The n_tty_write function in drivers/tty/n_tty.c in the Linux kernel up to and including 3.14.3 does not properly manage tty driver access in the "LECHO & !OPOST" case, which allows local users to cause a denial of service (memory corruption and system crash) or gain privileges by triggering a race condition involving read and write operations with long strings.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
linux linux kernel 2.6.31 |
||
linux linux kernel |
||
debian debian linux 7.0 |
||
debian debian linux 6.0 |
||
redhat enterprise linux 6.0 |
||
redhat enterprise linux server eus 6.3 |
||
redhat enterprise linux eus 6.3 |
||
redhat enterprise linux eus 6.4 |
||
suse suse linux enterprise server 11 |
||
suse suse linux enterprise desktop 11 |
||
suse suse linux enterprise high availability extension 11 |
||
oracle linux 6 |
||
canonical ubuntu linux 13.10 |
||
canonical ubuntu linux 12.10 |
||
canonical ubuntu linux 12.04 |
||
canonical ubuntu linux 14.04 |
||
canonical ubuntu linux 10.04 |
||
f5 big-iq application delivery controller 4.5.0 |
||
f5 big-iq centralized management 4.6.0 |
||
f5 big-iq cloud and orchestration 1.0.0 |
||
f5 big-ip application acceleration manager |
||
f5 big-ip advanced firewall manager |
||
f5 big-ip policy enforcement manager |
||
f5 big-iq security |
||
f5 big-iq device |
||
f5 big-iq cloud |
||
f5 enterprise manager |
||
f5 big-ip access policy manager |
||
f5 big-ip analytics |
||
f5 big-ip application security manager |
||
f5 big-ip edge gateway |
||
f5 big-ip global traffic manager |
||
f5 big-ip link controller |
||
f5 big-ip local traffic manager |
||
f5 big-ip protocol security module |
||
f5 big-ip wan optimization manager |
||
f5 big-ip webaccelerator |
Synology finally patches OpenSSL bugs in Trevor's NAS
Sysadmin blog Synology quietly released version 4.2-3250 of its DiskStation Manager (DSM) operating system this month. This squashes critical security bugs in version 4.2 of DSM – bugs that were fixed in version 5.0 in June, so consider this a back port. Version 4.2 is old but still in use in various models, such as the DS109. The update got me thinking about the security of NASes and similar devices on our networks. New build 3250 addresses a kernel-level security issue as well as the six Ope...
Pseudo-term buffer blunder from 2009 discovered
Linux admins need to get busy patching, as a newly discovered bug has emerged in the kernel's tty handling – and it lets logged-in users crash the system, gain root privileges, or otherwise modify and access data they shouldn't. This memory corruption flaw is certainly nothing like OpenSSL's remotely exploitable Heartbleed – CVE-2014-0196. But this local root hole is problematic where users are sharing the same Linux host in the cloud. Here's how US-CERT described the issue: A user only need...