Vulnerability & Exploit Database

Displaying entries 1 - 10 of 27 in total

Results for: CVE-2013-1738 Back to search

ELSA-2015-0290 Important: Oracle Linux kernel security, bug fix, and enhancement update Vulnerability

  • Severity: 8
  • Published: September 28, 2014

The SMB2_tcon function in fs/cifs/smb2pdu.c in the Linux kernel before 3.16.3 allows remote CIFS servers to cause a denial of service (NULL pointer dereference and client system crash) or possibly have unspecified other impact by deleting the IPC$ share during resolution of DFS referrals.

SUSE Linux Security Advisory: SUSE-SU-2014:1100-1 Vulnerability

  • Severity: 10
  • Published: September 03, 2014

Use-after-free vulnerability in the mozilla::DOMSVGLength::GetTearOff function in Mozilla Firefox before 32.0, Firefox ESR 31.x before 31.1, and Thunderbird 31.x before 31.1 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via an SVG animation with DOM interaction that triggers incor...

RHSA-2014:0771: kernel security and bug fix update Vulnerability

  • Severity: 7
  • Published: June 07, 2014

The kernel packages contain the Linux kernel, the core of any Linuxoperating system.Note: A local user with write access to /dev/fdX could use these two flaws(CVE-2014-1737 in combination with CVE-2014-1738) to escalate theirprivileges on the system.Red Hat would like to thank Kees Cook of Google for reportingCVE-2014-3153, Matthew Daley...

ELSA-2014-0771 Important: Oracle Linux kernel security and bug fix update Vulnerability

  • Severity: 7
  • Published: June 07, 2014

The futex_requeue function in kernel/futex.c in the Linux kernel through 3.14.5 does not ensure that calls have two different futex addresses, which allows local users to gain privileges via a crafted FUTEX_REQUEUE command that facilitates unsafe waiter modification.

USN-2220-1: Linux kernel (EC2) vulnerabilities Vulnerability

  • Severity: 7
  • Published: May 11, 2014

The raw_cmd_copyin function in drivers/block/floppy.c in the Linux kernel through 3.14.3 does not properly handle error conditions during processing of an FDRAWCMD ioctl call, which allows local users to trigger kfree operations and gain privileges by leveraging write access to a /dev/fd device.

USN-2219-1: Linux kernel vulnerabilities Vulnerability

  • Severity: 7
  • Published: May 11, 2014

The raw_cmd_copyin function in drivers/block/floppy.c in the Linux kernel through 3.14.3 does not properly handle error conditions during processing of an FDRAWCMD ioctl call, which allows local users to trigger kfree operations and gain privileges by leveraging write access to a /dev/fd device.

RHSA-2014:0740: kernel security and bug fix update Vulnerability

  • Severity: 7
  • Published: May 11, 2014

The kernel packages contain the Linux kernel, the core of any Linuxoperating system.Note: A local user with write access to /dev/fdX could use these two flaws(CVE-2014-1737 in combination with CVE-2014-1738) to escalate theirprivileges on the system.Red Hat would like to thank Matthew Daley for reporting CVE-2014-1737 andCVE-2014-1738.Th...

ELSA-2014-3043 Important: Oracle Linux unbreakable enterprise kernel security update Vulnerability

  • Severity: 7
  • Published: May 11, 2014

The raw_cmd_copyin function in drivers/block/floppy.c in the Linux kernel through 3.14.3 does not properly handle error conditions during processing of an FDRAWCMD ioctl call, which allows local users to trigger kfree operations and gain privileges by leveraging write access to a /dev/fd device.