|
 |
| SecurityReason | ||
| WLB | ||
| Services | ||
| RSS | ||
| Corporate | ||
| Note | ||
If you have found a vulnerability, please send to our SecurityAlert Database : |
||
Home  SecurityAlert Database |
||
SecurityAlert : 4573 CVE : CVE-2008-5029 CWE : NVD-CWE-DesignError SecurityRisk : Low  (About) Remote Exploit : No Local Exploit : Yes Victim interaction required : No Exploit Available : No Credit : Andrea Bittau Published : 12.11.2008 Advisory Content : The following code causes a kernel panic on Linux 2.6.26: http://darkircop.org/unix.c I haven't investigated the bug so I'm not sure what is causing it, and don't know if it's exploitable. The code passes unix sockets from one process to another using unix sockets. The bug probably has to do with closing file descriptors. [I'm not subscribed to the list so please CC me if you answer.] -- To unsubscribe from this list: send the line "unsubscribe netdev" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html References : http://www.securityfocus.com/bid/32154
https://bugzilla.redhat.com/show_bug.cgi?id=470201
http://www.openwall.com/lists/oss-security/2008/11/06/1
http://marc.info/?l=linux-netdev&m=122593044330973&w=2
http://darkircop.org/unix.c  Feedback : If you have additional information or notice any errors regarding this security advisory, please use contact form or email us at info()securityreason()com. |
||
| Alert | ||
libc:fts_*() Multiple Denial of Service
The fts functions are provided for traversing UNIX file hierarchies... |
||
| Apache |  |
|
» Apache Tomcat 6.0.20 and |
||
» Apache Tomcat 6.0.20 and |
||
» Apache Tomcat 6.0.20 and |
||
| PHP | |
|
» PHP 5.2.12/5.3.1 |
||
- 2009-10-02| Copyright © SecurityReason.com. All Rights Reserved. |