Memory Corruption

Linux kernel is vulnerable to memory corruption attacks. This occurs in the fs/timerfd.c file which allows a local user to cause a kernel list corruption or use-after-free via simultaneous operations with a file descriptor which leverage improper mightcancel queuing. An unprivileged local user...

SUSE SLES12 Security Update : kernel (SUSE-SU-2017:3308-1)

This update for the Linux Kernel 3.12.61-5266 fixes several issues. The following security issues were fixed : - CVE-2017-16939: The XFRM dump policy implementation in net/xfrm/xfrmuser.c allowed local users to gain privileges or cause a denial of service use-after-free via a crafted SORCVBUF...

SUSE SLES12 Security Update : kernel (SUSE-SU-2017:3304-1)

This update for the Linux Kernel 3.12.60-5263 fixes several issues. The following security issues were fixed : - CVE-2017-16939: The XFRM dump policy implementation in net/xfrm/xfrmuser.c allowed local users to gain privileges or cause a denial of service use-after-free via a crafted SORCVBUF...

The vulnerability of the `timerfd.c` component in the Linux kernel (fs/timerfd.c), which allows a hacker to increase their privileges and cause a service failure

The vulnerability of the timerfd.c component fs/timerfd.c in the Linux operating system is related to the parallel execution of operations on file descriptors. Exploiting this vulnerability can allow an attacker to increase their privileges and cause service interruptions...

CVE-2017-10661

A race condition was found in the Linux kernel before version 4.11-rc1 in 'fs/timerfd.c' file which allows a local user to cause a kernel list corruption or use-after-free via simultaneous operations with a file descriptor which leverage improper 'mightcancel' queuing. An unprivileged local user...