692 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package...

Ubuntu 12.04 LTS : linux regression (USN-3338-2) (Stack Clash)

USN-3338-1 fixed vulnerabilities in the Linux kernel. However, the fix for CVE-2017-1000364 introduced regressions for some Java applications. This update addresses the issue. We apologize for the inconvenience. It was discovered that the stack guard page for processes in the Linux kernel was not...

Ubuntu 12.04 LTS : eglibc vulnerability (USN-3323-2) (Stack Clash)

USN-3323-1 fixed a vulnerability in the GNU C Library. This update provides the corresponding update for Ubuntu 12.04 ESM. It was discovered that the GNU C library did not properly handle memory when processing environment variables for setuid programs. A local attacker could use this in...

[slackware-security] Slackware 14.1 kernel

New kernel packages are available for Slackware 14.1 to fix security issues. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/linux-3.10.107/: Upgraded. This kernel fixes two "Stack Clash" vulnerabilities reported by Qualys. The first issue may allow attackers to execute...

Oracle Solaris 11.1/11.3 (RSH) - Local Privilege Escalation Stack Clash Exploit

Exploit for solaris platform in category local exploits / Solarisrsh.c for CVE-2017-3630, CVE-2017-3629, CVE-2017-3631 Copyright C 2017 Qualys, Inc. This program is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free...

NetBSD - Stack Clash (PoC) Exploit

Exploit for netbsd/x86 platform in category dos / poc / NetBSDCVE-2017-1000375.c please compile with -O0 Copyright C 2017 Qualys, Inc. This program is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software...

FreeBSD - FGPE Stack Clash (PoC) Exploit

Exploit for freebsd/x86 platform in category dos / poc / FreeBSDCVE-2017-FGPE.c for CVE-2017-1084 please compile with -O0 Copyright C 2017 Qualys, Inc. This program is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Fre...

OpenBSD - at Local Privilege Escalation Stack Clash Exploit

Exploit for openbsd/x86 platform in category dos / poc / OpenBSDat.c for CVE-2017-1000373 Copyright c 2017 Qualys, Inc. slowsort adapted from lib/libc/stdlib/qsort.c: Copyright c 1992, 1993 The Regents of the University of California. All rights reserved. Redistribution and use in source and bina...

FreeBSD - setrlimit Stack Clash (PoC) Exploit

Exploit for freebsd/x86 platform in category dos / poc / FreeBSDCVE-2017-1085.c Copyright C 2017 Qualys, Inc. This program is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation, either version 3 of...

FreeBSD - FGPU Stack Clash (PoC) Exploit

Exploit for freebsd/x86 platform in category dos / poc / FreeBSDCVE-2017-FGPU.c for CVE-2017-1084 please compile with -O0 Copyright C 2017 Qualys, Inc. This program is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Fre...

Linux Kernel - offset2lib Stack Clash Exploit

Exploit for linux platform in category local exploits / Linuxoffset2lib.c for CVE-2017-1000370 and CVE-2017-1000371 Copyright C 2017 Qualys, Inc. This program is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free...

NetBSD - Stack Clash (PoC)

NetBSD - Stack Clash PoC / NetBSDCVE-2017-1000375.c please compile with -O0 Copyright C 2017 Qualys, Inc. This program is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation, either version 3 of the...

SUSE SLES12 Security Update : kernel (SUSE-SU-2017:1704-1) (Stack Clash)

This Linux kernel update for SUSE Linux Enterprise 12 SP1 fixes the following issues : - A previous security update to address CVE-2017-1000364 caused unintended side-effects in several other tools, most notably Java. These issues have been remedied. bsc1045340 Note that Tenable Network Security...