1905 matches found
kernel: md: NULL pointer deref when accessing suspend_* sysfs attributes
The md driver drivers/md/md.c in the Linux kernel before 2.6.30.2 might allow local users to cause a denial of service NULL pointer dereference via vectors related to "suspend sysfs attributes" and the 1 suspendlostore or 2 suspendhistore functions. NOTE: this is only a vulnerability when sysfs i...
RHEL 5 : kernel (RHSA-2009:1455)
The remote Redhat Enterprise Linux 5 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2009:1455 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security fix: a NULL pointer dereference flaw was found in the...
Moderate: Red Hat Security Advisory: kernel security and bug fix update
Updated kernel packages that fix one security issue and several bugs are now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Updated 23rd February 2010 This update adds references to two KBase articles...
kernel: md: NULL pointer deref when accessing suspend_* sysfs attributes
The md driver drivers/md/md.c in the Linux kernel before 2.6.30.2 might allow local users to cause a denial of service NULL pointer dereference via vectors related to "suspend sysfs attributes" and the 1 suspendlostore or 2 suspendhistore functions. NOTE: this is only a vulnerability when sysfs i...
Linux kernel md驱动本地拒绝服务漏洞
CVECAN ID: CVE-2009-2849 Linux Kernel是开放源码操作系统Linux所使用的内核。 Linux Kernel的md驱动(drivers/md/md.c)中存在拒绝服务漏洞,本地用户可以通过suspend sysfs属性和suspendlostore或suspendhistore函数触发空指针引用。只有在sysfs可写的情况下才可以利用这个漏洞。以下是有漏洞的代码段: static ssizet suspendlostoremddevt mddev, const char buf, sizet len char e; unsigned long long...
Null pointer dereference
The md driver drivers/md/md.c in the Linux kernel before 2.6.30.2 might allow local users to cause a denial of service NULL pointer dereference via vectors related to "suspend sysfs attributes" and the 1 suspendlostore or 2 suspendhistore functions. NOTE: this is only a vulnerability when sysfs i...
CVE-2009-2849
The md driver drivers/md/md.c in the Linux kernel before 2.6.30.2 might allow local users to cause a denial of service NULL pointer dereference via vectors related to "suspend sysfs attributes" and the 1 suspendlostore or 2 suspendhistore functions. NOTE: this is only a vulnerability when sysfs i...
CVE-2009-2849
The md driver drivers/md/md.c in the Linux kernel before 2.6.30.2 might allow local users to cause a denial of service NULL pointer dereference via vectors related to "suspend sysfs attributes" and the 1 suspendlostore or 2 suspendhistore functions. NOTE: this is only a vulnerability when sysfs i...
CVE-2009-2849
The md driver drivers/md/md.c in the Linux kernel before 2.6.30.2 might allow local users to cause a denial of service NULL pointer dereference via vectors related to "suspend sysfs attributes" and the 1 suspendlostore or 2 suspendhistore functions. NOTE: this is only a vulnerability when sysfs i...
CVE-2009-2849
CVE-2009-2849 affects the Linux kernel md driver (drivers/md/md.c) prior to version 2.6.30.2. The issue allows local attackers to trigger a NULL pointer dereference in suspend_lo_store and suspend_hi_store via writable sysfs suspend_* attributes, potentially causing a denial of service. The vulne...
Ordinary users by udev vulnerability to elevate to root permissions demo-vulnerability warning-the black bar safety net
Recently exposed by the udev permissions hint of vulnerability, as long as with normal user permissions, you can elevate to root privileges, the experiment a handful, really easy to upgrade. Put the following code saved as test. sh file !/ bin/sh Linux 2.6 bug found by Sebastian Krahmer lame splo...
Fedora Core 10 FEDORA-2009-3711 (udev)
The remote host is missing an update to udev announced via advisory FEDORA-2009-3711. OpenVAS Vulnerability Test $Id: fcore20093711.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-3711 udev Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft...
[SECURITY] Fedora 10 Update: udev-127-5.fc10
The udev package contains an implementation of devfs in userspace using sysfs and netlink...
[SECURITY] Fedora 9 Update: udev-124-4.fc9
The udev package contains an implementation of devfs in userspace using sysfs and netlink...
kernel: dell_rbu local oops
drivers/firmware/dellrbu.c in the Linux kernel before 2.6.27.13, and 2.6.28.x before 2.6.28.2, allows local users to cause a denial of service system crash via a read system call that specifies zero bytes from the 1 imagetype or 2 packetsize file in /sys/devices/platform/dellrbu/...
Important: kernel security and bug fix update
2.6.18-53.1.6.0.1.el5 - NET Add entropy support to e1000 and bnx2 John Sobecki ORA 6045759 - NET Fix msi issue with kexec/kdump Michael Chan ORA 6219364 - MM Fix allocpagesnode static nid' race made kernel crash Joe Jin ORA 6187457 - splice Fix bad unlockpage in error case Jens Axboe ORA 6263574 ...
Null pointer to an inode in a dentry can cause an oops in sysfs_readdir
The sysfsreaddir function in the Linux kernel 2.6, as used in Red Hat Enterprise Linux RHEL 4.5 and other distributions, allows users to cause a denial of service kernel OOPS by dereferencing a null pointer to an inode in a dentry...
SuSE 10 Security Update : Linux kernel (i386) (ZYPP Patch Number 2097)
This kernel update fixes the following security problems : - A double userspace copy in a SCTP ioctl allows local attackers to overflow a buffer in the kernel, potentially allowing code execution and privilege escalation. 199441. CVE-2006-3745 - Local attackers were able to crash PowerPC systems...
Debian DSA-1428-2 : linux-2.6 - several vulnerabilities
Several local and remote vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or the execution of arbitrary code. The Common Vulnerabilities and Exposures project identifies the following problems : This is an update to DSA 1428-1 which omitted a reference...
Fedora Core 6 : kernel-2.6.22.14-72.fc6 (2007-759)
Update to Linux 2.6.22.14: http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.22.10 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.22.11 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.22.12 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.22.13...