8 matches found
EUVD-2005-4634
Malware in sbrugna...
Mandrake Linux Security Advisory : kernel (MDKSA-2006:040)
A number of vulnerabilities were discovered and corrected in the Linux 2.6 kernel : The udpv6getport function in udp.c, when running IPv6, allows local users to cause a Denial of Service infinite loop and crash CVE-2005-2973. The mqopen system call in certain situations can decrement a counter...
Ubuntu 4.10 / 5.04 / 5.10 : linux-source-2.6.8.1/-2.6.10/-2.6.12 vulnerabilities (USN-244-1)
Doug Chapman discovered a flaw in the reference counting in the sysmqopen function. By calling this function in a special way, a local attacker could exploit this to cause a kernel crash. CVE-2005-3356 Karl Janmar discovered that the /proc file system module used signed data types in a wrong way....
Linux kernel multiple vulnerabilities
TwinHan DST Frontend/Card DVB driver buffer overflow, dm-crypt module doesn't clear memory...
CVE-2005-4639
Buffer overflow in the CA-driver dstca.c for TwinHan DST Frontend/Card in Linux kernel 2.6.12 and other versions before 2.6.15 allows local users to cause a denial of service crash and possibly execute arbitrary code by "reading more than 8 bytes into an 8 byte long array"...
CVE-2005-4639
CVE-2005-4639: A buffer overflow in the CA-driver (dst_ca.c) for TwinHan DST Frontend/Card affects Linux kernel 2.6.12 and other versions before 2.6.15. It allows local users to crash the system and potentially execute arbitrary code by reading more than eight bytes into an eight-byte array. Publ...
CVE-2005-4639
Buffer overflow in the CA-driver dstca.c for TwinHan DST Frontend/Card in Linux kernel 2.6.12 and other versions before 2.6.15 allows local users to cause a denial of service crash and possibly execute arbitrary code by "reading more than 8 bytes into an 8 byte long array"...
CVE-2005-4639
Buffer overflow in the CA-driver dstca.c for TwinHan DST Frontend/Card in Linux kernel 2.6.12 and other versions before 2.6.15 allows local users to cause a denial of service crash and possibly execute arbitrary code by "reading more than 8 bytes into an 8 byte long array"...