security flaw

Mozilla Firefox 1.5 before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via simultaneous XPCOM events, which causes a timer object to be deleted in a way that triggers memory corrupti...

Mandrake Linux Security Advisory : kernel (MDKSA-2006:123)

A number of vulnerabilities were discovered and corrected in the Linux 2.6 kernel : The kernel did not clear sockaddrin.sinzero before returning IPv4 socket names for the getsockopt function, which could allow a local user to obtain portions of potentially sensitive memory if getsockopt is called...

CVE-2006-2445

Race condition in runposixcputimers in Linux kernel before 2.6.16.21 allows local users to cause a denial of service BUGON crash by causing one CPU to attach a timer to a process that is exiting...

Back-End CMS 0.7.2.2 - BE_config.php Remote File Inclusion

Back-End CMS 0.7.2.2 - BEconfig.php Remote File Inclusion DEVIL TEAM THE BEST POLISH TEAM Back-End CMS - Remote File Include Vulnerabilities Find by Kacper Rahim. Greetings For ALL DEVIL TEAM members, Special DragonHeart : Contact: [email protected] or http://www.devilteam.yum.pl Site of script...

Back-End CMS 0.7.2.2 - 'BE_config.php' Remote File Inclusion

DEVIL TEAM THE BEST POLISH TEAM Back-End CMS - Remote File Include Vulnerabilities Find by Kacper Rahim. Greetings For ALL DEVIL TEAM members, Special DragonHeart : Contact: [email protected] or http://www.devilteam.yum.pl Site of script: http://www.back-end.org / BEconfig.php Line 27-31: code...

Moderate: Red Hat Security Advisory: Updated kernel packages available for Red Hat Enterprise Linux 4 Update 3

Updated kernel packages are now available as part of ongoing support and maintenance of Red Hat Enterprise Linux version 4. This is the third regular update. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The Linux kernel handles the basic...

Mandrake Linux Security Advisory : kernel (MDKSA-2006:018)

A number of vulnerabilities have been corrected in the Linux kernel : A race condition in the 2.6 kernel could allow a local user to cause a DoS by triggering a core dump in one thread while another thread has a pending SIGSTOP CVE-2005-3527. The ptrace functionality in 2.6 kernels prior to...

Ubuntu 4.10 / 5.04 : linux-source-2.6.10, linux-source-2.6.8.1 vulnerabilities (USN-178-1)

Oleg Nesterov discovered a local Denial of Service vulnerability in the timer handling. When a non group-leader thread called exec to execute a different program while an itimer was pending, the timer expiry would signal the old group leader task, which did not exist any more. This caused a kerne...

SUSE-SA:2005:068: kernel

The remote host is missing the patch for the advisory SUSE-SA:2005:068 kernel. The Linux kernel was updated to fix several security problems and several bugs, listed below: Security fixes: - CVE-2005-3783: A check in ptrace2 handling that finds out if a process is attaching to itself was incorrec...

CVE-2005-3805

A locking problem in POSIX timer cleanup handling on exit in Linux kernel 2.6.10 to 2.6.14, when running on SMP systems, allows local users to cause a denial of service deadlock involving process CPU timers...

CVE-2005-3805

A locking problem in POSIX timer cleanup handling on exit in Linux kernel 2.6.10 to 2.6.14, when running on SMP systems, allows local users to cause a denial of service deadlock involving process CPU timers...

CVE-2005-3805

A locking problem in POSIX timer cleanup handling on exit in Linux kernel 2.6.10 to 2.6.14, when running on SMP systems, allows local users to cause a denial of service deadlock involving process CPU timers...

CVE-2005-3805

CVE-2005-3805 describes a locking issue in the POSIX timer cleanup on exit for Linux kernel 2.6.10–2.6.14 on SMP systems, enabling local users to cause a denial of service (deadlock) related to process CPU timers. Affected products/versions are Linux kernel 2.6.10–2.6.14 on SMP; the root cause is...

CVE-2005-3274

Race condition in ipvsconnflush in Linux 2.6 before 2.6.13 and 2.4 before 2.4.32-pre2, when running on SMP systems, allows local users to cause a denial of service null dereference by causing a connection timer to expire while the connection table is being flushed before the appropriate lock is...

CVE-2005-3274

Race condition in ipvsconnflush in Linux 2.6 before 2.6.13 and 2.4 before 2.4.32-pre2, when running on SMP systems, allows local users to cause a denial of service null dereference by causing a connection timer to expire while the connection table is being flushed before the appropriate lock is...

security flaw

Race condition in ipvsconnflush in Linux 2.6 before 2.6.13 and 2.4 before 2.4.32-pre2, when running on SMP systems, allows local users to cause a denial of service null dereference by causing a connection timer to expire while the connection table is being flushed before the appropriate lock is...

security flaw

Race condition in ipvsconnflush in Linux 2.6 before 2.6.13 and 2.4 before 2.4.32-pre2, when running on SMP systems, allows local users to cause a denial of service null dereference by causing a connection timer to expire while the connection table is being flushed before the appropriate lock is...

CVE-2002-1983

CVE-2002-1983 affects QNX RTOS 6.1.0. The timer implementation is vulnerable: by creating multiple timers with a 1‑ms tick, local users can cause a denial of service (hang) and potentially execute arbitrary code. Impact described as local, with partial availability impact. No explicit remediation...

CVE-2002-1983

The timer implementation in QNX RTOS 6.1.0 allows local users to cause a denial of service hang and possibly execute arbitrary code by creating multiple timers with a 1-ms tick...

CVE-2005-0356

Multiple TCP implementations with Protection Against Wrapped Sequence Numbers PAWS with the timestamps option enabled allow remote attackers to cause a denial of service connection loss via a spoofed packet with a large timer value, which causes the host to discard later packets because they appe...