linux linux kernel 2.6.37.4 vulnerabilities and exploits

(subscribe to this query)

A locally locally exploitable DOS vulnerability was found in pax-linux versions 2.6.32.33-test79.patch, 2.6.38-test3.patch, and 2.6.37.4-test14.patch. A bad bounds check in arch_get_unmapped_area_topdown triggered by programs doing an mmap after a MAP_GROWSDOWN mmap will create a...

Linux Linux Kernel 2.6.32.33 Linux Linux Kernel 2.6.37.4 Linux Linux Kernel 2.6.38

The Reliable Datagram Sockets (RDS) subsystem in the Linux kernel prior to 2.6.38 does not properly handle congestion map updates, which allows local users to cause a denial of service (BUG_ON and system crash) via vectors involving (1) a loopback (aka loop) transmit operation or...

Linux Linux Kernel 2.6.37 Linux Linux Kernel Linux Linux Kernel 2.6.37.3 Linux Linux Kernel 2.6.37.1 Linux Linux Kernel 2.6.37.5 Linux Linux Kernel 2.6.37.2 Linux Linux Kernel 2.6.37.4

The br_multicast_add_group function in net/bridge/br_multicast.c in the Linux kernel prior to 2.6.38, when a certain Ethernet bridge configuration is used, allows local users to cause a denial of service (memory corruption and system crash) by sending IGMP packets to a local inte...

Linux Linux Kernel 2.6.37 Linux Linux Kernel Linux Linux Kernel 2.6.37.3 Linux Linux Kernel 2.6.37.1 Linux Linux Kernel 2.6.37.5 Linux Linux Kernel 2.6.37.2 Linux Linux Kernel 2.6.37.4

net/ipv4/netfilter/arp_tables.c in the IPv4 implementation in the Linux kernel prior to 2.6.39 does not place the expected '\0' character at the end of string data in the values of certain structure members, which allows local users to obtain potentially sensitive infor...

net/ipv4/netfilter/ip_tables.c in the IPv4 implementation in the Linux kernel prior to 2.6.39 does not place the expected '\0' character at the end of string data in the values of certain structure members, which allows local users to obtain potentially sensitive inform...

net/ipv6/netfilter/ip6_tables.c in the IPv6 implementation in the Linux kernel prior to 2.6.39 does not place the expected '\0' character at the end of string data in the values of certain structure members, which allows local users to obtain potentially sensitive infor...

The do_task_stat function in fs/proc/array.c in the Linux kernel prior to 2.6.39-rc1 does not perform an expected uid check, which makes it easier for local users to defeat the ASLR protection mechanism by reading the start_code and end_code fields in the /proc/#####/stat file fo...

The __nfs4_proc_set_acl function in fs/nfs/nfs4proc.c in the Linux kernel prior to 2.6.38 stores NFSv4 ACL data in memory that is allocated by kmalloc but not properly freed, which allows local users to cause a denial of service (panic) via a crafted attempt to set an ACL.

Integer overflow in the _ctl_do_mpt_command function in drivers/scsi/mpt2sas/mpt2sas_ctl.c in the Linux kernel 2.6.38 and previous versions might allow local users to gain privileges or cause a denial of service (memory corruption) via an ioctl call specifying a crafted value tha...

drivers/scsi/mpt2sas/mpt2sas_ctl.c in the Linux kernel 2.6.38 and previous versions does not validate (1) length and (2) offset values before performing memory copy operations, which might allow local users to gain privileges, cause a denial of service (memory corruption), or obt...

1 2 NEXT »

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook