Page 851 of 5145 results (0.030 seconds)

CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1

CVE-2011-4081 – kernel: crypto: ghash: null pointer deref if no key is set

https://notcve.org/view.php?id=CVE-2011-4081

crypto/ghash-generic.c in the Linux kernel before 3.1 allows local users to cause a denial of service (NULL pointer dereference and OOPS) or possibly have unspecified other impact by triggering a failed or missing ghash_setkey function call, followed by a (1) ghash_update function call or (2) ghash_final function call, as demonstrated by a write operation on an AF_ALG socket. crypto/ghash-generic.c en el kernel de Linux antes de v3.1 permite a usuarios locales causar una denegación de servicio (desreferencia de puntero NULL y OOPS) o posiblemente tener un impacto no especificado mediante la activación de un fallo o ausencia de llamada a la función ghash_setkey, seguido por una (1) llamada a la función ghash_update o (2) llamada a la función ghash_final, como se demuestra por una operación de escritura en un socket AF_ALG. • http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=7ed47b7d142ec99ad6880bbbec51e9f12b3af74c http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.1 http://www.openwall.com/lists/oss-security/2011/10/27/2 https://bugzilla.redhat.com/show_bug.cgi?id=749475 https://github.com/torvalds/linux/commit/7ed47b7d142ec99ad6880bbbec51e9f12b3af74c https://access.redhat.com/security/cve/CVE-2011-4081 • CWE-476: NULL Pointer Dereference •

CVSS: 4.0EPSS: 0%CPEs: 1EXPL: 2

CVE-2011-2203 – kernel: hfs_find_init() sb->ext_tree NULL pointer dereference

https://notcve.org/view.php?id=CVE-2011-2203

The hfs_find_init function in the Linux kernel 2.6 allows local users to cause a denial of service (NULL pointer dereference and Oops) by mounting an HFS file system with a malformed MDB extent record. La función hfs_find_init en el kernel de Linux 2.6 permite a usuarios locales causar una denegación de servicio (referencia a puntero nulo y OOPS) mediante el montaje de un sistema de ficheros HFS con un registro de medidas MDB malformado. • http://secunia.com/advisories/47754 http://www.openwall.com/lists/oss-security/2011/06/13/16 http://www.securityfocus.com/bid/48236 http://www.ubuntu.com/usn/USN-1324-1 http://www.ubuntu.com/usn/USN-1328-1 http://www.ubuntu.com/usn/USN-1344-1 https://bugzilla.redhat.com/show_bug.cgi?id=712774 https://lkml.org/lkml/2011/6/8/154 https://access.redhat.com/security/cve/CVE-2011-2203 • CWE-264: Permissions, Privileges, and Access Controls CWE-476: NULL Pointer Dereference •

CVSS: 4.9EPSS: 0%CPEs: 1EXPL: 1

CVE-2011-4110 – kernel: keys: NULL pointer deref in the user-defined key type

https://notcve.org/view.php?id=CVE-2011-4110

The user_update function in security/keys/user_defined.c in the Linux kernel 2.6 allows local users to cause a denial of service (NULL pointer dereference and kernel oops) via vectors related to a user-defined key and "updating a negative key into a fully instantiated key." La función user_update security/keys/user_defined.c en el kernel de Linux v2.6 permite a usuarios locales provocar una denegación de servicio (desreferencia de puntero a NULL y fallo del kernel) a través de vectores relacionados con una clave definida por el usuario y la "actualización de una clave negativa en una clave completamente instanciada". • http://marc.info/?l=bugtraq&m=139447903326211&w=2 http://secunia.com/advisories/47754 http://www.openwall.com/lists/oss-security/2011/11/21/19 http://www.openwall.com/lists/oss-security/2011/11/22/5 http://www.openwall.com/lists/oss-security/2011/11/22/6 http://www.securityfocus.com/bid/50755 http://www.ubuntu.com/usn/USN-1324-1 http://www.ubuntu.com/usn/USN-1328-1 http://www.ubuntu.com/usn/USN-1344-1 https://bugzilla.redhat.com/show_ • CWE-264: Permissions, Privileges, and Access Controls CWE-476: NULL Pointer Dereference •

CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0

CVE-2011-3353 – kernel: fuse: check size of FUSE_NOTIFY_INVAL_ENTRY message

https://notcve.org/view.php?id=CVE-2011-3353

Buffer overflow in the fuse_notify_inval_entry function in fs/fuse/dev.c in the Linux kernel before 3.1 allows local users to cause a denial of service (BUG_ON and system crash) by leveraging the ability to mount a FUSE filesystem. Desbordamiento de búfer en la función fuse_notify_inval_entry function in fs/fuse/dev.c en el kernel de Linux antes de v3.1 permite a usuarios locales causar una denegación de servicio (BUG_ON y caída del sistema) mediante el aprovechamiento de la capacidad de montar un sistema de archivos FUSE. • http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=c2183d1e9b3f313dd8ba2b1b0197c8d9fb86a7ae http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.1 http://www.openwall.com/lists/oss-security/2011/09/09/6 https://bugzilla.redhat.com/show_bug.cgi?id=736761 https://github.com/torvalds/linux/commit/c2183d1e9b3f313dd8ba2b1b0197c8d9fb86a7ae https://access.redhat.com/security/cve/CVE-2011-3353 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •

CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1

CVE-2011-3359 – kernel: b43: allocate receive buffers big enough for max frame len + offset

https://notcve.org/view.php?id=CVE-2011-3359

The dma_rx function in drivers/net/wireless/b43/dma.c in the Linux kernel before 2.6.39 does not properly allocate receive buffers, which allows remote attackers to cause a denial of service (system crash) via a crafted frame. La función de dma_rx drivers/net/wireless/b43/dma.c en el kernel de Linux antes de 2.6.39 no asigna correctamente los búferes de recepción, lo que permite a atacantes remotos provocar una denegación de servicio (caída del sistema) a través de un marco diseñado. • http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=c85ce65ecac078ab1a1835c87c4a6319cf74660a http://www.openwall.com/lists/oss-security/2011/09/14/2 https://bugzilla.redhat.com/show_bug.cgi?id=738202 https://github.com/torvalds/linux/commit/c85ce65ecac078ab1a1835c87c4a6319cf74660a https://access.redhat.com/security/cve/CVE-2011-3359 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •