Vulnerability & Exploit Database

Displaying all 10 entries

Results for: CVE-2014-5045 Back to search

RHSA-2015:0062: kernel security, bug fix, and enhancement update Vulnerability

  • Severity: 8
  • Published: November 10, 2014

The kernel packages contain the Linux kernel, the core of any Linuxoperating system.Red Hat would like to thank Vasily Averin of Parallels for reportingCVE-2014-5045, and Don A. Bailey from Lab Mouse Security for reportingCVE-2014-4608. The CVE-2014-3673 issue was discovered by Liu Wei ofRed Hat.This update also fixes several bugs and ad...

RHSA-2014:1971: kernel security and bug fix update Vulnerability

  • Severity: 8
  • Published: November 10, 2014

The sctp_assoc_lookup_asconf_ack function in net/sctp/associola.c in the SCTP implementation in the Linux kernel through 3.17.2 allows remote attackers to cause a denial of service (panic) via duplicate ASCONF chunks that trigger an incorrect uncork within the side-effect interpreter.

ELSA-2014-1971 Important: Oracle Linux kernel security and bug fix update Vulnerability

  • Severity: 8
  • Published: November 10, 2014

The sctp_assoc_lookup_asconf_ack function in net/sctp/associola.c in the SCTP implementation in the Linux kernel through 3.17.2 allows remote attackers to cause a denial of service (panic) via duplicate ASCONF chunks that trigger an incorrect uncork within the side-effect interpreter.

ELSA-2015-0290 Important: Oracle Linux kernel security, bug fix, and enhancement update Vulnerability

  • Severity: 8
  • Published: September 28, 2014

The SMB2_tcon function in fs/cifs/smb2pdu.c in the Linux kernel before 3.16.3 allows remote CIFS servers to cause a denial of service (NULL pointer dereference and client system crash) or possibly have unspecified other impact by deleting the IPC$ share during resolution of DFS referrals.

SUSE: CVE-2014-5045: SUSE Linux Security Advisory Vulnerability

  • Severity: 6
  • Published: August 01, 2014

The mountpoint_last function in fs/namei.c in the Linux kernel before 3.15.8 does not properly maintain a certain reference count during attempts to use the umount system call in conjunction with a symlink, which allows local users to cause a denial of service (memory consumption or use-after-free) or possibly have unspecified other impa...

Cent OS: CVE-2014-5045: CESA-2014:1971 (kernel) Vulnerability

  • Severity: 6
  • Published: August 01, 2014

The mountpoint_last function in fs/namei.c in the Linux kernel before 3.15.8 does not properly maintain a certain reference count during attempts to use the umount system call in conjunction with a symlink, which allows local users to cause a denial of service (memory consumption or use-after-free) or possibly have unspecified other impa...

USN-2337-1: Linux kernel vulnerabilities Vulnerability

  • Severity: 7
  • Published: July 03, 2014

sound/core/control.c in the ALSA control implementation in the Linux kernel before 3.15.2 does not ensure possession of a read/write lock, which allows local users to cause a denial of service (use-after-free) and obtain sensitive information from kernel memory by leveraging /dev/snd/controlCX access.

USN-2336-1: Linux kernel (Trusty HWE) vulnerabilities Vulnerability

  • Severity: 7
  • Published: July 03, 2014

sound/core/control.c in the ALSA control implementation in the Linux kernel before 3.15.2 does not ensure possession of a read/write lock, which allows local users to cause a denial of service (use-after-free) and obtain sensitive information from kernel memory by leveraging /dev/snd/controlCX access.

ELSA-2014-1392 Important: Oracle Linux kernel security, bug fix, and enhancement update Vulnerability

  • Severity: 10
  • Published: March 24, 2014

net/netfilter/nf_conntrack_proto_dccp.c in the Linux kernel through 3.13.6 uses a DCCP header pointer incorrectly, which allows remote attackers to cause a denial of service (system crash) or possibly execute arbitrary code via a DCCP packet that triggers a call to the (1) dccp_new, (2) dccp_packet, or (3) dccp_error function.

RHSA-2014:1392: kernel security, bug fix, and enhancement update Vulnerability

  • Severity: 7
  • Published: April 12, 2013

The kernel packages contain the Linux kernel, the core of any Linuxoperating system.Red Hat would like to thank Vladimir Davydov of Parallels for reportingCVE-2013-4483, Jack Morgenstein of Mellanox for reporting CVE-2014-3601,Vasily Averin of Parallels for reporting CVE-2014-5045, and Don A.Bailey from Lab Mouse Security for reporting C...