CVE-2023-39189

A flaw was found in the Netfilter subsystem in the Linux kernel. The nfnlosfaddcallback function did not validate the user mode controlled optnum field. This flaw allows a local privileged CAPNETADMIN attacker to trigger an out-of-bounds read, leading to a crash or information disclosure...

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2019-1505)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian DSA-4082-1 : linux - security update (Meltdown)

Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks. - CVE-2017-5754 Multiple researchers have discovered a vulnerability in Intel processors, enabling an attacker controlling an unprivileged process to...

CVE-2017-17450

CVE-2017-17450 affects the Linux kernel up to 4.14.4 in net/netfilter/xt_osf.c, where add_callback/remove_callback do not require CAP_NET_ADMIN, allowing local users to bypass intended access controls because xt_osf_fingers is shared across net namespaces. The vulnerability is rooted in privilege...

CVE-2017-17450

net/netfilter/xtosf.c in the Linux kernel through 4.14.4 does not require the CAPNETADMIN capability for addcallback and removecallback operations, which allows local users to bypass intended access restrictions because the xtosffingers data structure is shared across all net namespaces...