Vuln: Linux Kernel Page Faults Using NUMA Local Denial of Service Vulnerability
Linux Kernel Page Faults Using NUMA Local Denial of Service Vulnerability
Related Files:
Domain Socket Denial of Service Vulnerability affecting Linux kernel 2.3.99-pre2, Linux kernel 2.2.14, Linux kernel 2.2.12, RedHat Linux 6.2, RedHat Linux 6.1 sparc, RedHat Linux 6.1 i386, and RedHat Linux 6.1 alpha. Homepage here.
Bug in Linux 2.2.0 kernel allows any local user to execute a Denial of Service attack, forcing system reboot.
A potential local denial of service vulnerability has been discovered in the 2.6 Linux kernel. Authored By Stas Sergeev
Mandriva Linux Security Advisory - Some vulnerabilities were discovered and corrected in the Linux 2.6 kernel. The minix filesystem code allows local users to cause a denial of service (hang) via a malformed minix file stream. An integer underflow in the Linux kernel prior to 2.6.23 allows remote attackers to cause a denial of service (crash) via a crafted SKB length value in a runt IEEE 802.11 frame when the IEEE80211_STYPE_QOS_DATA flag is set. Related CVE Numbers: CVE-2007-4997,CVE-2006-6058. Homepage: http://www.mandriva.com/security/.
Mandriva Linux Security Advisory - Some vulnerabilities were discovered and corrected in the Linux 2.6 kernel. The minix filesystem code allows local users to cause a denial of service (hang) via a malformed minix file stream. An integer underflow in the Linux kernel prior to 2.6.23 allows remote attackers to cause a denial of service (crash) via a crafted SKB length value in a runt IEEE 802.11 frame when the IEEE80211_STYPE_QOS_DATA flag is set. Related CVE Numbers: CVE-2006-6058,CVE-2007-4997. Homepage: http://www.mandriva.com/security/.
Linux Kernel 2.0.x and 2.2.x local Denial of Service attack
Ubuntu Security Notice 518-1 - Evan Teran discovered that the Linux kernel ptrace routines did not correctly handle certain requests robustly. Local attackers could exploit this to crash the system, causing a denial of service. It was discovered that hugetlb kernels on PowerPC systems did not prevent the stack from colliding with reserved kernel memory. Local attackers could exploit this and crash the system, causing a denial of service. It was discovered that certain CIFS filesystem actions did not honor the umask of a process. Local attackers could exploit this to gain additional privileges. Wojciech Purczynski discovered that the Linux kernel ia32 syscall emulation in x86_64 kernels did not correctly clear the high bits of registers. Local attackers could exploit this to gain root privileges. Related CVE Numbers: CVE-2007-3731, CVE-2007-3739, CVE-2007-3740, CVE-2007-4573. Homepage: http://security.ubuntu.com/.
ioctl_by_bdev() local denial of service exploit for the Linux kernel 2.6 series up to and including 2.6.12-rc4. Authored By alert7
Mandriva Linux Security Advisory - Some vulnerabilities were discovered and corrected in the Linux 2.6 kernel. The Linux kernel does not properly save or restore EFLAGS during a context switch, or reset the flags when creating new threads, which could allow a local user to cause a Denial of Service (process crash). The seqfile handling in the 2.6 kernel up to 2.6.18 allows local users to cause a DoS (hang or oops) via unspecified manipulations that trigger an infinite loop while searching for flowlabels. An integer overflow in the 2.6 kernel prior to 2.6.18.4 could allow a local user to execute arbitrary code via a large maxnum value in an ioctl request. A race condition in the ISO9660 filesystem handling could allow a local user to cause a DoS (infinite loop) by mounting a crafted ISO9660 filesystem containing malformed data structures. A vulnerability in the bluetooth support could allow for overwriting internal CMTP and CAPI data structures via malformed packets. Related CVE Numbers: CVE-2006-5757,CVE-2006-5751,CVE-2006-5173,CVE-2006-5619,CVE-2006-6106. Homepage: http://www.mandriva.com/security/.
Linux kernel AIO local denial of service exploit for the PPC64 and IA64 architecture. Authored By Daniel McNeil