Vulnerability & Exploit Database

Displaying entries 1 - 10 of 23 in total

Results for: CVE-2014-5077 Back to search

SUSE Linux Security Advisory: SUSE-SU-2014:1669-1 Vulnerability

  • Severity: 7
  • Published: December 17, 2014

arch/x86/kernel/entry_64.S in the Linux kernel before 3.17.5 does not properly handle faults associated with the Stack Segment (SS) segment register, which allows local users to gain privileges by triggering an IRET instruction that leads to access to a GS Base address from the wrong space.

SUSE Linux Security Advisory: SUSE-SU-2014:1677-1 Vulnerability

  • Severity: 8
  • Published: November 10, 2014

The sctp_assoc_lookup_asconf_ack function in net/sctp/associola.c in the SCTP implementation in the Linux kernel through 3.17.2 allows remote attackers to cause a denial of service (panic) via duplicate ASCONF chunks that trigger an incorrect uncork within the side-effect interpreter.

RHSA-2014:1763: kernel security update Vulnerability

  • Severity: 7
  • Published: September 28, 2014

The kernel packages contain the Linux kernel, the core of any Linuxoperating system.The security impact of the CVE-2014-0205 issue was discovered by MateuszGuzik of Red Hat.All kernel users are advised to upgrade to these updated packages, whichcontain backported patches to correct these issues. The system must berebooted for this update...

ELSA-2015-0290 Important: Oracle Linux kernel security, bug fix, and enhancement update Vulnerability

  • Severity: 8
  • Published: September 28, 2014

The SMB2_tcon function in fs/cifs/smb2pdu.c in the Linux kernel before 3.16.3 allows remote CIFS servers to cause a denial of service (NULL pointer dereference and client system crash) or possibly have unspecified other impact by deleting the IPC$ share during resolution of DFS referrals.

ELSA-2014-3081 Important: Oracle Linux Unbreakable Enterprise kernel security update Vulnerability

  • Severity: 8
  • Published: September 28, 2014

include/linux/netdevice.h in the Linux kernel before 2.6.36 incorrectly uses macros for netdev_printk and its related logging implementation, which allows remote attackers to cause a denial of service (NULL pointer dereference and system crash) by sending invalid packets to a VxLAN interface.

USN-2359-1: Linux kernel vulnerabilities Vulnerability

  • Severity: 5
  • Published: August 01, 2014

The sctp_assoc_update function in net/sctp/associola.c in the Linux kernel through 3.15.8, when SCTP authentication is enabled, allows remote attackers to cause a denial of service (NULL pointer dereference and OOPS) by starting to establish an association between two endpoints immediately after an exchange of INIT and INIT ACK chunks to...

USN-2358-1: Linux kernel (Trusty HWE) vulnerabilities Vulnerability

  • Severity: 5
  • Published: August 01, 2014

The sctp_assoc_update function in net/sctp/associola.c in the Linux kernel through 3.15.8, when SCTP authentication is enabled, allows remote attackers to cause a denial of service (NULL pointer dereference and OOPS) by starting to establish an association between two endpoints immediately after an exchange of INIT and INIT ACK chunks to...

SUSE: CVE-2014-5077: SUSE Linux Security Advisory Vulnerability

  • Severity: 5
  • Published: August 01, 2014

The sctp_assoc_update function in net/sctp/associola.c in the Linux kernel through 3.15.8, when SCTP authentication is enabled, allows remote attackers to cause a denial of service (NULL pointer dereference and OOPS) by starting to establish an association between two endpoints immediately after an exchange of INIT and INIT ACK chunks to...

RHSA-2014:1872: kernel security and bug fix update Vulnerability

  • Severity: 5
  • Published: August 01, 2014

The kernel packages contain the Linux kernel, the core of any Linuxoperating system.This update also fixes the following bug:All kernel users are advised to upgrade to these updated packages, whichcontain backported patches to correct these issues. The system must berebooted for this update to take effect.

RHSA-2014:1668: kernel security, bug fix, and enhancement update Vulnerability

  • Severity: 5
  • Published: August 01, 2014

The kernel packages contain the Linux kernel, the core of any Linuxoperating system.This update also fixes several bugs and adds one enhancement.Documentation for these changes is available from the Technical Notesdocument linked to in the References section.All kernel users are advised to upgrade to these updated packages, whichcontain ...