Page 658 of 3903 results (0.041 seconds)

CVSS: 4.9EPSS: 0%CPEs: 321EXPL: 1

CVE-2009-3888 – Linux Kernel 2.6.x - 'fput()' Null Pointer Dereference Local Denial of Service

https://notcve.org/view.php?id=CVE-2009-3888

The do_mmap_pgoff function in mm/nommu.c in the Linux kernel before 2.6.31.6, when the CPU lacks a memory management unit, allows local users to cause a denial of service (OOPS) via an application that attempts to allocate a large amount of memory. La función do_mmap_pgoff en mm/nommu.c en el kernel de Linux anteriores a v2.6.31.6, cuando la CPU carece de unidad de gestión de memori, permite a usuarios locales provocar una denegación de servicio (OOPS) mediante una aplicación que intente reservar una gran cantidad de memoria. • https://www.exploit-db.com/exploits/10017 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=89a8640279f8bb78aaf778d1fc5c4a6778f18064 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.31.6 http://www.openwall.com/lists/oss-security/2009/11/09/2 http://www.openwall.com/lists/oss-security/2009/11/13/3 http://www.ubuntu.com/usn/usn-864-1 • CWE-399: Resource Management Errors •

CVSS: 7.8EPSS: 0%CPEs: 403EXPL: 1

CVE-2009-3726 – Linux Kernel < 2.6.31-rc4 - 'nfs4_proc_lock()' Denial of Service

https://notcve.org/view.php?id=CVE-2009-3726

The nfs4_proc_lock function in fs/nfs/nfs4proc.c in the NFSv4 client in the Linux kernel before 2.6.31-rc4 allows remote NFS servers to cause a denial of service (NULL pointer dereference and panic) by sending a certain response containing incorrect file attributes, which trigger attempted use of an open file that lacks NFSv4 state. La función nfs4_proc_lock en fs/nfs/nfs4proc.c en el cliente NFSv4 en el Kernel de Linux anteriores a v2.6.31-rc4 permite a servidores NFS remotos provocar una denegación de servicio (desreferenciación de puntero NULL y pánico) si se envía cierta respuesta conteniendo atributos de fichero no correctos, lo que provoca un intento de uso de un fichero abierto que carece de un estado NFSv4. • https://www.exploit-db.com/exploits/10202 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=d953126a28f97ec965d23c69fd5795854c048f30 http://lists.opensuse.org/opensuse-security-announce/2009-11/msg00007.html http://lists.opensuse.org/opensuse-security-announce/2009-12/msg00002.html http://lists.opensuse.org/opensuse-security-announce/2009-12/msg00005.html http://lists.opensuse.org/opensuse-security-announce/2010-02/msg00005.html http://lists.vmware.com/pipermail/security-ann • CWE-399: Resource Management Errors CWE-476: NULL Pointer Dereference •

CVSS: 7.2EPSS: 0%CPEs: 6EXPL: 1

CVE-2009-3725

https://notcve.org/view.php?id=CVE-2009-3725

The connector layer in the Linux kernel before 2.6.31.5 does not require the CAP_SYS_ADMIN capability for certain interaction with the (1) uvesafb, (2) pohmelfs, (3) dst, or (4) dm subsystem, which allows local users to bypass intended access restrictions and gain privileges via calls to functions in these subsystems. La capa de conector en el kernel Linux versiones anteriores a v2.6.31.5 no requiere de la capacidad CAP_SYS_ADMIN para ciertas interacciones de los subsistemas (1) uvesafb, (2) pohmelfs, (3) dst, o (4) dm, permitiendo a usuarios locales saltar las restricciones de acceso implementadas y obtener privilegios mediante peticiones a las funciones en esos subsistemas. • http://marc.info/?l=linux-kernel&m=125449888416314&w=2 http://marc.info/?l=oss-security&m=125715484511380&w=2 http://marc.info/?l=oss-security&m=125716192622235&w=2 http://patchwork.kernel.org/patch/51382 http://patchwork.kernel.org/patch/51383 http://patchwork.kernel.org/patch/51384 http://patchwork.kernel.org/patch/51387 http://secunia.com/advisories/37113 http://secunia.com/advisories/38905 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.31.5& • CWE-264: Permissions, Privileges, and Access Controls •

CVSS: 7.2EPSS: 0%CPEs: 32EXPL: 7

CVE-2009-3547 – Linux Kernel 2.4.1 < 2.4.37 / 2.6.1 < 2.6.32-rc5 - 'pipe.c' Local Privilege Escalation

https://notcve.org/view.php?id=CVE-2009-3547

Multiple race conditions in fs/pipe.c in the Linux kernel before 2.6.32-rc6 allow local users to cause a denial of service (NULL pointer dereference and system crash) or gain privileges by attempting to open an anonymous pipe via a /proc/*/fd/ pathname. Múltiples condiciones de carrera en fs/pipe.c en el kernel de Linux anteriores a v2.6.32-rc6 permite a usuarios locales producir una denegación de servicio )desreferencia a puntero NULL y caída del sistema) o conseguir privilegios mediante la apertura de un canal anónimo en la ruta /proc/*/fd/. • https://www.exploit-db.com/exploits/9844 https://www.exploit-db.com/exploits/33321 https://www.exploit-db.com/exploits/10018 https://www.exploit-db.com/exploits/33322 https://www.exploit-db.com/exploits/40812 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=ad3960243e55320d74195fb85c975e0a8cc4466c http://lists.opensuse.org/opensuse-security-announce/2009-11/msg00005.html http://lists.opensuse.org/opensuse-security-announce/2009-11/msg00007.html http:/ • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') CWE-476: NULL Pointer Dereference CWE-672: Operation on a Resource after Expiration or Release •

CVSS: 4.6EPSS: 0%CPEs: 410EXPL: 0

CVE-2009-3624

https://notcve.org/view.php?id=CVE-2009-3624

The get_instantiation_keyring function in security/keys/keyctl.c in the KEYS subsystem in the Linux kernel before 2.6.32-rc5 does not properly maintain the reference count of a keyring, which allows local users to gain privileges or cause a denial of service (OOPS) via vectors involving calls to this function without specifying a keyring by ID, as demonstrated by a series of keyctl request2 and keyctl list commands. La función get_instantiation_keyring de security/keys/keyctl.c en el subsistema KEYS del kernel de Linux en versiones anteriores a la v2.6.32-rc5 no mantiene apropiadamente la cuenta de referencias de un "keyring", lo que permite a usuarios locales obtener privilegios o provocar una denegación de servicio (OOPS) a través de vectores de ataque que involucran llamadas a esta función sin especificar un "keyring" por ID, como se ha demostrado por series de "keyctl request2" y comandos "keyctl list". • http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=21279cfa107af07ef985539ac0de2152b9cba5f5 http://lists.opensuse.org/opensuse-security-announce/2010-01/msg00000.html http://marc.info/?l=oss-security&m=125619420905341&w=2 http://marc.info/?l=oss-security&m=125624091417161&w=2 http://secunia.com/advisories/37086 http://secunia.com/advisories/38017 http://twitter.com/spendergrsec/statuses/4916661870 http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeL • CWE-310: Cryptographic Issues •