Lucene search
K

1544 matches found

RedHat Linux
RedHat Linux
added 2009/06/16 9:21 p.m.6 views

kernel: agp: zero pages before sending to userspace

The 1 agpgenericallocpage and 2 agpgenericallocpages functions in drivers/char/agp/generic.c in the agp subsystem in the Linux kernel before 2.6.30-rc3 do not zero out pages that may later be available to a user-space process, which allows local users to obtain sensitive information by reading...

4.9CVSS6.1AI score0.00392EPSS
Exploits1References4
Fedora
Fedora
added 2009/04/16 4:54 p.m.34 views

[SECURITY] Fedora 9 Update: udev-124-4.fc9

The udev package contains an implementation of devfs in userspace using sysfs and netlink...

7.2CVSS4.1AI score0.81528EPSS
Exploits12
Fedora
Fedora
added 2009/02/24 9:0 p.m.26 views

[SECURITY] Fedora 10 Update: trickle-1.07-7.fc10

trickle is a portable lightweight userspace bandwidth shaper. It can run in collaborative mode or in stand alone mode. trickle works by taking advantage of the unix loader preloading. Essentially it provides, to the application, a new version of the functionality that is required to send and...

3.7CVSS3AI score0.00456EPSS
Exploits1
Fedora
Fedora
added 2009/02/24 8:43 p.m.24 views

[SECURITY] Fedora 9 Update: trickle-1.07-7.fc9

trickle is a portable lightweight userspace bandwidth shaper. It can run in collaborative mode or in stand alone mode. trickle works by taking advantage of the unix loader preloading. Essentially it provides, to the application, a new version of the functionality that is required to send and...

3.7CVSS3AI score0.00456EPSS
Exploits1
Fedora
Fedora
added 2009/02/13 4:56 a.m.33 views

[SECURITY] Fedora 9 Update: dahdi-tools-2.0.0-1.fc9

DAHDI stands for Digium Asterisk Hardware Device Interface. This package contains the userspace tools to configure the DAHDI kernel modules. DAHDI is the replacement for Zaptel, which must be renamed due to trademark issues...

5CVSS3.1AI score0.02715EPSS
Exploits1
Prion
Prion
added 2008/12/09 12:30 a.m.19 views

Design/Logic Flaw

The pariscshowstack function in arch/parisc/kernel/traps.c in the Linux kernel before 2.6.28-rc7 on PA-RISC allows local users to cause a denial of service system crash via vectors associated with an attempt to unwind a stack that contains userspace addresses...

4.9CVSS6.1AI score0.00378EPSS
Exploits0References12Affected Software1
Prion
Prion
added 2008/02/12 9:0 p.m.27 views

Null pointer dereference

The copyfromusermmapsem function in fs/splice.c in the Linux kernel 2.6.22 through 2.6.24 does not validate a certain userspace pointer before dereference, which allow local users to read from arbitrary kernel memory locations...

2.1CVSS6.2AI score0.00894EPSS
Exploits2References13Affected Software1
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.14 views

Debian: Security Advisory (DSA-744-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

2.1CVSS7.1AI score0.00762EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2007/11/06 12:0 a.m.30 views

Fedora 7 : kernel-2.6.22.4-65.fc7 (2007-1785)

Update to kernel 2.6.22.2, 2.6.22.3 and 2.6.22.4: http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.22.2 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.22.3 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.22.4 - Fix failure to find serial ports on some machines. -...

1.9CVSS5.7AI score0.00363EPSS
Exploits0References5
NVD
NVD
added 2007/10/23 10:46 a.m.20 views

CVE-2007-3850

The eHCA driver in Linux kernel 2.6 before 2.6.22, when running on PowerPC, does not properly map userspace resources, which allows local users to read portions of physical address space...

1.9CVSS5.6AI score0.0034EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2007/10/23 10:46 a.m.27 views

CVE-2007-3850

The eHCA driver in Linux kernel 2.6 before 2.6.22, when running on PowerPC, does not properly map userspace resources, which allows local users to read portions of physical address space...

1.9CVSS5.9AI score0.0034EPSS
Exploits0References2
Cvelist
Cvelist
added 2007/10/23 10:0 a.m.27 views

CVE-2007-3850

The eHCA driver in Linux kernel 2.6 before 2.6.22, when running on PowerPC, does not properly map userspace resources, which allows local users to read portions of physical address space...

5.5AI score0.0034EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2007/10/22 10:52 a.m.10 views

kernel LTC31426-4k page mapping support for userspace in 64k kernels

The eHCA driver in Linux kernel 2.6 before 2.6.22, when running on PowerPC, does not properly map userspace resources, which allows local users to read portions of physical address space...

1.9CVSS5.8AI score0.0034EPSS
Exploits0References4
Fedora
Fedora
added 2007/09/25 3:42 p.m.14 views

[SECURITY] Fedora 7 Update: fuse-2.7.0-5.fc7

With FUSE it is possible to implement a fully functional filesystem in a userspace program. This package contains the FUSE userspace tools to mount a FUSE filesystem. Note: For security reasons only members of the group "fuse" are allowed to umount fuse filesystems. You can find more details on...

3.3AI score
Exploits0
NVD
NVD
added 2007/03/21 11:19 p.m.30 views

CVE-2007-1582

The resource system in PHP 4.0.0 through 4.4.6 and 5.0.0 through 5.2.1 allows context-dependent attackers to execute arbitrary code by interrupting certain functions in the GD ext/gd extension and unspecified other extensions via a userspace error handler, which can be used to destroy and modify...

6.8CVSS7.5AI score0.05924EPSS
Exploits0References4
NVD
NVD
added 2007/03/21 11:19 p.m.28 views

CVE-2007-1581

The resource system in PHP 5.0.0 through 5.2.1 allows context-dependent attackers to execute arbitrary code by interrupting the hashupdatefile function via a userspace 1 error or 2 stream handler, which can then be used to destroy and modify internal resources. NOTE: it was later reported that PH...

9.3CVSS7.4AI score0.07917EPSS
Exploits1References6
securityvulns
securityvulns
added 2006/12/19 12:0 a.m.67 views

ChangeLog-2.6.19.1

commit 1edb5a2de7a29144644794208eb63abbca419430 Author: Chris Wright [email protected] Date: Mon Dec 11 11:32:53 2006 -0800 Linux 2.6.19.1 commit f558fdfaa8d62e33ef47a819d1ca659a8f9e1f1a Author: David Miller [email protected] Date: Fri Dec 8 17:14:38 2006 -0800 PATCH NETLINK: Put...

7.5CVSS0.1AI score0.0245EPSS
Exploits0
exploitpack
exploitpack
added 2006/07/24 12:0 a.m.16 views

Solaris 10 - sysinfo() Local Kernel Memory Disclosure (1)

Solaris 10 - sysinfo Local Kernel Memory Disclosure 1 / Sun Microsystems Solaris sysinfo Kernel Memory Disclosure exploit =================================================================== Local exploitation of an integer overflow vulnerability in Sun Microsystems Inc. Solaris allows attackers t...

7.4AI score
Exploits0
RedHat Linux
RedHat Linux
added 2006/03/15 2:5 p.m.6 views

security flaw

The sysgetthreadarea function in process.c in Linux 2.6 before 2.6.12.4 and 2.6.13 does not clear a data structure before copying it to userspace, which might allow a user process to obtain sensitive information...

2.1CVSS5.8AI score0.00446EPSS
Exploits1References4
Cvelist
Cvelist
added 2006/02/18 2:0 a.m.20 views

CVE-2006-0751

Multiple unspecified vulnerabilities in the 1 Filesystem in USErspace FUSE client and 2 NOOFS daemon in in Network Object Oriented File System NOOFS before 0.9.0 have unspecified impact and attack vectors...

7.1AI score0.01707EPSS
Exploits0References4
Rows per page
Query Builder