CVE-2024-41023 sched/deadline: Fix task_struct reference leak

In the Linux kernel, the following vulnerability has been resolved: sched/deadline: Fix taskstruct reference leak During the execution of the following stress test with linux-rt: stress-ng --cyclic 30 --timeout 30 --minimize --quiet kmemleak frequently reported a memory leak concerning the...

CVE-2024-41023 sched/deadline: Fix task_struct reference leak

In the Linux kernel, the following vulnerability has been resolved: sched/deadline: Fix taskstruct reference leak During the execution of the following stress test with linux-rt: stress-ng --cyclic 30 --timeout 30 --minimize --quiet kmemleak frequently reported a memory leak concerning the...

Linux kernel 安全漏洞

Linux kernel is the kernel used by the Linux Foundation's open source operating system Linux. A security vulnerability exists in the Linux kernel that originates from increasing the reference count of a taskstruct in startdltimer and setting a timer; if enqueuetaskdl is called and canceled before...

CVE-2024-35874

In the Linux kernel, the following vulnerability has been resolved: aio: Fix null ptr deref in aiocomplete wakeup listdelinitcareful needs to be the last access to the wait queue entry - it effectively unlocks access. Previously, finishwait would see the empty list head and skip taking the lock,...

SUSE CVE-2008-3077

arch/x86/kernel/ptrace.c in the Linux kernel before 2.6.25.10 on the x8664 platform leaks taskstruct references into the sys32ptrace function, which allows local users to cause a denial of service system crash or have unspecified other impact via unknown vectors, possibly a use-after-free...

Android Binder Use-After-Free Exploit

This module exploits CVE-2019-2215, which is a use-after-free in Binder in the Android kernel. The bug is a local privilege escalation vulnerability that allows for a full compromise of a vulnerable device. If chained with a browser renderer exploit, this bug could fully compromise a device throu...

Linux - Use-After-Free Reads in show_numa_stats()

/ On NUMA systems, the Linux fair scheduler tracks information related to NUMA faults in taskstruct::numafaults and taskstruct::numagroup. Both of these have broken object lifetimes. Since commit 82727018b0d3 "sched/numa: Call tasknumafree from doexecve", first in v3.13, -numafaults is freed not...

Linux Kernel 3.14.5 (CentOS 7 RHEL) - libfutex Local Privilege Escalation

Linux Kernel 3.14.5 CentOS 7 RHEL - libfutex Local Privilege Escalation / CVE-2014-3153 exploit for RHEL/CentOS 7.0.1406 By Kaiqu Chen [email protected] Based on libfutex and the expoilt for Android by GeoHot. Usage: $gcc exploit.c -o exploit -lpthread $./exploit / include include include include...

Low: Red Hat Security Advisory: kernel security and bug fix update

Updated kernel packages that fix multiple security issues and various bugs are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having low security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...

Заметка про task_struct в ядре Linux.

В посте оформлены кусочки инфы по структуре taskstruct в ядре Linux. Ничего нового или эксклюзивного, но вероятно будет интересно тем, кто хочет разобраться в kernel части ядерных эксплойтов, не читая 1100 страниц Understanding the Linux Kernel. Из-за внедрения в линуксе разнообразных защит ныне...

Linux Kernel sys32_ptrace()函数多个释放后使用漏洞

CVECAN ID: CVE-2008-3077 Linux Kernel是开放源码操作系统Linux所使用的内核。 Linux kernel的arch/x86/kernel/ptrace.c文件中的sys32ptrace函数可能会溢出taskstruct结构的refcount字段，本地攻击者可以在x86-64平台上利用这个漏洞触发释放后使用，导致系统崩溃。 Linux kernel 2.6.25.10 Linux ----- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载：...

CVE-2008-3077

arch/x86/kernel/ptrace.c in the Linux kernel before 2.6.25.10 on the x8664 platform leaks taskstruct references into the sys32ptrace function, which allows local users to cause a denial of service system crash or have unspecified other impact via unknown vectors, possibly a use-after-free...

CVE-2008-3077

arch/x86/kernel/ptrace.c in the Linux kernel before 2.6.25.10 on the x8664 platform leaks taskstruct references into the sys32ptrace function, which allows local users to cause a denial of service system crash or have unspecified other impact via unknown vectors, possibly a use-after-free...

Linux Kernel 2.0.37 - Segment Limit Privilege Escalation

Linux Kernel 2.0.37 - Segment Limit Privilege Escalation / source: https://www.securityfocus.com/bid/523/info This vulnerability has to do with the division of the address space between a user process and the kernel. Because of a bug, if you select a non-standard memory configuration, sometimes...

Linux Kernel 2.0.37 - Segment Limit Privilege Escalation

/ source: https://www.securityfocus.com/bid/523/info This vulnerability has to do with the division of the address space between a user process and the kernel. Because of a bug, if you select a non-standard memory configuration, sometimes user level processes may be given access upto 252Mb of...