OESA-2022-1748 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: Using the ioctl function to modify the vcfont.height value through PIOFONT can cause the KASAN: vmalloc-out-of-bounds in sysimageblit problem. Requires tty group permissions to access the device file /dev/tty1.CVE-2021-33656...

CVE-2022-21946

A Incorrect Permission Assignment for Critical Resource vulnerability in the sudoers configuration in cscreen of openSUSE Factory allows any local users to gain the privileges of the tty and dialout groups and access and manipulate any running cscreen seesion. This issue affects: openSUSE Factory...

CVE-2022-21946

A Incorrect Permission Assignment for Critical Resource vulnerability in the sudoers configuration in cscreen of openSUSE Factory allows any local users to gain the privileges of the tty and dialout groups and access and manipulate any running cscreen seesion. This issue affects: openSUSE Factory...

Solaris <= 7.0 ufsdump Local Buffer Overflow Vulnerability (1)

No description provided by source. source: http://www.securityfocus.com/bid/680/info A buffer overflow vulnerability in the /usr/lib/fs/ufs/ufsdump setuid program allows local users to obtain root and tty group access. The vulnerability is the result of 'ufsdump' not being able to handle device...

Solaris <= 7.0 ufsdump Local Buffer Overflow Vulnerability (2)

No description provided by source. source: http://www.securityfocus.com/bid/680/info A buffer overflow vulnerability in the /usr/lib/fs/ufs/ufsdump setuid program allows local users to obtain root and tty group access. The vulnerability is the result of 'ufsdump' not being able to handle device...

Debian Security Advisory DSA 014-1 (splitvt)

The remote host is missing an update to splitvt announced via advisory DSA 014-1. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

xterm security update

192-8.el4 - use correct tty group 239070...

Fedora Core 5 : xterm-223-1.fc5 (2007-024)

Mon Jan 8 2007 Miroslav Lichvar - 223-1.fc5 - update to 223 - use correct tty group 219048 - spec cleanup - Thu Nov 23 2006 Miroslav Lichvar - 213-2.fc5 - fix segfault when /etc/termcap is missing 201246 - Wed May 31 2006 Jason Vas Dias - 213-1 - Upgrade to upstream version 213 fixes bug 192627 -...

Security Advisory 2001-014: dump&#40;8&#41; exposes &#39;tty&#39; group

-----BEGIN PGP SIGNED MESSAGE----- NetBSD Security Advisory 2001-014 ================================= Topic: dump8 exposes 'tty' group Version: NetBSD-current: source prior to August 8, 2001 NetBSD 1.5.1: affected NetBSD 1.5: affected NetBSD 1.4.x: all affected Severity: local users can gain tty...

BSDi 3.0/4.0 rcvtty gid=tty exploit... &#40;mh package&#41;

well, i dont know if rcvtty is suppost to be setgid in general, since ive never seen it setgid on anything but BSDi 3.0 and 4.0. but none-the-less, here is a exploit i wrote for it: original ver: http://realhalo.org/xrcvtty.c xrcvtty.cmodified from original: ---------------------------------- /...

Solaris 7.0 - &#039;ufsdump&#039; Local Buffer Overflow (2)

// source: https://www.securityfocus.com/bid/680/info A buffer overflow vulnerability in the /usr/lib/fs/ufs/ufsdump setuid program allows local users to obtain root and tty group access. The vulnerability is the result of 'ufsdump' not being able to handle device names of a large length. / ufodu...