|
Find the information you need for your favorite open source distribution
 To browse through our weekly Linux Advisory Watch newsletters, click here.
|
|
|
Several cases were identified where members of `struct uio' were notproperly validated before being used. In particular, the `uio_offset'member may be negative or extremely large, and was used to compute theregion of kernel memory to be returned to the user. |
|
|
A programming error in the readv system call can result in the givenfile descriptor's reference count being erroneously incremented. |
|
|
Under certain circumstances, it is possible for an attacker to flood aFreeBSD system with spoofed ARP requests, causing resource starvationwhich eventually results in a system panic. |
|
|
A buffer overflow that may occur during header parsing was identified. An attacker could create a specially crafted message that may causesendmail to execute arbitrary code with the privileges of the userrunning sendmail, typically root. |
|
|
A bug has been found in OpenSSH's buffer handling where a buffer could be marked as grown when the actual reallocation failed. |
|
|
Some versions of sendmail (8.12.0 through 8.12.8) contain aprogramming error in the code that implements DNS maps. A malformedDNS reply packet may cause sendmail to call `free()' on anuninitialized pointer. |
|
|
Some mechanisms for causing a signal to be sent did not properlyvalidate the signal number, in some cases allowing the kernel toattempt to deliver a negative or out-of-range signal number. |
|
|
<< Start < Prev 4 5 6 Next > End >>
|
| Results 22 - 28 of 299 |
