linux audit project linux audit vulnerabilities and exploits

(subscribe to this query)

Audit prior to 2.4.4 in Linux does not sanitize escape characters in filenames.

Linux Audit Project Linux Audit

procps-ng before version 3.3.15 is vulnerable to a stack buffer overflow in pgrep. This vulnerability is mitigated by FORTIFY, as it involves strncat() to a stack-allocated string. When pgrep is compiled with FORTIFY (as on Red Hat Enterprise Linux and Fedora), the impact is limi...

Procps-ng Project Procps-ng Canonical Ubuntu Linux 14.04 Canonical Ubuntu Linux 12.04 Canonical Ubuntu Linux 18.04 Canonical Ubuntu Linux 16.04 Canonical Ubuntu Linux 17.10 Debian Debian Linux 7.0 Debian Debian Linux 9.0 Debian Debian Linux 8.0 Opensuse Leap 15.1

procps-ng before version 3.3.15 is vulnerable to a denial of service in ps via mmap buffer overflow. Inbuilt protection in ps maps a guard page at the end of the overflowed buffer, ensuring that the impact of this flaw is limited to a crash (temporary denial of service).

Procps-ng Project Procps-ng Canonical Ubuntu Linux 16.04 Canonical Ubuntu Linux 14.04 Canonical Ubuntu Linux 12.04 Canonical Ubuntu Linux 17.10 Canonical Ubuntu Linux 18.04 Debian Debian Linux 8.0 Debian Debian Linux 7.0 Debian Debian Linux 9.0

1 EDB exploit

procps-ng before version 3.3.15 is vulnerable to a local privilege escalation in top. If a user runs top with HOME unset in an attacker-controlled directory, the attacker could achieve privilege escalation by exploiting one of several vulnerabilities in the config_file() function...

Procps-ng Project Procps-ng Canonical Ubuntu Linux 12.04 Canonical Ubuntu Linux 14.04 Canonical Ubuntu Linux 16.04 Canonical Ubuntu Linux 18.04 Canonical Ubuntu Linux 17.10 Debian Debian Linux 7.0 Debian Debian Linux 8.0 Debian Debian Linux 9.0

1 EDB exploit

procps-ng, procps is vulnerable to a process hiding through race condition. Since the kernel's proc_pid_readdir() returns PID entries in ascending numeric order, a process occupying a high PID can use inotify events to determine when the process list is being scanned, and fo...

Procps Project Procps

1 EDB exploit

The DBI library (libdbi-perl) for Perl allows local users to overwrite arbitrary files via a symlink attack on a temporary PID file.

Debian Debian Linux 3.0 Gentoo Linux Redhat Enterprise Linux 4.0 Redhat Enterprise Linux Desktop 4.0 Ubuntu Ubuntu Linux 4.10

The exit_notify function in kernel/exit.c in the Linux kernel prior to 2.6.30-rc1 does not restrict exit signals when the CAP_KILL capability is held, which allows local users to send an arbitrary signal to a process by running a program that modifies the exit_signal field and th...

1 EDB exploit

Buffer overflow in fs/cifs/connect.c in CIFS in the Linux kernel 2.6.29 and previous versions allows remote malicious users to cause a denial of service (crash) via a long nativeFileSystem field in a Tree Connect response to an SMB mount request.

The (1) agp_generic_alloc_page and (2) agp_generic_alloc_pages functions in drivers/char/agp/generic.c in the agp subsystem in the Linux kernel prior to 2.6.30-rc3 do not zero out pages that may later be available to a user-space process, which allows local users to obtain sensit...

The clone system call in the Linux kernel 2.6.28 and previous versions allows local users to send arbitrary signals to a parent process from an unprivileged child process by launching an additional child process with the CLONE_PARENT flag, and then letting this new process exit.

1 EDB exploit

1 2 3 4 5 6 NEXT »

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook