Vulnerability & Exploit Database

Displaying entries 1 - 10 of 56 in total

Results for: CVE-2009-0041 Back to search

ELSA-2013-1645 Important: Oracle Linux Kernel update Vulnerability

  • Severity: 10
  • Published: May 24, 2012

Integer signedness error in the CIFSFindNext function in fs/cifs/cifssmb.c in the Linux kernel before 3.1 allows remote CIFS servers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a large length value in a response to a read request for a directory.

SUSE Linux Security Advisory: SUSE-SA:2010:046 Vulnerability

  • Severity: 10
  • Published: September 07, 2010

Multiple buffer overflows in fs/nfsd/nfs4xdr.c in the XDR implementation in the NFS server in the Linux kernel before 2.6.34-rc6 allow remote attackers to cause a denial of service (panic) or possibly execute arbitrary code via a crafted NFSv4 compound WRITE request, related to the read_buf and nfsd4_decode_compound functions.

SUSE Linux Security Advisory: SUSE-SA:2010:036 Vulnerability

  • Severity: 10
  • Published: September 07, 2010

Multiple buffer overflows in fs/nfsd/nfs4xdr.c in the XDR implementation in the NFS server in the Linux kernel before 2.6.34-rc6 allow remote attackers to cause a denial of service (panic) or possibly execute arbitrary code via a crafted NFSv4 compound WRITE request, related to the read_buf and nfsd4_decode_compound functions.

USN-947-1: Linux kernel vulnerabilities Vulnerability

  • Severity: 8
  • Published: April 06, 2010

The nfs_wait_on_request function in fs/nfs/pagelist.c in Linux kernel 2.6.x through 2.6.33-rc5 allows attackers to cause a denial of service (Oops) via unknown vectors related to truncating a file and an operation that is not interruptible.

SUSE Linux Security Advisory: SUSE-SA:2010:031 Vulnerability

  • Severity: 8
  • Published: April 06, 2010

The nfs_wait_on_request function in fs/nfs/pagelist.c in Linux kernel 2.6.x through 2.6.33-rc5 allows attackers to cause a denial of service (Oops) via unknown vectors related to truncating a file and an operation that is not interruptible.

RHSA-2010:0095: rhev-hypervisor security and bug fix update Vulnerability

  • Severity: 10
  • Published: February 09, 2010

An updated rhev-hypervisor package that fixes security issues and several bugs is now available. This update has been rated as having important security impact by the Red Hat Security Response Team.

The rhev-hypervisor package provides a Red Hat Enterprise Virtualization (RHEV) Hypervisor ISO disk image. The RHEV Hypervisor is ...

RHSA-2010:0046: kernel security and bug fix update Vulnerability

  • Severity: 8
  • Published: January 27, 2010

The kernel packages contain the Linux kernel, the core of any Linuxoperating system.Security fixes:The fix for CVE-2006-6304 changes the expected behavior: With suid_dumpableset to 2, the core file will not be recorded if the file already exists.For example, core files will not be overwritten on subsequent crashes ofprocesses whose core ...

VMSA-2011-0009: VMware vmkernel third party e1000 Driver Packet Filter Bypass (CVE-2009-4536) Vulnerability

  • Severity: 8
  • Published: January 12, 2010

drivers/net/e1000/e1000_main.c in the e1000 driver in the Linux kernel 2.6.32.3 and earlier handles Ethernet frames that exceed the MTU by processing certain trailing payload data as if it were a complete frame, which allows remote attackers to bypass packet filters via a large packet with a crafted payload. NOTE: this vulnerability exi...

VMSA-2010-0009.2: Service Console update (CVE-2009-4538) Vulnerability

  • Severity: 10
  • Published: January 12, 2010

drivers/net/e1000e/netdev.c in the e1000e driver in the Linux kernel 2.6.32.3 and earlier does not properly check the size of an Ethernet frame that exceeds the MTU, which allows remote attackers to have an unspecified impact via crafted packets, a related issue to CVE-2009-4537.

VMSA-2010-0009.2: Service Console update (CVE-2009-4537) Vulnerability

  • Severity: 8
  • Published: January 12, 2010

drivers/net/r8169.c in the r8169 driver in the Linux kernel 2.6.32.3 and earlier does not properly check the size of an Ethernet frame that exceeds the MTU, which allows remote attackers to (1) cause a denial of service (temporary network outage) via a packet with a crafted size, in conjunction with certain packets containing A character...