Test ID:	1.3.6.1.4.1.25623.1.1.4.2015.0652.1
Category:	SuSE Local Security Checks
Title:	SUSE: Security Advisory (SUSE-SU-2015:0652-1)
Summary:	The remote host is missing an update for the 'Kernel' package(s) announced via the SUSE-SU-2015:0652-1 advisory.
Description:	Summary: The remote host is missing an update for the 'Kernel' package(s) announced via the SUSE-SU-2015:0652-1 advisory. Vulnerability Insight: The SUSE Linux Enterprise 11 SP1 Teradata kernel was updated to fix bugs and security issues. Following security issues were fixed: CVE-2011-1083: Limit the path length users can build using epoll() to avoid local attackers consuming lots of kernel CPU time. CVE-2011-4086: Fixed a oops in jbd/jbd2 that could be caused by specific filesystem access patterns. CVE-2011-4622: KVM: Prevent starting PIT timers in the absence of irqchip support. CVE-2012-0045: KVM: Extend 'struct x86_emulate_ops' with 'get_cpuid' and fix missing checks in syscall emulation. CVE-2012-0879: Fix io_context leak after clone with CLONE_IO. CVE-2012-1090: Fixed a dentry refcount leak in the CIFS file system that could lead to a crash on unmount. CVE-2012-1097: The regset common infrastructure assumed that regsets would always have .get and .set methods, but necessarily .active methods. Unfortunately people have since written regsets without .set method, so NULL pointer dereference attacks were possible. Following non-security issues were fixed: * SCSI inquiry doesn't return data on SLES 11-SP1 Xen VMs (bnc#745929). * FC transport driver killing off the timers/work queues (bnc#734300). * The driver ixgbevf doesn't work on newer SLES 11-SP1 kernels (bnc#752972). * Pack sparsemem memmap sections closer together and in higher zones (bnc#743870). Following feature was implemented: * The megaraid_sas driver update to version 5.40-LSI (bnc#736813). Security Issues: * CVE-2011-1083 <[link moved to references]> * CVE-2011-4086 <[link moved to references]> * CVE-2011-4622 <[link moved to references]> * CVE-2012-0045 <[link moved to references]> * CVE-2012-0879 <[link moved to references]> * CVE-2012-1090 <[link moved to references]> * CVE-2012-1097 <[link moved to references]> Affected Software/OS: 'Kernel' package(s) on SUSE Linux Enterprise Server 11-SP1. Solution: Please install the updated package(s). CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2010-1173 20110211 VMSA-2011-0003 Third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX http://www.securityfocus.com/archive/1/516397/100/0/threaded 39830 http://secunia.com/advisories/39830 40218 http://secunia.com/advisories/40218 43315 http://secunia.com/advisories/43315 DSA-2053 http://www.debian.org/security/2010/dsa-2053 MDVSA-2010:198 http://www.mandriva.com/security/advisories?name=MDVSA-2010:198 RHSA-2010:0474 http://www.redhat.com/support/errata/RHSA-2010-0474.html [netdev] 20100428 Re: [PATCH]: sctp: Fix skb_over_panic resulting from multiple invalid parameter errors (CVE-2010-1173) (v4) http://article.gmane.org/gmane.linux.network/159531 [oss-security] 20100429 CVE-2010-1173 kernel: skb_over_panic resulting from multiple invalid parameter errors http://www.openwall.com/lists/oss-security/2010/04/29/1 [oss-security] 20100429 Re: CVE-2010-1173 kernel: skb_over_panic resulting from multiple invalid parameter errors http://marc.info/?l=oss-security&m=127251068407878&w=2 http://www.openwall.com/lists/oss-security/2010/04/29/6 http://git.kernel.org/?p=linux/kernel/git/davem/net-2.6.git%3Ba=commit%3Bh=5fa782c2f5ef6c2e4f04d3e228412c9b4a4c8809 http://kbase.redhat.com/faq/docs/DOC-31052 http://www.vmware.com/security/advisories/VMSA-2011-0003.html https://bugzilla.redhat.com/show_bug.cgi?id=584645 oval:org.mitre.oval:def:11416 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11416 Common Vulnerability Exposure (CVE) ID: CVE-2010-1641 40356 http://www.securityfocus.com/bid/40356 40645 http://secunia.com/advisories/40645 ADV-2010-1857 http://www.vupen.com/english/advisories/2010/1857 SUSE-SA:2010:031 http://lists.opensuse.org/opensuse-security-announce/2010-07/msg00006.html SUSE-SA:2010:033 http://lists.opensuse.org/opensuse-security-announce/2010-08/msg00000.html [cluster-devel] 20100525 [PATCH 3/3] GFS2: Fix permissions checking for setflags ioctl() https://www.redhat.com/archives/cluster-devel/2010-May/msg00049.html [oss-security] 20100525 CVE request - kernel: GFS2: The setflags ioctl() doesn't check file ownership http://www.openwall.com/lists/oss-security/2010/05/25/1 [oss-security] 20100525 Re: CVE request - kernel: GFS2: The setflags ioctl() doesn't check file ownership http://www.openwall.com/lists/oss-security/2010/05/25/12 [oss-security] 20100526 Re: CVE request - kernel: GFS2: The setflags ioctl() doesn't check file ownership http://www.openwall.com/lists/oss-security/2010/05/26/1 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=7df0e0397b9a18358573274db9fdab991941062f http://www.kernel.org/pub/linux/kernel/v2.6/snapshots/incr/patch-2.6.34-git9-git10.bz2 https://bugzilla.redhat.com/show_bug.cgi?id=595579 kernel-gfs2-security-bypass(58926) https://exchange.xforce.ibmcloud.com/vulnerabilities/58926 oval:org.mitre.oval:def:9916 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9916 Common Vulnerability Exposure (CVE) ID: CVE-2010-2066 RHSA-2010:0610 http://www.redhat.com/support/errata/RHSA-2010-0610.html USN-1000-1 http://www.ubuntu.com/usn/USN-1000-1 [oss-security] 20100607 CVE request - kernel: ext4: Make sure the MOVE_EXT ioctl can't overwrite append-only files http://www.openwall.com/lists/oss-security/2010/06/07/1 [oss-security] 20100609 Re: CVE request - kernel: ext4: Make sure the MOVE_EXT ioctl can't overwrite append-only files http://www.openwall.com/lists/oss-security/2010/06/09/1 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=1f5a81e41f8b1a782c68d3843e9ec1bfaadf7d72 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.35 https://bugzilla.redhat.com/show_bug.cgi?id=601006 Common Vulnerability Exposure (CVE) ID: CVE-2010-2478 41223 http://www.securityfocus.com/bid/41223 SUSE-SA:2010:040 http://lists.opensuse.org/opensuse-security-announce/2010-09/msg00004.html [netdev] 20100628 [PATCH net-2.6 1/2] ethtool: Fix potential kernel buffer overflow in ETHTOOL_GRXCLSRLALL http://article.gmane.org/gmane.linux.network/164869 [oss-security] 20100629 Re: kernel: ethtool: kernel buffer overflow in ETHTOOL_GRXCLSRLALL http://www.openwall.com/lists/oss-security/2010/06/29/3 [oss-security] 20100629 kernel: ethtool: kernel buffer overflow in ETHTOOL_GRXCLSRLALL http://www.openwall.com/lists/oss-security/2010/06/29/1 [oss-security] 20100630 Re: kernel: ethtool: kernel buffer overflow in ETHTOOL_GRXCLSRLALL http://www.openwall.com/lists/oss-security/2010/06/30/17 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=db048b69037e7fa6a7d9e95a1271a50dc08ae233 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.33.7 https://bugzilla.redhat.com/show_bug.cgi?id=608950 Common Vulnerability Exposure (CVE) ID: CVE-2010-2495 [oss-security] 20100623 kernel: l2tp: Fix oops in pppol2tp_xmit http://www.openwall.com/lists/oss-security/2010/06/23/3 [oss-security] 20100704 Re: CVE Request: kernel: l2tp: Fix oops in pppol2tp_xmit http://www.openwall.com/lists/oss-security/2010/07/04/3 [oss-security] 20100704 Re: kernel: l2tp: Fix oops in pppol2tp_xmit http://www.openwall.com/lists/oss-security/2010/07/04/2 [oss-security] 20100706 Re: CVE Request: kernel: l2tp: Fix oops in pppol2tp_xmit http://www.openwall.com/lists/oss-security/2010/07/06/11 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=3feec9095d12e311b7d4eb7fe7e5dfa75d4a72a5 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.34 https://bugzilla.redhat.com/show_bug.cgi?id=607054 Common Vulnerability Exposure (CVE) ID: CVE-2010-2521 1024286 http://securitytracker.com/id?1024286 42249 http://www.securityfocus.com/bid/42249 ADV-2010-3050 http://www.vupen.com/english/advisories/2010/3050 DSA-2094 http://www.debian.org/security/2010/dsa-2094 MDVSA-2011:051 http://www.mandriva.com/security/advisories?name=MDVSA-2011:051 RHSA-2010:0606 https://rhn.redhat.com/errata/RHSA-2010-0606.html RHSA-2010:0893 http://www.redhat.com/support/errata/RHSA-2010-0893.html RHSA-2010:0907 http://www.redhat.com/support/errata/RHSA-2010-0907.html [oss-security] 20100707 CVE request - kernel: nfsd4: bug in read_buf http://www.openwall.com/lists/oss-security/2010/07/07/1 [oss-security] 20100708 Re: CVE request - kernel: nfsd4: bug in read_buf http://www.openwall.com/lists/oss-security/2010/07/09/2 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=2bc3c1179c781b359d4f2f3439cb3df72afc17fc http://www.kernel.org/pub/linux/kernel/v2.6/testing/v2.6.34/ChangeLog-2.6.34-rc6 https://bugzilla.redhat.com/show_bug.cgi?id=612028 Common Vulnerability Exposure (CVE) ID: CVE-2010-2524 MDVSA-2010:172 http://www.mandriva.com/security/advisories?name=MDVSA-2010:172 [oss-security] 20100802 CVE-2010-2524 kernel: dns_resolver upcall security issue http://marc.info/?l=oss-security&m=128072090331700&w=2 [oss-security] 20100802 Re: CVE-2010-2524 kernel: dns_resolver upcall security issue http://marc.info/?l=oss-security&m=128078387328921&w=2 [oss-security] 20100803 Re: CVE-2010-2524 kernel: dns_resolver upcall security issue http://marc.info/?l=oss-security&m=128080755321157&w=2 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=4c0c03ca54f72fdd5912516ad0a23ec5cf01bda7 https://bugzilla.redhat.com/show_bug.cgi?id=612166 Common Vulnerability Exposure (CVE) ID: CVE-2010-2537 41847 http://www.securityfocus.com/bid/41847 42758 http://secunia.com/advisories/42758 ADV-2011-0070 http://www.vupen.com/english/advisories/2011/0070 USN-1041-1 http://www.ubuntu.com/usn/USN-1041-1 [oss-security] 20100721 CVE request: kernel: btrfs http://www.openwall.com/lists/oss-security/2010/07/21/4 [oss-security] 20100721 Re: CVE request: kernel: btrfs http://www.openwall.com/lists/oss-security/2010/07/21/10 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=2ebc3464781ad24474abcbd2274e6254689853b5 https://bugzilla.redhat.com/show_bug.cgi?id=616998 Common Vulnerability Exposure (CVE) ID: CVE-2010-2538 41854 http://www.securityfocus.com/bid/41854 Common Vulnerability Exposure (CVE) ID: CVE-2010-2798 1024386 http://securitytracker.com/id?1024386 20111013 VMSA-2011-0012 VMware ESXi and ESX updates to third party libraries and ESX Service Console http://www.securityfocus.com/archive/1/520102/100/0/threaded 42124 http://www.securityfocus.com/bid/42124 46397 http://secunia.com/advisories/46397 RHSA-2010:0660 http://www.redhat.com/support/errata/RHSA-2010-0660.html RHSA-2010:0670 http://www.redhat.com/support/errata/RHSA-2010-0670.html RHSA-2010:0723 http://www.redhat.com/support/errata/RHSA-2010-0723.html SUSE-SA:2010:054 http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00000.html [oss-security] 20100802 CVE request: kernel: gfs2: rename cases kernel panic http://www.openwall.com/lists/oss-security/2010/08/02/1 [oss-security] 20100802 Re: CVE request: kernel: gfs2: rename cases kernel panic http://www.openwall.com/lists/oss-security/2010/08/02/10 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=728a756b8fcd22d80e2dbba8117a8a3aafd3f203 http://support.avaya.com/css/P8/documents/100113326 http://www.vmware.com/security/advisories/VMSA-2011-0012.html https://bugzilla.redhat.com/show_bug.cgi?id=620300 Common Vulnerability Exposure (CVE) ID: CVE-2010-2803 41512 http://secunia.com/advisories/41512 ADV-2010-2430 http://www.vupen.com/english/advisories/2010/2430 ADV-2011-0298 http://www.vupen.com/english/advisories/2011/0298 RHSA-2010:0842 http://www.redhat.com/support/errata/RHSA-2010-0842.html SUSE-SA:2010:041 http://lists.opensuse.org/opensuse-security-announce/2010-09/msg00005.html SUSE-SA:2011:007 http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00000.html http://git.kernel.org/?p=linux/kernel/git/airlied/drm-2.6.git%3Ba=commit%3Bh=1b2f1489633888d4a06028315dc19d65768a1c05 http://git.kernel.org/?p=linux/kernel/git/airlied/drm-2.6.git%3Ba=commit%3Bh=b9f0aee83335db1f3915f4e42a5e21b351740afd http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=b9f0aee83335db1f3915f4e42a5e21b351740afd http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.27.53 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.32.21 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.34.6 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.35.4 https://bugzilla.redhat.com/show_bug.cgi?id=621435 Common Vulnerability Exposure (CVE) ID: CVE-2010-2942 42529 http://www.securityfocus.com/bid/42529 RHSA-2010:0771 http://www.redhat.com/support/errata/RHSA-2010-0771.html RHSA-2010:0779 http://www.redhat.com/support/errata/RHSA-2010-0779.html SUSE-SA:2010:060 http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00004.html [oss-security] 20100818 CVE request - kernel: net sched memleak http://www.openwall.com/lists/oss-security/2010/08/18/1 [oss-security] 20100819 Re: CVE request - kernel: net sched memleak http://www.openwall.com/lists/oss-security/2010/08/19/4 http://git.kernel.org/?p=linux/kernel/git/davem/net-2.6.git%3Ba=commit%3Bh=1c40be12f7d8ca1d387510d39787b12e512a7ce8 http://patchwork.ozlabs.org/patch/61857/ http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.36-rc2 https://bugzilla.redhat.com/show_bug.cgi?id=624903 Common Vulnerability Exposure (CVE) ID: CVE-2010-2943 42527 http://www.securityfocus.com/bid/42527 43161 http://secunia.com/advisories/43161 ADV-2011-0280 http://www.vupen.com/english/advisories/2011/0280 USN-1057-1 http://www.ubuntu.com/usn/USN-1057-1 [linux-xfs] 20100620 [PATCH 0/4, V2] xfs: validate inode numbers in file handles correctly http://article.gmane.org/gmane.comp.file-systems.xfs.general/33767 [linux-xfs] 20100620 [PATCH 2/4] xfs: validate untrusted inode numbers during lookup http://article.gmane.org/gmane.comp.file-systems.xfs.general/33771 [linux-xfs] 20100620 [PATCH 3/4] xfs: rename XFS_IGET_BULKSTAT to XFS_IGET_UNTRUSTED http://article.gmane.org/gmane.comp.file-systems.xfs.general/33768 [linux-xfs] 20100620 [PATCH 4/4] xfs: remove block number from inode lookup code http://article.gmane.org/gmane.comp.file-systems.xfs.general/33769 [oss-security] 20100818 CVE request - kernel: xfs: stale data exposure http://www.openwall.com/lists/oss-security/2010/08/18/2 [oss-security] 20100819 Re: CVE request - kernel: xfs: stale data exposure http://www.openwall.com/lists/oss-security/2010/08/19/5 [xfs] 20100617 [PATCH] xfsqa: test open_by_handle() on unlinked and freed inode clusters V2 http://oss.sgi.com/archives/xfs/2010-06/msg00191.html [xfs] 20100618 Re: [PATCH] xfsqa: test open_by_handle() on unlinked and freed inode clusters V2 http://oss.sgi.com/archives/xfs/2010-06/msg00198.html http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=1920779e67cbf5ea8afef317777c5bf2b8096188 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=7124fe0a5b619d65b739477b3b55a20bf805b06d http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=7b6259e7a83647948fa33a736cc832310c8d85aa https://bugzilla.redhat.com/show_bug.cgi?id=624923 Common Vulnerability Exposure (CVE) ID: CVE-2010-2946 41321 http://secunia.com/advisories/41321 42589 http://www.securityfocus.com/bid/42589 43291 http://secunia.com/advisories/43291 ADV-2011-0375 http://www.vupen.com/english/advisories/2011/0375 SUSE-SA:2011:008 http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00002.html [oss-security] 20100820 CVE request - kernel: jfs: don't allow os2 xattr namespace overlap with others http://www.openwall.com/lists/oss-security/2010/08/20/1 [oss-security] 20100820 Re: CVE request - kernel: jfs: don't allow os2 xattr namespace overlap with others http://www.openwall.com/lists/oss-security/2010/08/20/11 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=aca0fa34bdaba39bfddddba8ca70dba4782e8fe6 http://www.kernel.org/pub/linux/kernel/v2.4/ChangeLog-2.4.37.10 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.27.51 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.35.2 Common Vulnerability Exposure (CVE) ID: CVE-2010-2954 41234 http://secunia.com/advisories/41234 ADV-2010-2266 http://www.vupen.com/english/advisories/2010/2266 SUSE-SA:2010:050 http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00003.html [netdev] 20100830 [PATCH] irda: Correctly clean up self->ias_obj on irda_bind() failure. http://www.spinics.net/lists/netdev/msg139404.html [oss-security] 20100901 CVE-2010-2954 kernel: irda null ptr deref http://marc.info/?l=oss-security&m=128331787923285&w=2 http://git.kernel.org/?p=linux/kernel/git/davem/net-2.6.git%3Ba=commit%3Bh=628e300cccaa628d8fb92aa28cb7530a3d5f2257 http://twitter.com/taviso/statuses/22635752128 http://www.kernel.org/pub/linux/kernel/v2.6/next/patch-v2.6.36-rc3-next-20100901.bz2 https://bugzilla.redhat.com/show_bug.cgi?id=628770 kernel-irdabind-dos(61522) https://exchange.xforce.ibmcloud.com/vulnerabilities/61522 Common Vulnerability Exposure (CVE) ID: CVE-2010-2955 41245 http://secunia.com/advisories/41245 42885 http://www.securityfocus.com/bid/42885 [linux-kernel] 20100827 [PATCH] wireless: fix 64K kernel heap content leak via ioctl http://lkml.org/lkml/2010/8/27/413 [linux-kernel] 20100830 Re: [PATCH] wireless extensions: fix kernel heap content leak http://lkml.org/lkml/2010/8/30/351 [linux-kernel] 20100830 Re: [PATCH] wireless: fix 64K kernel heap content leak via ioctl http://lkml.org/lkml/2010/8/30/127 [linux-kernel] 20100830 [PATCH] wireless extensions: fix kernel heap content leak http://lkml.org/lkml/2010/8/30/146 [oss-security] 20100831 CVE-2010-2955 kernel: wireless: fix 64K kernel heap content leak via ioctl http://www.openwall.com/lists/oss-security/2010/08/31/1 http://forums.grsecurity.net/viewtopic.php?f=3&t=2290 http://git.kernel.org/?p=linux/kernel/git/linville/wireless-2.6.git%3Ba=commit%3Bh=42da2f948d949efd0111309f5827bf0298bcc9a4 http://grsecurity.net/~spender/wireless-infoleak-fix2.patch http://www.kernel.org/pub/linux/kernel/v2.6/next/patch-v2.6.36-rc3-next-20100831.bz2 https://bugzilla.redhat.com/show_bug.cgi?id=628434 Common Vulnerability Exposure (CVE) ID: CVE-2010-2959 BugTraq ID: 42585 http://www.securityfocus.com/bid/42585 Debian Security Information: DSA-2094 (Google Search) http://lists.fedoraproject.org/pipermail/package-announce/2010-September/046947.html http://jon.oberheide.org/files/i-can-haz-modharden.c http://www.openwall.com/lists/oss-security/2010/08/20/2 SuSE Security Announcement: SUSE-SA:2010:040 (Google Search) SuSE Security Announcement: SUSE-SA:2010:041 (Google Search) SuSE Security Announcement: SUSE-SA:2011:007 (Google Search) Common Vulnerability Exposure (CVE) ID: CVE-2010-2960 BugTraq ID: 42932 http://www.securityfocus.com/bid/42932 http://twitter.com/taviso/statuses/22777866582 http://www.openwall.com/lists/oss-security/2010/09/02/1 http://securitytracker.com/id?1024384 http://secunia.com/advisories/41263 SuSE Security Announcement: SUSE-SA:2010:050 (Google Search) XForce ISS Database: linux-kernel-keyctl-dos(61557) https://exchange.xforce.ibmcloud.com/vulnerabilities/61557 Common Vulnerability Exposure (CVE) ID: CVE-2010-2962 BugTraq ID: 44067 http://www.securityfocus.com/bid/44067 http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052513.html http://www.redhat.com/support/errata/RHSA-2010-0958.html http://secunia.com/advisories/42745 SuSE Security Announcement: SUSE-SA:2010:051 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00004.html http://www.vupen.com/english/advisories/2010/3321 Common Vulnerability Exposure (CVE) ID: CVE-2010-2963 BugTraq ID: 44242 http://www.securityfocus.com/bid/44242 Debian Security Information: DSA-2126 (Google Search) http://www.debian.org/security/2010/dsa-2126 http://www.mandriva.com/security/advisories?name=MDVSA-2010:257 http://www.outflux.net/blog/archives/2010/10/19/cve-2010-2963-v4l-compat-exploit/ http://www.securitytracker.com/id?1024710 SuSE Security Announcement: SUSE-SA:2010:053 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00008.html SuSE Security Announcement: SUSE-SA:2010:057 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00004.html Common Vulnerability Exposure (CVE) ID: CVE-2010-3015 BugTraq ID: 42477 http://www.securityfocus.com/bid/42477 Bugtraq: 20111013 VMSA-2011-0012 VMware ESXi and ESX updates to third party libraries and ESX Service Console (Google Search) http://www.mandriva.com/security/advisories?name=MDVSA-2010:247 http://www.mandriva.com/security/advisories?name=MDVSA-2011:029 http://marc.info/?l=oss-security&m=128192548904503&w=2 http://marc.info/?l=oss-security&m=128197862004376&w=2 http://marc.info/?l=oss-security&m=128201627016896&w=2 SuSE Security Announcement: SUSE-SA:2010:054 (Google Search) http://www.vupen.com/english/advisories/2010/3117 XForce ISS Database: kernel-stacksize-dos(61156) https://exchange.xforce.ibmcloud.com/vulnerabilities/61156 Common Vulnerability Exposure (CVE) ID: CVE-2010-3078 1024418 http://securitytracker.com/id?1024418 41284 http://secunia.com/advisories/41284 42890 http://secunia.com/advisories/42890 43022 http://www.securityfocus.com/bid/43022 RHSA-2010:0839 http://www.redhat.com/support/errata/RHSA-2010-0839.html RHSA-2011:0007 http://www.redhat.com/support/errata/RHSA-2011-0007.html [oss-security] 20100907 CVE request: kernel: xfs: XFS_IOC_FSGETXATTR ioctl memory leak http://www.openwall.com/lists/oss-security/2010/09/07/1 [oss-security] 20100907 Re: CVE request: kernel: xfs: XFS_IOC_FSGETXATTR ioctl memory leak http://www.openwall.com/lists/oss-security/2010/09/07/12 [xfs-masters] 20100906 [PATCH] xfs: prevent reading uninitialized stack memory http://www.linux.sgi.com/archives/xfs-masters/2010-09/msg00002.html http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=a122eb2fdfd78b58c6dd992d6f4b1aaef667eef9 http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.36-rc4 https://bugzilla.redhat.com/show_bug.cgi?id=630804 Common Vulnerability Exposure (CVE) ID: CVE-2010-3079 43684 http://www.securityfocus.com/bid/43684 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=9c55cb12c1c172e2d51e85fbb5a4796ca86b77e7 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.35.5 https://bugzilla.redhat.com/show_bug.cgi?id=631623 Common Vulnerability Exposure (CVE) ID: CVE-2010-3080 43062 http://www.securityfocus.com/bid/43062 [oss-security] 20100908 CVE-2010-3080 kernel: /dev/sequencer open failure is not handled correctly http://www.openwall.com/lists/oss-security/2010/09/08/7 http://git.kernel.org/?p=linux/kernel/git/tiwai/sound-2.6.git%3Ba=commit%3Bh=c598337660c21c0afaa9df5a65bb4a7a0cf15be8 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=27f7ad53829f79e799a253285318bff79ece15bd https://bugzilla.redhat.com/show_bug.cgi?id=630551 Common Vulnerability Exposure (CVE) ID: CVE-2010-3081 20100916 Ac1db1tch3z vs x86_64 Linux Kernel http://archives.neohapsis.com/archives/fulldisclosure/2010-09/0273.html 20100916 Workaround for Ac1db1tch3z exploit. http://archives.neohapsis.com/archives/fulldisclosure/2010-09/0278.html 20101130 VMSA-2010-0017 VMware ESX third party update for Service Console kerne http://www.securityfocus.com/archive/1/514938/30/30/threaded 42384 http://secunia.com/advisories/42384 ADV-2010-3083 http://www.vupen.com/english/advisories/2010/3083 ADV-2010-3117 MDVSA-2010:214 http://www.mandriva.com/security/advisories?name=MDVSA-2010:214 MDVSA-2010:247 RHSA-2010:0758 http://www.redhat.com/support/errata/RHSA-2010-0758.html RHSA-2010:0882 http://www.redhat.com/support/errata/RHSA-2010-0882.html SUSE-SR:2010:017 http://lists.opensuse.org/opensuse-security-announce/2010-09/msg00006.html [oss-security] 20100916 CVE-2010-3081 kernel: 64-bit Compatibility Mode Stack Pointer Underflow http://marc.info/?l=oss-security&m=128461522230211&w=2 http://blog.ksplice.com/2010/09/cve-2010-3081/ http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=c41d68a513c71e35a14f66d71782d27a79a81ea6 http://isc.sans.edu/diary.html?storyid=9574 http://sota.gen.nz/compat1/ http://www.kernel.org/pub/linux/kernel/v2.6/snapshots/patch-2.6.36-rc4-git2.log http://www.vmware.com/security/advisories/VMSA-2010-0017.html https://access.redhat.com/kb/docs/DOC-40265 https://bugzilla.redhat.com/show_bug.cgi?id=634457 Common Vulnerability Exposure (CVE) ID: CVE-2010-3084 43098 http://www.securityfocus.com/bid/43098 [netdev] 20100907 [PATCH net-2.6] niu: Fix kernel buffer overflow for ETHTOOL_GRXCLSRLALL http://www.spinics.net/lists/netdev/msg140133.html [oss-security] 20100909 CVE request: kernel: niu buffer overflow for ETHTOOL_GRXCLSRLALL http://www.openwall.com/lists/oss-security/2010/09/09/1 [oss-security] 20100910 Re: CVE request: kernel: niu buffer overflow for ETHTOOL_GRXCLSRLALL http://www.openwall.com/lists/oss-security/2010/09/11/1 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=ee9c5cfad29c8a13199962614b9b16f1c4137ac9 https://bugzilla.redhat.com/show_bug.cgi?id=632069 Common Vulnerability Exposure (CVE) ID: CVE-2010-3296 41440 http://secunia.com/advisories/41440 42884 http://secunia.com/advisories/42884 43221 http://www.securityfocus.com/bid/43221 DSA-2126 RHSA-2011:0017 http://www.redhat.com/support/errata/RHSA-2011-0017.html [linux-kernel] 20100911 [PATCH] drivers/net/cxgb3/cxgb3_main.c: prevent reading uninitialized stack memory http://lkml.org/lkml/2010/9/11/170 [oss-security] 20100914 CVE request: kernel: numerous infoleaks http://www.openwall.com/lists/oss-security/2010/09/14/2 [oss-security] 20100914 Re: CVE request: kernel: numerous infoleaks http://www.openwall.com/lists/oss-security/2010/09/14/7 http://git.kernel.org/?p=linux/kernel/git/davem/net-2.6.git%3Ba=commit%3Bh=49c37c0334a9b85d30ab3d6b5d1acb05ef2ef6de http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.36-rc5 https://bugzilla.redhat.com/show_bug.cgi?id=633149 Common Vulnerability Exposure (CVE) ID: CVE-2010-3297 43229 http://www.securityfocus.com/bid/43229 [linux-kernel] 20100911 [PATCH] drivers/net/eql.c: prevent reading uninitialized stack memory http://lkml.org/lkml/2010/9/11/168 http://git.kernel.org/?p=linux/kernel/git/davem/net-2.6.git%3Ba=commit%3Bh=44467187dc22fdd33a1a06ea0ba86ce20be3fe3c https://bugzilla.redhat.com/show_bug.cgi?id=633145 Common Vulnerability Exposure (CVE) ID: CVE-2010-3298 43226 http://www.securityfocus.com/bid/43226 [linux-kernel] 20100911 [PATCH] drivers/net/usb/hso.c: prevent reading uninitialized memory http://lkml.org/lkml/2010/9/11/167 http://git.kernel.org/?p=linux/kernel/git/davem/net-2.6.git%3Ba=commit%3Bh=7011e660938fc44ed86319c18a5954e95a82ab3e https://bugzilla.redhat.com/show_bug.cgi?id=633140 Common Vulnerability Exposure (CVE) ID: CVE-2010-3301 [oss-security] 20100916 CVE-2010-3301 kernel: IA32 System Call Entry Point Vulnerability http://www.openwall.com/lists/oss-security/2010/09/16/1 [oss-security] 20100916 Re: CVE-2010-3301 kernel: IA32 System Call Entry Point Vulnerability http://www.openwall.com/lists/oss-security/2010/09/16/3 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=36d001c70d8a0144ac1d038f6876c484849a74de http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=eefdca043e8391dcd719711716492063030b55ac http://sota.gen.nz/compat2/ https://bugzilla.redhat.com/show_bug.cgi?id=634449 Common Vulnerability Exposure (CVE) ID: CVE-2010-3310 41493 http://secunia.com/advisories/41493 43368 http://www.securityfocus.com/bid/43368 68163 http://www.osvdb.org/68163 MDVSA-2011:029 SUSE-SA:2010:051 [linux-netdev] 20100920 [PATCH] rose: Fix signedness issues wrt. digi count. http://marc.info/?l=linux-netdev&m=128502238927086&w=2 [oss-security] 20100921 CVE request: kernel: Heap corruption in ROSE http://www.openwall.com/lists/oss-security/2010/09/21/1 [oss-security] 20100921 Re: CVE request: kernel: Heap corruption in ROSE http://www.openwall.com/lists/oss-security/2010/09/21/2 http://git.kernel.org/?p=linux/kernel/git/davem/net-2.6.git%3Ba=commit%3Bh=9828e6e6e3f19efcb476c567b9999891d051f52f http://www.kernel.org/pub/linux/kernel/v2.6/next/patch-v2.6.36-rc5-next-20100923.bz2 kernel-rose-bind-dos(61953) https://exchange.xforce.ibmcloud.com/vulnerabilities/61953 Common Vulnerability Exposure (CVE) ID: CVE-2010-3437 15150 http://www.exploit-db.com/exploits/15150/ 42778 http://secunia.com/advisories/42778 42801 http://secunia.com/advisories/42801 42932 http://secunia.com/advisories/42932 43551 http://www.securityfocus.com/bid/43551 ADV-2011-0012 http://www.vupen.com/english/advisories/2011/0012 ADV-2011-0124 http://www.vupen.com/english/advisories/2011/0124 SUSE-SA:2011:001 http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00000.html SUSE-SA:2011:002 http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00001.html SUSE-SA:2011:004 http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00004.html [oss-security] 20100928 CVE request - kernel: pktcdvd ioctl dev_minor missing range check http://www.openwall.com/lists/oss-security/2010/09/28/2 [oss-security] 20100928 Re: CVE request - kernel: pktcdvd ioctl dev_minor missing range check http://www.openwall.com/lists/oss-security/2010/09/28/6 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=252a52aa4fa22a668f019e55b3aac3ff71ec1c29 http://jon.oberheide.org/files/cve-2010-3437.c http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.36-rc6 https://bugzilla.redhat.com/show_bug.cgi?id=638085 Common Vulnerability Exposure (CVE) ID: CVE-2010-3699 1024786 http://www.securitytracker.com/id?1024786 42372 http://secunia.com/advisories/42372 42789 http://secunia.com/advisories/42789 43056 http://secunia.com/advisories/43056 45039 http://www.securityfocus.com/bid/45039 ADV-2011-0024 http://www.vupen.com/english/advisories/2011/0024 ADV-2011-0213 http://www.vupen.com/english/advisories/2011/0213 RHSA-2011:0004 http://www.redhat.com/support/errata/RHSA-2011-0004.html SUSE-SA:2011:005 http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00007.html http://xenbits.xensource.com/linux-2.6.18-xen.hg?rev/59f097ef181b Common Vulnerability Exposure (CVE) ID: CVE-2010-3705 42745 ADV-2010-3321 FEDORA-2010-18983 RHSA-2010:0958 [linux-kernel] 20101001 [PATCH] Fix out-of-bounds reading in sctp_asoc_get_hmac() http://marc.info/?l=linux-kernel&m=128596992418814&w=2 [oss-security] 20101004 CVE request: kernel: SCTP memory corruption in HMAC handling http://www.openwall.com/lists/oss-security/2010/10/04/2 [oss-security] 20101004 Re: CVE request: kernel: SCTP memory corruption in HMAC handling http://www.openwall.com/lists/oss-security/2010/10/04/7 http://git.kernel.org/?p=linux/kernel/git/davem/net-2.6.git%3Ba=commit%3Bh=51e97a12bef19b7e43199fc153cf9bd5f2140362 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.36 https://bugzilla.redhat.com/show_bug.cgi?id=640036 Common Vulnerability Exposure (CVE) ID: CVE-2010-3858 15619 http://www.exploit-db.com/exploits/15619 44301 http://www.securityfocus.com/bid/44301 MDVSA-2010:257 [oss-security] 20101021 CVE request: kernel: setup_arg_pages: diagnose excessive argument size http://www.openwall.com/lists/oss-security/2010/10/21/1 [oss-security] 20101022 Re: CVE request: kernel: setup_arg_pages: diagnose excessive argument size http://www.openwall.com/lists/oss-security/2010/10/22/4 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=1b528181b2ffa14721fb28ad1bd539fe1732c583 http://grsecurity.net/~spender/64bit_dos.c https://bugzilla.redhat.com/show_bug.cgi?id=645222 Common Vulnerability Exposure (CVE) ID: CVE-2010-3861 44427 http://www.securityfocus.com/bid/44427 [oss-security] 20101025 CVE request: kernel: heap contents leak from ETHTOOL_GRXCLSRLALL http://openwall.com/lists/oss-security/2010/10/25/4 [oss-security] 20101026 Re: CVE request: kernel: heap contents leak from ETHTOOL_GRXCLSRLALL http://openwall.com/lists/oss-security/2010/10/26/1 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=ae6df5f96a51818d6376da5307d773baeece4014 https://bugzilla.redhat.com/show_bug.cgi?id=646725 Common Vulnerability Exposure (CVE) ID: CVE-2010-3865 44549 http://www.securityfocus.com/bid/44549 SUSE-SA:2010:057 [netdev] 20101028 Re: [Security] TIPC security issues http://www.spinics.net/lists/netdev/msg145359.html http://www.spinics.net/lists/netdev/msg145397.html [oss-security] 20101029 CVE request: kernel: iovec overflow in rds_rdma_pages() http://www.openwall.com/lists/oss-security/2010/10/29/1 [oss-security] 20101101 Re: CVE request: kernel: iovec overflow in rds_rdma_pages() http://www.openwall.com/lists/oss-security/2010/11/01/1 kernel-rdsrdmapages-overflow(62881) https://exchange.xforce.ibmcloud.com/vulnerabilities/62881 Common Vulnerability Exposure (CVE) ID: CVE-2010-3873 [netdev] 20101102 [SECURITY] memory corruption in X.25 facilities parsing http://www.spinics.net/lists/netdev/msg145786.html [netdev] 20101104 Re: [SECURITY] memory corruption in X.25 facilities parsing http://www.spinics.net/lists/netdev/msg145873.html [oss-security] 20101103 CVE request: X.25 remote DoS http://openwall.com/lists/oss-security/2010/11/03/2 [oss-security] 20101104 Re: CVE request: X.25 remote DoS http://openwall.com/lists/oss-security/2010/11/04/3 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=a6331d6f9a4298173b413cf99a40cc86a9d92c37 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.36.2 https://bugzilla.redhat.com/show_bug.cgi?id=649693 openSUSE-SU-2013:0925 http://lists.opensuse.org/opensuse-security-announce/2013-06/msg00005.html Common Vulnerability Exposure (CVE) ID: CVE-2010-3874 [netdev] 20101102 [SECURITY] CAN info leak/minor heap overflow http://www.spinics.net/lists/netdev/msg145791.html [netdev] 20101110 can-bcm: fix minor heap overflow http://www.spinics.net/lists/netdev/msg146469.html [oss-security] 20101103 CVE request: kernel: CAN information leak http://openwall.com/lists/oss-security/2010/11/03/3 [oss-security] 20101104 Re: CVE request: kernel: CAN information leak http://openwall.com/lists/oss-security/2010/11/04/4 [oss-security] 20101220 CVE request: kernel: CAN information leak, 2nd attempt http://openwall.com/lists/oss-security/2010/12/20/2 [oss-security] 20101220 Re: CVE request: kernel: CAN information leak, 2nd attempt http://openwall.com/lists/oss-security/2010/12/20/3 http://openwall.com/lists/oss-security/2010/12/20/4 http://openwall.com/lists/oss-security/2010/12/20/5 http://openwall.com/lists/oss-security/2010/12/21/1 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=0597d1b99fcfc2c0eada09a698f85ed413d4ba84 https://bugzilla.redhat.com/show_bug.cgi?id=649695 Common Vulnerability Exposure (CVE) ID: CVE-2010-3875 44630 http://www.securityfocus.com/bid/44630 [netdev] 20101031 [PATCH 1/3] net: ax25: fix information leak to userland http://marc.info/?l=linux-netdev&m=128854507120898&w=2 [oss-security] 20101102 CVE request: kernel stack infoleaks http://openwall.com/lists/oss-security/2010/11/02/7 [oss-security] 20101104 Re: CVE request: kernel stack infoleaks http://openwall.com/lists/oss-security/2010/11/04/5 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=fe10ae53384e48c51996941b7720ee16995cbcb7 http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.37-rc2 https://bugzilla.redhat.com/show_bug.cgi?id=649713 Common Vulnerability Exposure (CVE) ID: CVE-2010-3876 42963 http://secunia.com/advisories/42963 ADV-2011-0168 http://www.vupen.com/english/advisories/2011/0168 RHSA-2011:0162 http://www.redhat.com/support/errata/RHSA-2011-0162.html [netdev] 20101031 [PATCH 2/3] net: packet: fix information leak to userland http://marc.info/?l=linux-netdev&m=128854507220908&w=2 [oss-security] 20101102 Re: CVE request: kernel stack infoleaks http://openwall.com/lists/oss-security/2010/11/02/10 http://openwall.com/lists/oss-security/2010/11/02/12 http://openwall.com/lists/oss-security/2010/11/02/9 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=67286640f638f5ad41a946b9a3dc75327950248f https://bugzilla.redhat.com/show_bug.cgi?id=649715 Common Vulnerability Exposure (CVE) ID: CVE-2010-3877 [netdev] 20101031 [PATCH 3/3] net: tipc: fix information leak to userland http://marc.info/?l=linux-netdev&m=128854507420917&w=2 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=88f8a5e3e7defccd3925cabb1ee4d3994e5cdb52 https://bugzilla.redhat.com/show_bug.cgi?id=649717 kernel-getname-info-disc(64578) https://exchange.xforce.ibmcloud.com/vulnerabilities/64578 Common Vulnerability Exposure (CVE) ID: CVE-2010-3880 42126 http://secunia.com/advisories/42126 44665 http://www.securityfocus.com/bid/44665 [netdev] 20101103 [PATCH 2/2] inet_diag: Make sure we actually run the same bytecode we audited. http://www.spinics.net/lists/netdev/msg145899.html [oss-security] 20101104 CVE request: kernel: logic error in INET_DIAG bytecode auditing http://openwall.com/lists/oss-security/2010/11/04/9 [oss-security] 20101105 Re: CVE request: kernel: logic error in INET_DIAG bytecode auditing http://openwall.com/lists/oss-security/2010/11/05/3 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=22e76c849d505d87c5ecf3d3e6742a65f0ff4860 https://bugzilla.redhat.com/show_bug.cgi?id=651264 Common Vulnerability Exposure (CVE) ID: CVE-2010-3881 1024912 http://securitytracker.com/id?1024912 44666 http://www.securityfocus.com/bid/44666 ADV-2010-3287 http://www.vupen.com/english/advisories/2010/3287 RHSA-2010:0998 http://rhn.redhat.com/errata/RHSA-2010-0998.html [kvm] 20101030 [patch v2] x86: kvm: x86: fix information leak to userland http://www.spinics.net/lists/kvm/msg44130.html [oss-security] 20101104 CVE request: kernel: kvm kernel stack leakage http://openwall.com/lists/oss-security/2010/11/04/10 [oss-security] 20101105 Re: CVE request: kernel: kvm kernel stack leakage http://openwall.com/lists/oss-security/2010/11/05/4 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=97e69aa62f8b5d338d6cff49be09e37cc1262838 http://git.kernel.org/?p=virt/kvm/kvm.git%3Ba=commit%3Bh=831d9d02f9522e739825a51a11e3bc5aa531a905 https://bugzilla.redhat.com/show_bug.cgi?id=649920 Common Vulnerability Exposure (CVE) ID: CVE-2010-3904 CERT/CC vulnerability note: VU#362983 http://www.kb.cert.org/vuls/id/362983 https://www.exploit-db.com/exploits/44677/ http://packetstormsecurity.com/files/155751/vReliable-Datagram-Sockets-RDS-rds_page_copy_user-Privilege-Escalation.html http://www.vsecurity.com/download/tools/linux-rds-exploit.c http://www.vsecurity.com/resources/advisory/20101019-1/ http://www.redhat.com/support/errata/RHSA-2010-0792.html http://securitytracker.com/id?1024613 Common Vulnerability Exposure (CVE) ID: CVE-2010-4072 BugTraq ID: 45054 http://www.securityfocus.com/bid/45054 http://lkml.org/lkml/2010/10/6/454 http://www.openwall.com/lists/oss-security/2010/10/07/1 http://www.openwall.com/lists/oss-security/2010/10/25/3 SuSE Security Announcement: SUSE-SA:2010:060 (Google Search) SuSE Security Announcement: SUSE-SA:2011:001 (Google Search) SuSE Security Announcement: SUSE-SA:2011:004 (Google Search) SuSE Security Announcement: SUSE-SA:2011:008 (Google Search) Common Vulnerability Exposure (CVE) ID: CVE-2010-4073 BugTraq ID: 45073 http://www.securityfocus.com/bid/45073 http://lkml.org/lkml/2010/10/6/492 http://securityreason.com/securityalert/8366 Common Vulnerability Exposure (CVE) ID: CVE-2010-4075 BugTraq ID: 43806 http://www.securityfocus.com/bid/43806 http://lkml.indiana.edu/hypermail//linux/kernel/1009.1/03388.html http://www.openwall.com/lists/oss-security/2010/09/25/2 http://www.openwall.com/lists/oss-security/2010/10/06/6 Common Vulnerability Exposure (CVE) ID: CVE-2010-4076 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=d281da7ff6f70efca0553c288bb883e8605b3862 http://lkml.org/lkml/2010/9/15/389 Common Vulnerability Exposure (CVE) ID: CVE-2010-4077 BugTraq ID: 45059 http://www.securityfocus.com/bid/45059 http://lkml.indiana.edu/hypermail//linux/kernel/1009.1/03387.html http://securityreason.com/securityalert/8129 Common Vulnerability Exposure (CVE) ID: CVE-2010-4082 BugTraq ID: 43817 http://www.securityfocus.com/bid/43817 http://lkml.indiana.edu/hypermail//linux/kernel/1009.1/03392.html SuSE Security Announcement: SUSE-SA:2011:002 (Google Search) Common Vulnerability Exposure (CVE) ID: CVE-2010-4083 BugTraq ID: 43809 http://www.securityfocus.com/bid/43809 http://www.spinics.net/lists/mm-commits/msg80234.html Common Vulnerability Exposure (CVE) ID: CVE-2010-4157 44648 http://www.securityfocus.com/bid/44648 [linux-scsi] 20101008 [patch] gdth: integer overflow in ioctl http://ns3.spinics.net/lists/linux-scsi/msg47361.html [oss-security] 20101108 CVE request: kernel: gdth: integer overflow in ioc_general() http://openwall.com/lists/oss-security/2010/11/09/1 [oss-security] 20101108 Re: CVE request: kernel: gdth: integer overflow in ioc_general() http://openwall.com/lists/oss-security/2010/11/09/3 [oss-security] 20101109 Re: CVE request: kernel: gdth: integer overflow in ioc_general() http://openwall.com/lists/oss-security/2010/11/09/4 http://openwall.com/lists/oss-security/2010/11/09/5 [oss-security] 20101110 Re: CVE request: kernel: gdth: integer overflow in ioc_general() http://openwall.com/lists/oss-security/2010/11/10/12 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=f63ae56e4e97fb12053590e41a4fa59e7daa74a4 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.36.1 https://bugzilla.redhat.com/show_bug.cgi?id=651147 Common Vulnerability Exposure (CVE) ID: CVE-2010-4158 20101109 Kernel 0-day http://lists.grok.org.uk/pipermail/full-disclosure/2010-November/077321.html http://www.securityfocus.com/archive/1/514705 20101118 Re: Kernel 0-day http://www.securityfocus.com/archive/1/514845 44758 http://www.securityfocus.com/bid/44758 [netdev] 20101109 [PATCH] Prevent reading uninitialized memory with socket filters http://www.spinics.net/lists/netdev/msg146361.html http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=57fe93b374a6b8711995c2d466c502af9f3a08bb https://bugzilla.redhat.com/show_bug.cgi?id=651698 Common Vulnerability Exposure (CVE) ID: CVE-2010-4160 44762 http://www.securityfocus.com/bid/44762 [netdev] 20101027 Re: [PATCH 1/4] tipc: Fix bugs in tipc_msg_calc_data_size() http://www.spinics.net/lists/netdev/msg145248.html [netdev] 20101031 [SECURITY] L2TP send buffer allocation size overflows http://www.spinics.net/lists/netdev/msg145673.html [oss-security] 20101110 CVE request: kernel: L2TP send buffer allocation size overflows http://openwall.com/lists/oss-security/2010/11/10/5 [oss-security] 20101110 Re: CVE request: kernel: L2TP send buffer allocation size overflows http://openwall.com/lists/oss-security/2010/11/10/16 [oss-security] 20101124 Re: CVE request: kernel: L2TP send buffer allocation size overflows http://openwall.com/lists/oss-security/2010/11/24/12 http://openwall.com/lists/oss-security/2010/11/24/4 http://openwall.com/lists/oss-security/2010/11/24/5 http://openwall.com/lists/oss-security/2010/11/24/6 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=253eacc070b114c2ec1f81b067d2fed7305467b0 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=8acfe468b0384e834a303f08ebc4953d72fb690a http://xorl.wordpress.com/2010/11/11/cve-2010-4160-linux-kernel-l2tp-integer-overflows/ https://bugzilla.redhat.com/show_bug.cgi?id=651892 Common Vulnerability Exposure (CVE) ID: CVE-2010-4162 44793 http://www.securityfocus.com/bid/44793 [oss-security] 20101110 CVE request: kernel: Multiple DoS issues in block layer http://openwall.com/lists/oss-security/2010/11/10/18 [oss-security] 20101112 Re: CVE request: kernel: Multiple DoS issues in block layer http://openwall.com/lists/oss-security/2010/11/12/2 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=cb4644cac4a2797afc847e6c92736664d4b0ea34 https://bugzilla.redhat.com/show_bug.cgi?id=652529 Common Vulnerability Exposure (CVE) ID: CVE-2010-4163 [oss-security] 20101129 Re: CVE request: kernel: Multiple DoS issues in block layer http://openwall.com/lists/oss-security/2010/11/29/1 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=9284bcf4e335e5f18a8bc7b26461c33ab60d0689 https://bugzilla.redhat.com/show_bug.cgi?id=652957 Common Vulnerability Exposure (CVE) ID: CVE-2010-4164 45055 http://www.securityfocus.com/bid/45055 [netdev] 20101111 [SECURITY] [PATCH] Prevent crashing when parsing bad X.25 http://marc.info/?l=linux-netdev&m=128951543005554&w=2 [oss-security] 20101111 CVE request: kernel: remote DoS in X.25 http://openwall.com/lists/oss-security/2010/11/11/2 [oss-security] 20101112 Re: CVE request: kernel: remote DoS in X.25 http://openwall.com/lists/oss-security/2010/11/12/3 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=5ef41308f94dcbb3b7afc56cdef1c2ba53fa5d2f https://bugzilla.redhat.com/show_bug.cgi?id=652517 Common Vulnerability Exposure (CVE) ID: CVE-2010-4165 44830 http://www.securityfocus.com/bid/44830 69241 http://www.osvdb.org/69241 8111 http://securityreason.com/securityalert/8111 8123 http://securityreason.com/securityalert/8123 [netdev] 20101110 Re: possible kernel oops from user MSS http://www.spinics.net/lists/netdev/msg146495.html [netdev] 20101110 possible kernel oops from user MSS http://www.spinics.net/lists/netdev/msg146405.html [oss-security] 20101112 CVE request: kernel: possible kernel oops from user MSS http://www.openwall.com/lists/oss-security/2010/11/12/1 [oss-security] 20101112 Re: CVE request: kernel: possible kernel oops from user MSS http://www.openwall.com/lists/oss-security/2010/11/12/4 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=7a1abd08d52fdeddb3e9a5a33f2f15cc6a5674d2 https://bugzilla.redhat.com/show_bug.cgi?id=652508 Common Vulnerability Exposure (CVE) ID: CVE-2010-4169 44861 http://www.securityfocus.com/bid/44861 [oss-security] 20101115 CVE request: kernel: perf bug http://marc.info/?l=oss-security&m=128979684911295&w=2 [oss-security] 20101115 Re: CVE request: kernel: perf bug http://marc.info/?l=oss-security&m=128984344103497&w=2 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=63bfd7384b119409685a17d5c58f0b56e5dc03da https://bugzilla.redhat.com/show_bug.cgi?id=651671 kernel-perfeventmmap-dos(63316) https://exchange.xforce.ibmcloud.com/vulnerabilities/63316 Common Vulnerability Exposure (CVE) ID: CVE-2010-4175 44921 http://www.securityfocus.com/bid/44921 [linux-netdev] 20101117 [PATCH] Integer overflow in RDS cmsg handling http://marc.info/?l=linux-netdev&m=129001184803080&w=2 [oss-security] 20101117 CVE request: kernel: integer overflow in RDS http://www.openwall.com/lists/oss-security/2010/11/17/8 [oss-security] 20101118 Re: CVE request: kernel: integer overflow in RDS http://www.openwall.com/lists/oss-security/2010/11/18/1 kernel-rdscmsgrdmaargs-dos(64618) https://exchange.xforce.ibmcloud.com/vulnerabilities/64618 Common Vulnerability Exposure (CVE) ID: CVE-2010-4243 45004 http://www.securityfocus.com/bid/45004 [linux-kernel] 20100827 [PATCH] exec argument expansion can inappropriately trigger OOM-killer http://lkml.org/lkml/2010/8/27/429 [linux-kernel] 20100830 Re: [PATCH] exec argument expansion can inappropriately trigger OOM-killer http://lkml.org/lkml/2010/8/29/206 http://lkml.org/lkml/2010/8/30/138 http://lkml.org/lkml/2010/8/30/378 [linux-kernel] 20101130 [PATCH 1/2] exec: make argv/envp memory visible to oom-killer http://linux.derkeiler.com/Mailing-Lists/Kernel/2010-11/msg13278.html [oss-security] 20101122 CVE request: kernel: mm: mem allocated invisible to oom_kill() when not attached to any threads http://openwall.com/lists/oss-security/2010/11/22/6 [oss-security] 20101122 Re: CVE request: kernel: mm: mem allocated invisible to oom_kill() when not attached to any threads http://openwall.com/lists/oss-security/2010/11/22/15 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=3c77f845722158206a7209c45ccddc264d19319c http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.37 https://bugzilla.redhat.com/show_bug.cgi?id=625688 linux-kernel-execve-dos(64700) https://exchange.xforce.ibmcloud.com/vulnerabilities/64700 Common Vulnerability Exposure (CVE) ID: CVE-2010-4251 46637 http://www.securityfocus.com/bid/46637 [netdev] 20100302 [PATCH 1/8] net: add limit for socket backlog http://kerneltrap.org/mailarchive/linux-netdev/2010/3/3/6271093/thread http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=8eae939f1400326b06d0c9afe53d2a484a326871 https://bugzilla.redhat.com/show_bug.cgi?id=657303 Common Vulnerability Exposure (CVE) ID: CVE-2010-4258 20101207 Linux kernel exploit http://archives.neohapsis.com/archives/fulldisclosure/2010-12/0086.html [linux-kernel] 20101201 Re: [PATCH v2] do_exit(): Make sure we run with get_fs() == USER_DS. https://lkml.org/lkml/2010/12/1/543 [linux-kernel] 20101201 [PATCH v2] do_exit(): Make sure we run with get_fs() == USER_DS. http://marc.info/?l=linux-kernel&m=129117048916957&w=2 [oss-security] 20101202 CVE request: kernel: failure to revert address limit override in OOPS error path http://openwall.com/lists/oss-security/2010/12/02/2 [oss-security] 20101202 Re: CVE request: kernel: failure to revert address limit override in OOPS error path http://openwall.com/lists/oss-security/2010/12/02/7 [oss-security] 20101202 Re: kernel: Dangerous interaction between clear_child_tid, set_fs(), and kernel oopses http://openwall.com/lists/oss-security/2010/12/02/4 [oss-security] 20101202 kernel: Dangerous interaction between clear_child_tid, set_fs(), and kernel oopses http://openwall.com/lists/oss-security/2010/12/02/3 [oss-security] 20101208 Re: kernel: Dangerous interaction between clear_child_tid, set_fs(), and kernel oopses http://openwall.com/lists/oss-security/2010/12/08/4 http://openwall.com/lists/oss-security/2010/12/08/5 http://openwall.com/lists/oss-security/2010/12/08/9 [oss-security] 20101209 Re: kernel: Dangerous interaction between clear_child_tid, set_fs(), and kernel oopses http://openwall.com/lists/oss-security/2010/12/09/14 http://openwall.com/lists/oss-security/2010/12/09/4 http://blog.nelhage.com/2010/12/cve-2010-4258-from-dos-to-privesc/ http://code.google.com/p/chromium-os/issues/detail?id=10234 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=33dd94ae1ccbfb7bf0fb6c692bc3d1c4269e6177 http://googlechromereleases.blogspot.com/2011/01/chrome-os-beta-channel-update.html https://bugzilla.redhat.com/show_bug.cgi?id=659567 Common Vulnerability Exposure (CVE) ID: CVE-2010-4342 45321 http://www.securityfocus.com/bid/45321 [netdev] 20101209 NULL dereference in econet AUN-over-UDP receive http://marc.info/?l=linux-netdev&m=129185496013580&w=2 [netdev] 20101209 Re: NULL dereference in econet AUN-over-UDP receive http://marc.info/?l=linux-netdev&m=129186011218615&w=2 [oss-security] 20101208 CVE request: kernel: NULL pointer dereference in AF_ECONET http://openwall.com/lists/oss-security/2010/12/09/1 [oss-security] 20101209 Re: CVE request: kernel: NULL pointer dereference in AF_ECONET http://openwall.com/lists/oss-security/2010/12/09/2 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=4e085e76cbe558b79b54cbab772f61185879bc64 http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.37-rc6 Common Vulnerability Exposure (CVE) ID: CVE-2010-4346 42570 http://secunia.com/advisories/42570 45323 http://www.securityfocus.com/bid/45323 [linux-kernel] 20101209 [PATCH] install_special_mapping skips security_file_mmap check. https://lkml.org/lkml/2010/12/9/222 [oss-security] 20101209 Re: [taviso@cmpxchg8b.com: [PATCH] install_special_mapping skips security_file_mmap check.] http://openwall.com/lists/oss-security/2010/12/09/13 [oss-security] 20101209 [taviso@cmpxchg8b.com: [PATCH] install_special_mapping skips security_file_mmap check.] http://openwall.com/lists/oss-security/2010/12/09/12 [oss-security] 20101210 Re: Subject: CVE request: kernel: install_special_mapping skips security_file_mmap check http://openwall.com/lists/oss-security/2010/12/10/3 [oss-security] 20101210 Subject: CVE request: kernel: install_special_mapping skips security_file_mmap check http://openwall.com/lists/oss-security/2010/12/10/2 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=462e635e5b73ba9a4c03913b77138cd57ce4b050 https://bugzilla.redhat.com/show_bug.cgi?id=662189 Common Vulnerability Exposure (CVE) ID: CVE-2010-4526 42964 http://secunia.com/advisories/42964 45661 http://www.securityfocus.com/bid/45661 ADV-2011-0169 http://www.vupen.com/english/advisories/2011/0169 RHSA-2011:0163 http://www.redhat.com/support/errata/RHSA-2011-0163.html [oss-security] 20110104 CVE-2010-4526 kernel: sctp: a race between ICMP protocol unreachable and connect() http://www.openwall.com/lists/oss-security/2011/01/04/3 [oss-security] 20110104 Re: CVE-2010-4526 kernel: sctp: a race between ICMP protocol unreachable and connect() http://www.openwall.com/lists/oss-security/2011/01/04/13 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commitdiff%3Bh=50b5d6ad63821cea324a5a7a19854d4de1a0a819 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2010-4526 kernel-icmp-message-dos(64616) https://exchange.xforce.ibmcloud.com/vulnerabilities/64616 Common Vulnerability Exposure (CVE) ID: CVE-2010-4527 42765 http://secunia.com/advisories/42765 45629 http://www.securityfocus.com/bid/45629 [oss-security] 20101230 CVE request: kernel: buffer overflow in OSS load_mixer_volumes http://openwall.com/lists/oss-security/2010/12/31/1 [oss-security] 20101231 Re: CVE request: kernel: buffer overflow in OSS load_mixer_volumes http://openwall.com/lists/oss-security/2010/12/31/4 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=d81a12bc29ae4038770e05dce4ab7f26fd5880fb http://xorl.wordpress.com/2011/01/09/cve-2010-4527-linux-kernel-oss-sound-card-driver-buffer-overflow/ https://bugzilla.redhat.com/show_bug.cgi?id=667615 Common Vulnerability Exposure (CVE) ID: CVE-2010-4529 BugTraq ID: 45556 http://www.securityfocus.com/bid/45556 http://www.spinics.net/lists/netdev/msg150842.html http://openwall.com/lists/oss-security/2010/12/23/1 http://openwall.com/lists/oss-security/2011/01/03/1 http://secunia.com/advisories/42684 Common Vulnerability Exposure (CVE) ID: CVE-2010-4650 [oss-security] 20110106 Re: CVE Request: kernel [Re: Security review of 2.6.32.28] http://www.openwall.com/lists/oss-security/2011/01/06/18 http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.37 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=7572777eef78ebdee1ecb7c258c0ef94d35bad16 https://bugzilla.redhat.com/show_bug.cgi?id=667892 https://github.com/torvalds/linux/commit/7572777eef78ebdee1ecb7c258c0ef94d35bad16 Common Vulnerability Exposure (CVE) ID: CVE-2010-4656 46069 http://www.securityfocus.com/bid/46069 USN-1146-1 http://www.ubuntu.com/usn/USN-1146-1 [oss-security] 20110124 CVE request: linux kernel heap issues http://openwall.com/lists/oss-security/2011/01/24/9 [oss-security] 20110124 Re: CVE request: linux kernel heap issues http://openwall.com/lists/oss-security/2011/01/25/3 [oss-security] 20110125 Re: CVE request: linux kernel heap issues http://openwall.com/lists/oss-security/2011/01/25/4 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=3ed780117dbe5acb64280d218f0347f238dafed0 https://bugzilla.redhat.com/show_bug.cgi?id=672420 Common Vulnerability Exposure (CVE) ID: CVE-2010-4668 BugTraq ID: 45660 http://www.securityfocus.com/bid/45660 http://lkml.org/lkml/2010/11/29/70 http://lkml.org/lkml/2010/11/29/68 http://openwall.com/lists/oss-security/2010/11/30/4 http://openwall.com/lists/oss-security/2010/11/30/7 XForce ISS Database: linux-blkrqmapuseriov-dos(64496) https://exchange.xforce.ibmcloud.com/vulnerabilities/64496 Common Vulnerability Exposure (CVE) ID: CVE-2010-5313 BugTraq ID: 71363 http://www.securityfocus.com/bid/71363 http://www.openwall.com/lists/oss-security/2014/11/13/7 RedHat Security Advisories: RHSA-2016:0855 http://rhn.redhat.com/errata/RHSA-2016-0855.html SuSE Security Announcement: SUSE-SU-2015:0652 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00000.html Common Vulnerability Exposure (CVE) ID: CVE-2011-0006 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=867c20265459d30a01b021a9c1e81fb4c5832aa9 https://bugzilla.redhat.com/show_bug.cgi?id=667912 https://github.com/torvalds/linux/commit/867c20265459d30a01b021a9c1e81fb4c5832aa9 Common Vulnerability Exposure (CVE) ID: CVE-2011-0191 http://lists.apple.com/archives/security-announce/2011/Mar/msg00000.html http://lists.apple.com/archives/security-announce/2011//Mar/msg00003.html http://lists.apple.com/archives/security-announce/2011//Mar/msg00004.html http://lists.apple.com/archives/security-announce/2011//Mar/msg00005.html http://lists.apple.com/archives/security-announce/2011/Mar/msg00006.html BugTraq ID: 46657 http://www.securityfocus.com/bid/46657 Debian Security Information: DSA-2210 (Google Search) http://www.debian.org/security/2011/dsa-2210 http://www.mandriva.com/security/advisories?name=MDVSA-2011:064 http://secunia.com/advisories/43934 SuSE Security Announcement: SUSE-SR:2011:005 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html SuSE Security Announcement: SUSE-SR:2011:009 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2011-05/msg00005.html http://www.vupen.com/english/advisories/2011/0845 http://www.vupen.com/english/advisories/2011/0859 Common Vulnerability Exposure (CVE) ID: CVE-2011-0521 1025195 http://www.securitytracker.com/id?1025195 43009 http://secunia.com/advisories/43009 45986 http://www.securityfocus.com/bid/45986 [oss-security] 20110125 Linux kernel av7110 negative array offset http://openwall.com/lists/oss-security/2011/01/24/2 [oss-security] 20110125 Re: Linux kernel av7110 negative array offset http://openwall.com/lists/oss-security/2011/01/25/2 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=cb26a24ee9706473f31d34cc259f4dcf45cd0644 http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.38-rc2 kernel-av7110ca-privilege-escalation(64988) https://exchange.xforce.ibmcloud.com/vulnerabilities/64988 Common Vulnerability Exposure (CVE) ID: CVE-2011-0710 46421 http://www.securityfocus.com/bid/46421 [oss-security] 20110216 CVE request - kernel: s390 task_show_regs infoleak http://openwall.com/lists/oss-security/2011/02/16/3 [oss-security] 20110216 Re: CVE request - kernel: s390 task_show_regs infoleak http://openwall.com/lists/oss-security/2011/02/16/9 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=261cd298a8c363d7985e3482946edb4bfedacf98 http://www.kernel.org/pub/linux/kernel/v2.6/next/patch-v2.6.38-rc4-next-20110216.bz2 https://bugzilla.redhat.com/show_bug.cgi?id=677850 kernel-taskshowregs-info-disclosure(65464) https://exchange.xforce.ibmcloud.com/vulnerabilities/65464 Common Vulnerability Exposure (CVE) ID: CVE-2011-0711 46417 http://www.securityfocus.com/bid/46417 70950 http://osvdb.org/70950 RHSA-2011:0927 http://rhn.redhat.com/errata/RHSA-2011-0927.html [oss-security] 20110216 CVE request - kernel: xfs infoleak http://openwall.com/lists/oss-security/2011/02/16/4 [oss-security] 20110216 Re: CVE request - kernel: xfs infoleak http://openwall.com/lists/oss-security/2011/02/16/10 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=3a3675b7f23f83ca8c67c9c2b6edf707fd28d1ba http://www.kernel.org/pub/linux/kernel/v2.6/snapshots/patch-2.6.38-rc6-git3.log https://bugzilla.redhat.com/show_bug.cgi?id=677260 https://patchwork.kernel.org/patch/555461/ Common Vulnerability Exposure (CVE) ID: CVE-2011-0712 46419 http://www.securityfocus.com/bid/46419 [oss-security] 20110216 Re: kernel: ALSA: caiaq - Fix possible string-buffer overflow http://www.openwall.com/lists/oss-security/2011/02/16/11 http://www.openwall.com/lists/oss-security/2011/02/16/12 [oss-security] 20110216 kernel: ALSA: caiaq - Fix possible string-buffer overflow http://www.openwall.com/lists/oss-security/2011/02/16/5 http://git.kernel.org/?p=linux/kernel/git/tiwai/sound-2.6.git%3Ba=commit%3Bh=eaae55dac6b64c0616046436b294e69fc5311581 http://www.kernel.org/pub/linux/kernel/v2.6/next/patch-v2.6.38-rc4-next-20110215.bz2 https://bugzilla.redhat.com/show_bug.cgi?id=677881 kernel-usbdevice-bo(65461) https://exchange.xforce.ibmcloud.com/vulnerabilities/65461 Common Vulnerability Exposure (CVE) ID: CVE-2011-1012 1025127 http://www.securitytracker.com/id?1025127 20110223 [PRE-SA-2011-01] Multiple Linux kernel vulnerabilities in partition handling code of LDM and MAC partition tables http://www.securityfocus.com/archive/1/516615/100/0/threaded 46512 http://www.securityfocus.com/bid/46512 8115 http://securityreason.com/securityalert/8115 [mm-commits] 20110222 + ldm-corrupted-partition-table-can-cause-kernel-oops.patch added to -mm tree http://www.spinics.net/lists/mm-commits/msg82429.html [oss-security] 20110223 CVE request: kernel: Corrupted LDM partition table issues http://openwall.com/lists/oss-security/2011/02/23/4 [oss-security] 20110223 Re: CVE request: kernel: Corrupted LDM partition table issues http://openwall.com/lists/oss-security/2011/02/23/21 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=294f6cf48666825d23c9372ef37631232746e40d http://www.kernel.org/pub/linux/kernel/v2.6/snapshots/patch-2.6.38-rc6-git6.log http://www.pre-cert.de/advisories/PRE-SA-2011-01.txt Common Vulnerability Exposure (CVE) ID: CVE-2011-1013 47639 http://www.securityfocus.com/bid/47639 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=1922756124ddd53846877416d92ba4a802bc658f http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.38 http://www.openbsd.org/cgi-bin/cvsweb/src/sys/dev/pci/drm/drm_irq.c http://www.openbsd.org/cgi-bin/cvsweb/src/sys/dev/pci/drm/drm_irq.c.diff?r1=1.41%3Br2=1.42%3Bf=h https://bugzilla.redhat.com/show_bug.cgi?id=679925 kernel-drmioctl-priv-escalation(67199) https://exchange.xforce.ibmcloud.com/vulnerabilities/67199 Common Vulnerability Exposure (CVE) ID: CVE-2011-1016 46557 http://www.securityfocus.com/bid/46557 [oss-security] 20110224 CVE request: kernel: drm/radeon/kms: check AA resolve registers on r300 http://openwall.com/lists/oss-security/2011/02/24/3 [oss-security] 20110224 Re: CVE request: kernel: drm/radeon/kms: check AA resolve registers on r300 http://openwall.com/lists/oss-security/2011/02/24/11 [oss-security] 20110225 Re: CVE request: kernel: drm/radeon/kms: check AA resolve registers on r300 http://openwall.com/lists/oss-security/2011/02/25/4 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=fff1ce4dc6113b6fdc4e3a815ca5fd229408f8ef http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.38-rc5 https://bugzilla.redhat.com/show_bug.cgi?id=680000 kernel-atiradeon-sec-bypass(65691) https://exchange.xforce.ibmcloud.com/vulnerabilities/65691 Common Vulnerability Exposure (CVE) ID: CVE-2011-1017 BugTraq ID: 46512 Bugtraq: 20110223 [PRE-SA-2011-01] Multiple Linux kernel vulnerabilities in partition handling code of LDM and MAC partition tables (Google Search) http://openwall.com/lists/oss-security/2011/02/23/16 http://openwall.com/lists/oss-security/2011/02/24/4 http://openwall.com/lists/oss-security/2011/02/24/14 http://securitytracker.com/id?1025128 http://secunia.com/advisories/43716 http://secunia.com/advisories/43738 Common Vulnerability Exposure (CVE) ID: CVE-2011-1020 20110122 Proc filesystem and SUID-Binaries http://seclists.org/fulldisclosure/2011/Jan/421 43496 http://secunia.com/advisories/43496 46567 http://www.securityfocus.com/bid/46567 8107 http://securityreason.com/securityalert/8107 [linux-kernel] 20110207 Re: [SECURITY] /proc/$pid/ leaks contents across setuid exec https://lkml.org/lkml/2011/2/7/414 https://lkml.org/lkml/2011/2/7/474 [linux-kernel] 20110207 [SECURITY] /proc/$pid/ leaks contents across setuid exec https://lkml.org/lkml/2011/2/7/368 [linux-kernel] 20110208 Re: [SECURITY] /proc/$pid/ leaks contents across setuid exec https://lkml.org/lkml/2011/2/7/404 https://lkml.org/lkml/2011/2/7/466 [linux-kernel] 20110209 Re: [SECURITY] /proc/$pid/ leaks contents across setuid exec https://lkml.org/lkml/2011/2/10/21 https://lkml.org/lkml/2011/2/9/417 [oss-security] 20110224 CVE request: kernel: /proc/$pid/ leaks contents across setuid exec http://openwall.com/lists/oss-security/2011/02/24/18 [oss-security] 20110225 Re: CVE request: kernel: /proc/$pid/ leaks contents across setuid exec http://openwall.com/lists/oss-security/2011/02/25/2 http://www.halfdog.net/Security/2011/SuidBinariesAndProcInterface/ kernel-procpid-security-bypass(65693) https://exchange.xforce.ibmcloud.com/vulnerabilities/65693 Common Vulnerability Exposure (CVE) ID: CVE-2011-1078 RHSA-2011:0833 http://rhn.redhat.com/errata/RHSA-2011-0833.html RHSA-2012:1156 http://rhn.redhat.com/errata/RHSA-2012-1156.html [oss-security] 20110301 Re: CVE request: kernel: two bluetooth and one ebtables infoleaks/DoSes http://www.openwall.com/lists/oss-security/2011/03/01/10 http://downloads.avaya.com/css/P8/documents/100145416 http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=c4c896e1471aec3b004a693c689f60be3b17ac86 https://bugzilla.redhat.com/show_bug.cgi?id=681259 https://github.com/torvalds/linux/commit/c4c896e1471aec3b004a693c689f60be3b17ac86 Common Vulnerability Exposure (CVE) ID: CVE-2011-1079 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=43629f8f5ea32a998d06d1bb41eefa0e821ff573 http://packetstormsecurity.com/files/153799/Kernel-Live-Patch-Security-Notice-LSN-0053-1.html https://bugzilla.redhat.com/show_bug.cgi?id=681260 https://github.com/torvalds/linux/commit/43629f8f5ea32a998d06d1bb41eefa0e821ff573 Common Vulnerability Exposure (CVE) ID: CVE-2011-1080 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=d846f71195d57b0bbb143382647c2c6638b04c5a https://bugzilla.redhat.com/show_bug.cgi?id=681262 https://github.com/torvalds/linux/commit/d846f71195d57b0bbb143382647c2c6638b04c5a Common Vulnerability Exposure (CVE) ID: CVE-2011-1082 [linux-kernel] 20110205 [PATCH] epoll: Prevent deadlock through unsafe ->f_op->poll() calls. https://lkml.org/lkml/2011/2/5/220 [oss-security] 20110301 CVE request: kernel: Multiple DoS issues in epoll http://openwall.com/lists/oss-security/2011/03/02/1 [oss-security] 20110302 Re: CVE request: kernel: Multiple DoS issues in epoll http://openwall.com/lists/oss-security/2011/03/02/2 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=22bacca48a1755f79b7e0f192ddb9fbb7fc6e64e https://bugzilla.redhat.com/show_bug.cgi?id=681575 Common Vulnerability Exposure (CVE) ID: CVE-2011-1083 43522 http://secunia.com/advisories/43522 48115 http://secunia.com/advisories/48115 48410 http://secunia.com/advisories/48410 48898 http://secunia.com/advisories/48898 48964 http://secunia.com/advisories/48964 71265 http://www.osvdb.org/71265 RHSA-2012:0862 http://rhn.redhat.com/errata/RHSA-2012-0862.html SUSE-SU-2012:0554 http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00021.html SUSE-SU-2012:0616 http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00013.html [linux-kernel] 20110225 [PATCH] optimize epoll loop detection http://article.gmane.org/gmane.linux.kernel/1105744 [linux-kernel] 20110226 Re: [PATCH] optimize epoll loop detection http://article.gmane.org/gmane.linux.kernel/1105888 [linux-kernel] 20110228 Re: [PATCH] optimize epoll loop detection http://article.gmane.org/gmane.linux.kernel/1106686 https://bugzilla.redhat.com/show_bug.cgi?id=681578 Common Vulnerability Exposure (CVE) ID: CVE-2011-1090 1025336 http://securitytracker.com/id?1025336 SUSE-SU-2015:0812 http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00020.html [oss-security] 20110307 CVE request - kernel: nfs4: Ensure that ACL pages sent over NFS were not allocated from the slab http://openwall.com/lists/oss-security/2011/03/07/2 [oss-security] 20110307 Re: CVE request - kernel: nfs4: Ensure that ACL pages sent over NFS were not allocated from the slab http://openwall.com/lists/oss-security/2011/03/07/12 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=e9e3d724e2145f5039b423c290ce2b2c3d8f94bc https://bugzilla.redhat.com/show_bug.cgi?id=682641 Common Vulnerability Exposure (CVE) ID: CVE-2011-1093 46793 http://www.securityfocus.com/bid/46793 [oss-security] 20110308 CVE request: kernel: dccp: fix oops on Reset after close http://openwall.com/lists/oss-security/2011/03/08/4 [oss-security] 20110308 Re: CVE request: kernel: dccp: fix oops on Reset after close http://openwall.com/lists/oss-security/2011/03/08/19 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=720dc34bbbe9493c7bd48b2243058b4e447a929d https://bugzilla.redhat.com/show_bug.cgi?id=682954 Common Vulnerability Exposure (CVE) ID: CVE-2011-1160 [oss-security] 20110315 Re: CVE requests - kernel: tpm infoleaks http://www.openwall.com/lists/oss-security/2011/03/15/13 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=1309d7afbed112f0e8e90be9af975550caa0076b https://bugzilla.redhat.com/show_bug.cgi?id=684671 https://github.com/torvalds/linux/commit/1309d7afbed112f0e8e90be9af975550caa0076b Common Vulnerability Exposure (CVE) ID: CVE-2011-1163 1025225 http://securitytracker.com/id?1025225 20110317 [PRE-SA-2011-02] Information disclosure vulnerability in the OSF partition handling code of the Linux kernel http://www.securityfocus.com/archive/1/517050 46878 http://www.securityfocus.com/bid/46878 8189 http://securityreason.com/securityalert/8189 [mm-commits] 20110314 + fs-partitions-osfc-corrupted-osf-partition-table-can-cause-information-disclosure.patch added to -mm tree http://www.spinics.net/lists/mm-commits/msg82737.html [oss-security] 20110315 CVE Request: kernel: fs/partitions: Corrupted OSF partition table can cause information disclosure http://openwall.com/lists/oss-security/2011/03/15/9 [oss-security] 20110315 Re: CVE Request: kernel: fs/partitions: Corrupted OSF partition table can cause information disclosure http://openwall.com/lists/oss-security/2011/03/15/14 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=1eafbfeb7bdf59cfe173304c76188f3fd5f1fd05 http://www.pre-cert.de/advisories/PRE-SA-2011-02.txt https://bugzilla.redhat.com/show_bug.cgi?id=688021 Common Vulnerability Exposure (CVE) ID: CVE-2011-1170 8278 http://securityreason.com/securityalert/8278 8282 http://securityreason.com/securityalert/8282 [netfilter-devel] 20110310 [PATCH] ipv4: netfilter: arp_tables: fix infoleak to userspace http://marc.info/?l=netfilter-devel&m=129978081009955&w=2 [oss-security] 20110318 CVE request: kernel: netfilter & econet infoleaks http://www.openwall.com/lists/oss-security/2011/03/18/15 [oss-security] 20110321 Re: CVE request: kernel: netfilter & econet infoleaks http://www.openwall.com/lists/oss-security/2011/03/21/1 http://www.openwall.com/lists/oss-security/2011/03/21/4 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=42eab94fff18cb1091d3501cd284d6bd6cc9c143 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39 https://bugzilla.redhat.com/show_bug.cgi?id=689321 Common Vulnerability Exposure (CVE) ID: CVE-2011-1171 8283 http://securityreason.com/securityalert/8283 [linux-kernel] 20110310 [PATCH] ipv4: netfilter: ip_tables: fix infoleak to userspace http://marc.info/?l=linux-kernel&m=129978077609894&w=2 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=78b79876761b86653df89c48a7010b5cbd41a84a https://bugzilla.redhat.com/show_bug.cgi?id=689327 Common Vulnerability Exposure (CVE) ID: CVE-2011-1172 [linux-kernel] 20110310 [PATCH] ipv6: netfilter: ip6_tables: fix infoleak to userspace http://marc.info/?l=linux-kernel&m=129978086410061&w=2 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=6a8ab060779779de8aea92ce3337ca348f973f54 https://bugzilla.redhat.com/show_bug.cgi?id=689345 Common Vulnerability Exposure (CVE) ID: CVE-2011-1173 8279 http://securityreason.com/securityalert/8279 [netdev] 20110317 [PATCH] econet: 4 byte infoleak to the network http://marc.info/?l=linux-netdev&m=130036203528021&w=2 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=67c5c6cb8129c595f21e88254a3fc6b3b841ae8e https://bugzilla.redhat.com/show_bug.cgi?id=591815#c14 Common Vulnerability Exposure (CVE) ID: CVE-2011-1180 http://www.openwall.com/lists/oss-security/2011/03/22/11 Common Vulnerability Exposure (CVE) ID: CVE-2011-1182 [oss-security] 20110323 Re: Linux kernel signal spoofing vulnerability (CVE request) http://www.openwall.com/lists/oss-security/2011/03/23/2 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=da48524eb20662618854bb3df2db01fc65f3070c https://bugzilla.redhat.com/show_bug.cgi?id=690028 https://github.com/torvalds/linux/commit/da48524eb20662618854bb3df2db01fc65f3070c Common Vulnerability Exposure (CVE) ID: CVE-2011-1476 [oss-security] 20110325 Re: CVE request: kernel: two OSS fixes http://www.openwall.com/lists/oss-security/2011/03/25/1 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=b769f49463711205d57286e64cf535ed4daf59e9 https://github.com/torvalds/linux/commit/b769f49463711205d57286e64cf535ed4daf59e9 Common Vulnerability Exposure (CVE) ID: CVE-2011-1477 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=4d00135a680727f6c3be78f8befaac009030e4df https://github.com/torvalds/linux/commit/4d00135a680727f6c3be78f8befaac009030e4df Common Vulnerability Exposure (CVE) ID: CVE-2011-1478 8480 http://securityreason.com/securityalert/8480 [oss-security] 20110328 CVE-2011-1478 kernel: gro: reset dev and skb_iff on skb reuse http://openwall.com/lists/oss-security/2011/03/28/1 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=66c46d741e2e60f0e8b625b80edb0ab820c46d7a http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=6d152e23ad1a7a5b40fef1f42e017d66e6115159 http://mirror.anl.gov/pub/linux/kernel/v2.6/ChangeLog-2.6.38 https://bugzilla.redhat.com/show_bug.cgi?id=691270 Common Vulnerability Exposure (CVE) ID: CVE-2011-1573 [oss-security] 20110411 CVE request - kernel: sctp: fix to calc the INIT/INIT-ACK chunk length correctly to set http://openwall.com/lists/oss-security/2011/04/11/4 [oss-security] 20110411 Re: CVE request - kernel: sctp: fix to calc the INIT/INIT-ACK chunk length correctly to set http://openwall.com/lists/oss-security/2011/04/11/12 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=a8170c35e738d62e9919ce5b109cf4ed66e95bde http://mirror.anl.gov/pub/linux/kernel/v2.6/ChangeLog-2.6.34 https://bugzilla.redhat.com/show_bug.cgi?id=695383 Common Vulnerability Exposure (CVE) ID: CVE-2011-1576 1025853 http://www.securitytracker.com/id?1025853 48907 http://www.securityfocus.com/bid/48907 RHSA-2011:1090 http://www.redhat.com/support/errata/RHSA-2011-1090.html RHSA-2011:1106 http://www.redhat.com/support/errata/RHSA-2011-1106.html https://bugzilla.redhat.com/show_bug.cgi?id=695173 Common Vulnerability Exposure (CVE) ID: CVE-2011-1577 1025355 http://securitytracker.com/id?1025355 20110413 [PRE-SA-2011-03] Denial-of-service vulnerability in EFI partition handling code of the Linux kernel http://www.securityfocus.com/archive/1/517477/100/0/threaded 47343 http://www.securityfocus.com/bid/47343 8238 http://securityreason.com/securityalert/8238 FEDORA-2011-7823 http://lists.fedoraproject.org/pipermail/package-announce/2011-June/061236.html [mm-commits] 20110412 + fs-partitions-efic-corrupted-guid-partition-tables-can-cause-kernel-oops.patch added to -mm tree http://www.spinics.net/lists/mm-commits/msg83274.html [oss-security] 20110412 CVE Request: kernel: fs/partitions: Corrupted GUID partition tables can cause kernel oops http://openwall.com/lists/oss-security/2011/04/12/17 [oss-security] 20110413 Re: CVE Request: kernel: fs/partitions: Corrupted GUID partition tables can cause kernel oops http://openwall.com/lists/oss-security/2011/04/13/1 https://bugzilla.redhat.com/show_bug.cgi?id=695976 kernel-guid-dos(66773) https://exchange.xforce.ibmcloud.com/vulnerabilities/66773 Common Vulnerability Exposure (CVE) ID: CVE-2011-1585 [oss-security] 20110415 Re: CVE Request: cifs session reuse http://www.openwall.com/lists/oss-security/2011/04/15/8 http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.36 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=4ff67b720c02c36e54d55b88c2931879b7db1cd2 https://bugzilla.redhat.com/show_bug.cgi?id=697394 https://github.com/torvalds/linux/commit/4ff67b720c02c36e54d55b88c2931879b7db1cd2 Common Vulnerability Exposure (CVE) ID: CVE-2011-1593 1025420 http://securitytracker.com/id?1025420 44164 http://secunia.com/advisories/44164 47497 http://www.securityfocus.com/bid/47497 [linux-kernel] 20110418 Re: Kernel panic (NULL ptr deref?) in find_ge_pid()/next_pidmap() (via sys_getdents or sys_readdir) http://groups.google.com/group/fa.linux.kernel/msg/4a28ecb7f755a88d?dmode=source [oss-security] 20110419 CVE request -- kernel: proc: signedness issue in next_pidmap() http://openwall.com/lists/oss-security/2011/04/19/1 [oss-security] 20110420 Re: CVE request -- kernel: proc: signedness issue in next_pidmap() http://openwall.com/lists/oss-security/2011/04/20/1 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=c78193e9c7bcbf25b8237ad0dec82f805c4ea69b http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=d8bdc59f215e62098bc5b4256fd9928bf27053a1 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.38.4 https://bugzilla.redhat.com/show_bug.cgi?id=697822 kernel-nextpidmap-dos(66876) https://exchange.xforce.ibmcloud.com/vulnerabilities/66876 Common Vulnerability Exposure (CVE) ID: CVE-2011-1598 47503 http://www.securityfocus.com/bid/47503 [netdev] 20110420 Add missing socket check in can/bcm release. http://permalink.gmane.org/gmane.linux.network/192898 [oss-security] 20110420 CVE request: kernel: missing socket check in can/bcm release http://openwall.com/lists/oss-security/2011/04/20/2 [oss-security] 20110420 Re: CVE request: kernel: missing socket check in can/bcm release http://openwall.com/lists/oss-security/2011/04/20/6 [oss-security] 20110421 Re: CVE request: kernel: missing socket check in can/bcm release http://openwall.com/lists/oss-security/2011/04/20/7 http://openwall.com/lists/oss-security/2011/04/21/1 http://openwall.com/lists/oss-security/2011/04/21/2 http://openwall.com/lists/oss-security/2011/04/21/7 [oss-security] 20110422 Re: CVE request: kernel: missing socket check in can/bcm release http://openwall.com/lists/oss-security/2011/04/22/2 [oss-security] 20110425 Re: CVE request: kernel: missing socket check in can/bcm release http://openwall.com/lists/oss-security/2011/04/25/4 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=c6914a6f261aca0c9f715f883a353ae7ff51fe83 http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.39-rc6 https://bugzilla.redhat.com/show_bug.cgi?id=698057 Common Vulnerability Exposure (CVE) ID: CVE-2011-1745 47534 http://www.securityfocus.com/bid/47534 [linux-kernel] 20110414 [PATCH] char: agp: fix arbitrary kernel memory writes https://lkml.org/lkml/2011/4/14/293 [oss-security] 20110421 CVE request: kernel: buffer overflow and DoS issues in agp http://openwall.com/lists/oss-security/2011/04/21/4 [oss-security] 20110422 Re: CVE request: kernel: buffer overflow and DoS issues in agp http://openwall.com/lists/oss-security/2011/04/22/7 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=194b3da873fd334ef183806db751473512af29ce http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.38.5 https://bugzilla.redhat.com/show_bug.cgi?id=698996 Common Vulnerability Exposure (CVE) ID: CVE-2011-1746 47535 http://www.securityfocus.com/bid/47535 [linux-kernel] 20110414 [PATCH] char: agp: fix OOM and buffer overflow https://lkml.org/lkml/2011/4/14/294 [linux-kernel] 20110419 Re: [PATCH] char: agp: fix OOM and buffer overflow https://lkml.org/lkml/2011/4/19/400 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=b522f02184b413955f3bc952e3776ce41edc6355 https://bugzilla.redhat.com/show_bug.cgi?id=698998 Common Vulnerability Exposure (CVE) ID: CVE-2011-1748 47835 http://www.securityfocus.com/bid/47835 [netdev] 20110420 [PATCH v2] can: add missing socket check in can/raw release http://permalink.gmane.org/gmane.linux.network/192974 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=10022a6c66e199d8f61d9044543f38785713cbbd Common Vulnerability Exposure (CVE) ID: CVE-2011-1833 SuSE Security Announcement: SUSE-SU-2011:0898 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2011-08/msg00009.html http://www.ubuntu.com/usn/USN-1188-1 Common Vulnerability Exposure (CVE) ID: CVE-2011-2182 52334 http://www.securityfocus.com/bid/52334 HPSBGN02970 http://marc.info/?l=bugtraq&m=139447903326211&w=2 [oss-security] 20110605 Re: CVE request: kernel: fs/partitions: Kernel heap overflow via corrupted LDM partition tables http://www.openwall.com/lists/oss-security/2011/06/05/1 http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39.1 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=cae13fe4cc3f24820ffb990c09110626837e85d4 https://github.com/torvalds/linux/commit/cae13fe4cc3f24820ffb990c09110626837e85d4 Common Vulnerability Exposure (CVE) ID: CVE-2011-2183 [oss-security] 20110606 Re: CVE request: kernel: ksm: race between ksmd and exiting task http://www.openwall.com/lists/oss-security/2011/06/06/1 http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39.3 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=2b472611a32a72f4a118c069c2d62a1a3f087afd https://bugzilla.redhat.com/show_bug.cgi?id=710338 https://github.com/torvalds/linux/commit/2b472611a32a72f4a118c069c2d62a1a3f087afd Common Vulnerability Exposure (CVE) ID: CVE-2011-2203 47754 http://secunia.com/advisories/47754 48236 http://www.securityfocus.com/bid/48236 USN-1324-1 http://www.ubuntu.com/usn/USN-1324-1 USN-1328-1 http://www.ubuntu.com/usn/USN-1328-1 USN-1344-1 http://www.ubuntu.com/usn/USN-1344-1 [linux-kernel] 20110608 [BUG] hfs_find_init() sb->ext_tree NULL pointer dereference https://lkml.org/lkml/2011/6/8/154 [oss-security] 20110613 Re: CVE request: kernel: hfs_find_init() sb->ext_tree NULL pointer dereference http://www.openwall.com/lists/oss-security/2011/06/13/16 https://bugzilla.redhat.com/show_bug.cgi?id=712774 Common Vulnerability Exposure (CVE) ID: CVE-2011-2213 [netdev] 20110601 Re: inet_diag insufficient validation? http://article.gmane.org/gmane.linux.network/197208 [netdev] 20110601 inet_diag insufficient validation? http://article.gmane.org/gmane.linux.network/197206 [netdev] 20110603 Re: inet_diag insufficient validation? http://article.gmane.org/gmane.linux.network/197386 [netdev] 20110617 [PATCH] inet_diag: fix inet_diag_bc_audit() http://article.gmane.org/gmane.linux.network/198809 [oss-security] 20110620 CVE request: kernel: inet_diag: fix inet_diag_bc_audit() http://www.openwall.com/lists/oss-security/2011/06/20/1 [oss-security] 20110620 Re: CVE request: kernel: inet_diag: fix inet_diag_bc_audit() http://www.openwall.com/lists/oss-security/2011/06/20/13 http://www.openwall.com/lists/oss-security/2011/06/20/16 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=eeb1497277d6b1a0a34ed36b97e18f2bd7d6de0d http://patchwork.ozlabs.org/patch/100857/ http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39.3 https://bugzilla.redhat.com/show_bug.cgi?id=714536 Common Vulnerability Exposure (CVE) ID: CVE-2011-2491 RHSA-2011:1212 http://rhn.redhat.com/errata/RHSA-2011-1212.html [oss-security] 20110623 Re: CVE request: kernel: NLM: Don't hang forever on NLM unlock requests http://www.openwall.com/lists/oss-security/2011/06/23/6 http://ftp.osuosl.org/pub/linux/kernel/v3.0/ChangeLog-3.0 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=0b760113a3a155269a3fba93a409c640031dd68f https://bugzilla.redhat.com/show_bug.cgi?id=709393 https://github.com/torvalds/linux/commit/0b760113a3a155269a3fba93a409c640031dd68f Common Vulnerability Exposure (CVE) ID: CVE-2011-2494 [oss-security] 20110627 Re: CVE request: kernel: taskstats/procfs io infoleak http://www.openwall.com/lists/oss-security/2011/06/27/1 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=1a51410abe7d0ee4b1d112780f46df87d3621043 http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.1 https://bugzilla.redhat.com/show_bug.cgi?id=716842 https://github.com/torvalds/linux/commit/1a51410abe7d0ee4b1d112780f46df87d3621043 Common Vulnerability Exposure (CVE) ID: CVE-2011-2496 [oss-security] 20110627 Re: CVE request: kernel: mm: avoid wrapping vm_pgoff in mremap() and stack expansions http://www.openwall.com/lists/oss-security/2011/06/27/2 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=982134ba62618c2d69fbbbd166d0a11ee3b7e3d8 https://bugzilla.redhat.com/show_bug.cgi?id=716538 https://github.com/torvalds/linux/commit/982134ba62618c2d69fbbbd166d0a11ee3b7e3d8 Common Vulnerability Exposure (CVE) ID: CVE-2011-2517 [oss-security] 20110701 Re: CVE request: kernel: nl80211: missing check for valid SSID size in scan operations http://www.openwall.com/lists/oss-security/2011/07/01/4 http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.39.2 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=208c72f4fe44fe09577e7975ba0e7fa0278f3d03 https://bugzilla.redhat.com/show_bug.cgi?id=718152 https://github.com/torvalds/linux/commit/208c72f4fe44fe09577e7975ba0e7fa0278f3d03 Common Vulnerability Exposure (CVE) ID: CVE-2011-2699 1027274 http://www.securitytracker.com/id?1027274 MDVSA-2013:150 http://www.mandriva.com/security/advisories?name=MDVSA-2013:150 [oss-security] 20110720 Re: CVE request: kernel: ipv6: make fragment identifications less predictable http://www.openwall.com/lists/oss-security/2011/07/20/5 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=87c48fa3b4630905f98268dde838ee43626a060c https://bugzilla.redhat.com/show_bug.cgi?id=723429 https://github.com/torvalds/linux/commit/87c48fa3b4630905f98268dde838ee43626a060c Common Vulnerability Exposure (CVE) ID: CVE-2011-3188 [oss-security] 20110823 Re: CVE request: kernel: change in how tcp seq numbers are generated http://www.openwall.com/lists/oss-security/2011/08/23/2 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=6e5714eaf77d79ae1c8b47e3e040ff5411b717ec http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=bc0b96b54a21246e377122d54569eef71cec535f https://bugzilla.redhat.com/show_bug.cgi?id=732658 https://github.com/torvalds/linux/commit/6e5714eaf77d79ae1c8b47e3e040ff5411b717ec https://github.com/torvalds/linux/commit/bc0b96b54a21246e377122d54569eef71cec535f https://support.f5.com/csp/article/K15301?utm_source=f5support&amp%3Butm_medium=RSS Common Vulnerability Exposure (CVE) ID: CVE-2011-3593 [oss-security] 20120305 CVE-2011-3593 kernel: vlan: fix panic when handling priority tagged frames http://www.openwall.com/lists/oss-security/2012/03/05/3 https://bugzilla.redhat.com/show_bug.cgi?id=742846 https://oss.oracle.com/git/?p=redpatch.git%3Ba=commit%3Bh=0e48f8daac293335e16e007663b9f4d248f89f0c https://oss.oracle.com/git/?p=redpatch.git%3Ba=commit%3Bh=fadca7bdc43b02f518585d9547019966415cadfd Common Vulnerability Exposure (CVE) ID: CVE-2011-4077 [oss-security] 20111026 CVE Request -- kernel: xfs: potential buffer overflow in xfs_readlink() http://www.openwall.com/lists/oss-security/2011/10/26/1 [oss-security] 20111026 Re: CVE Request -- kernel: xfs: potential buffer overflow in xfs_readlink() http://www.openwall.com/lists/oss-security/2011/10/26/3 [xfs] 20111018 [PATCH] Fix possible memory corruption in xfs_readlink http://oss.sgi.com/archives/xfs/2011-10/msg00345.html http://xorl.wordpress.com/2011/12/07/cve-2011-4077-linux-kernel-xfs-readlink-memory-corruption/ https://bugzilla.redhat.com/show_bug.cgi?id=749156 Common Vulnerability Exposure (CVE) ID: CVE-2011-4081 [oss-security] 20111027 Re: CVE request: kernel: crypto: ghash: null pointer deref if no key is set http://www.openwall.com/lists/oss-security/2011/10/27/2 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=7ed47b7d142ec99ad6880bbbec51e9f12b3af74c https://bugzilla.redhat.com/show_bug.cgi?id=749475 https://github.com/torvalds/linux/commit/7ed47b7d142ec99ad6880bbbec51e9f12b3af74c Common Vulnerability Exposure (CVE) ID: CVE-2011-4086 DSA-2469 http://www.debian.org/security/2012/dsa-2469 RHSA-2012:0571 http://rhn.redhat.com/errata/RHSA-2012-0571.html RHSA-2012:0670 http://rhn.redhat.com/errata/RHSA-2012-0670.html http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=15291164b22a357cb211b618adfef4fa82fc0de3 http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.3.1 https://bugzilla.redhat.com/show_bug.cgi?id=749143 https://github.com/torvalds/linux/commit/15291164b22a357cb211b618adfef4fa82fc0de3 Common Vulnerability Exposure (CVE) ID: CVE-2011-4110 50755 http://www.securityfocus.com/bid/50755 [linux-kernel] 20111115 [PATCH] KEYS: Fix a NULL pointer deref in the user-defined key type https://lkml.org/lkml/2011/11/15/363 [oss-security] 20111121 CVE-2011-4110 kernel: keys: NULL pointer deref in the user-defined key type http://www.openwall.com/lists/oss-security/2011/11/21/19 [oss-security] 20111121 Re: CVE-2011-4110 kernel: keys: NULL pointer deref in the user-defined key type http://www.openwall.com/lists/oss-security/2011/11/22/6 [oss-security] 20111122 Re: CVE-2011-4110 kernel: keys: NULL pointer deref in the user-defined key type http://www.openwall.com/lists/oss-security/2011/11/22/5 https://bugzilla.redhat.com/show_bug.cgi?id=751297 Common Vulnerability Exposure (CVE) ID: CVE-2011-4127 [oss-security] 20111222 CVE-2011-4127 kernel: possible privilege escalation via SG_IO ioctl http://www.openwall.com/lists/oss-security/2011/12/22/5 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=0bfc96cb77224736dfa35c3c555d37b3646ef35e http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=ec8013beddd717d1740cfefb1a9b900deef85462 http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.2.2 https://bugzilla.redhat.com/show_bug.cgi?id=752375 https://github.com/torvalds/linux/commit/0bfc96cb77224736dfa35c3c555d37b3646ef35e https://github.com/torvalds/linux/commit/ec8013beddd717d1740cfefb1a9b900deef85462 Common Vulnerability Exposure (CVE) ID: CVE-2011-4132 1026325 http://securitytracker.com/id?1026325 50663 http://www.securityfocus.com/bid/50663 [oss-security] 20111111 CVE Request -- kernel: jbd/jbd2: invalid value of first log block leads to oops http://www.openwall.com/lists/oss-security/2011/11/11/6 [oss-security] 20111113 Re: CVE Request -- kernel: jbd/jbd2: invalid value of first log block leads to oops http://www.openwall.com/lists/oss-security/2011/11/13/4 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commitdiff%3Bh=8762202dd0d6e46854f786bdb6fb3780a1625efe http://xorl.wordpress.com/2011/12/08/cve-2011-4132-linux-kernel-jbdjbd2-local-dos/ https://bugzilla.redhat.com/show_bug.cgi?id=753341 Common Vulnerability Exposure (CVE) ID: CVE-2011-4326 50751 http://www.securityfocus.com/bid/50751 [oss-security] 20111121 Re: CVE Request -- kernel: wrong headroom check in udp6_ufo_fragment() http://www.openwall.com/lists/oss-security/2011/11/21/10 http://downloads.avaya.com/css/P8/documents/100156038 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=a9cf73ea7ff78f52662c8658d93c226effbbedde https://bugzilla.redhat.com/show_bug.cgi?id=682066 https://bugzilla.redhat.com/show_bug.cgi?id=755584 https://github.com/torvalds/linux/commit/a9cf73ea7ff78f52662c8658d93c226effbbedde Common Vulnerability Exposure (CVE) ID: CVE-2011-4330 50750 http://www.securityfocus.com/bid/50750 [linux-kernel] 20111109 [BUG][SECURITY] Kernel stack overflow in hfs_mac2asc() https://lkml.org/lkml/2011/11/9/303 [oss-security] 20111121 Re: kernel: hfs: add sanity check for file name length http://www.openwall.com/lists/oss-security/2011/11/21/14 [oss-security] 20111121 kernel: hfs: add sanity check for file name length http://www.openwall.com/lists/oss-security/2011/11/21/5 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commitdiff%3Bh=bc5b8a9003132ae44559edd63a1623 https://bugzilla.redhat.com/show_bug.cgi?id=755431 Common Vulnerability Exposure (CVE) ID: CVE-2011-4622 1026559 http://www.securitytracker.com/id?1026559 51172 http://www.securityfocus.com/bid/51172 RHSA-2012:0051 http://www.redhat.com/support/errata/RHSA-2012-0051.html [kvm] 20111214 [PATCH 1/2] KVM: x86: Prevent starting PIT timers in the absence of irqchip support http://permalink.gmane.org/gmane.comp.emulators.kvm.devel/83564 [oss-security] 20111221 Re: kernel: kvm: pit timer with no irqchip crashes the system http://www.openwall.com/lists/oss-security/2011/12/21/7 https://bugzilla.redhat.com/show_bug.cgi?id=769721 Common Vulnerability Exposure (CVE) ID: CVE-2012-0038 [oss-security] 20120110 Re: CVE request: kernel: xfs heap overflow http://www.openwall.com/lists/oss-security/2012/01/10/11 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=093019cf1b18dd31b2c3b77acce4e000e2cbc9ce http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=fa8b18edd752a8b4e9d1ee2cd615b82c93cf8bba http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.1.9 https://bugzilla.redhat.com/show_bug.cgi?id=773280 https://github.com/torvalds/linux/commit/093019cf1b18dd31b2c3b77acce4e000e2cbc9ce https://github.com/torvalds/linux/commit/fa8b18edd752a8b4e9d1ee2cd615b82c93cf8bba Common Vulnerability Exposure (CVE) ID: CVE-2012-0045 [oss-security] 20120111 Re: CVE request -- kernel: kvm: syscall instruction induced guest panic http://www.openwall.com/lists/oss-security/2012/01/12/2 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=c2226fc9e87ba3da060e47333657cd6616652b84 http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.2.14 https://bugzilla.redhat.com/show_bug.cgi?id=773370 https://github.com/torvalds/linux/commit/c2226fc9e87ba3da060e47333657cd6616652b84 Common Vulnerability Exposure (CVE) ID: CVE-2012-0879 1027086 http://www.securitytracker.com/id?1027086 48545 http://secunia.com/advisories/48545 48842 http://secunia.com/advisories/48842 RHSA-2012:0481 http://rhn.redhat.com/errata/RHSA-2012-0481.html RHSA-2012:0531 http://rhn.redhat.com/errata/RHSA-2012-0531.html USN-1408-1 http://www.ubuntu.com/usn/USN-1408-1 USN-1410-1 http://www.ubuntu.com/usn/USN-1410-1 USN-1411-1 http://www.ubuntu.com/usn/USN-1411-1 [oss-security] 20120223 Re: CVE request -- kernel: block: CLONE_IO io_context refcounting issues http://www.openwall.com/lists/oss-security/2012/02/23/5 http://ftp.osuosl.org/pub/linux/kernel/v2.6/ChangeLog-2.6.33 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=61cc74fbb87af6aa551a06a370590c9bc07e29d9 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=b69f2292063d2caf37ca9aec7d63ded203701bf3 https://bugzilla.redhat.com/show_bug.cgi?id=796829 https://github.com/torvalds/linux/commit/61cc74fbb87af6aa551a06a370590c9bc07e29d9 https://github.com/torvalds/linux/commit/b69f2292063d2caf37ca9aec7d63ded203701bf3 Common Vulnerability Exposure (CVE) ID: CVE-2012-1090 [oss-security] 20120228 Re: CVE request -- kernel: cifs: dentry refcount leak when opening a FIFO on lookup leads to panic on unmount http://www.openwall.com/lists/oss-security/2012/02/28/4 http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.2.10 https://bugzilla.redhat.com/show_bug.cgi?id=798293 https://github.com/torvalds/linux/commit/88d7d4e4a439f32acc56a6d860e415ee71d3df08 Common Vulnerability Exposure (CVE) ID: CVE-2012-1097 [oss-security] 20120305 CVE-2012-1097 kernel: regset: Prevent null pointer reference on readonly regsets http://www.openwall.com/lists/oss-security/2012/03/05/1 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=c8e252586f8d5de906385d8cf6385fee289a825e https://bugzilla.redhat.com/show_bug.cgi?id=799209 https://github.com/torvalds/linux/commit/c8e252586f8d5de906385d8cf6385fee289a825e Common Vulnerability Exposure (CVE) ID: CVE-2012-1601 1026897 http://www.securitytracker.com/id?1026897 49928 http://secunia.com/advisories/49928 RHSA-2012:0676 http://rhn.redhat.com/errata/RHSA-2012-0676.html SUSE-SU-2012:1679 https://www.suse.com/support/update/announcement/2012/suse-su-20121679-1.html [oss-security] 20120329 Re: CVE request -- kernel: kvm: irqchip_in_kernel() and vcpu->arch.apic inconsistency http://www.openwall.com/lists/oss-security/2012/03/30/1 http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.3.6 https://bugzilla.redhat.com/show_bug.cgi?id=808199 https://github.com/torvalds/linux/commit/9c895160d25a76c21b65bad141b08e8d4f99afef Common Vulnerability Exposure (CVE) ID: CVE-2012-2137 50952 http://secunia.com/advisories/50952 50961 http://secunia.com/advisories/50961 54063 http://www.securityfocus.com/bid/54063 RHSA-2012:0743 http://rhn.redhat.com/errata/RHSA-2012-0743.html USN-1529-1 http://ubuntu.com/usn/usn-1529-1 USN-1594-1 http://www.ubuntu.com/usn/USN-1594-1 USN-1606-1 http://www.ubuntu.com/usn/USN-1606-1 USN-1607-1 http://ubuntu.com/usn/usn-1607-1 USN-1609-1 http://www.ubuntu.com/usn/USN-1609-1 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commitdiff%3Bh=f2ebd422f71cda9c791f76f85d2ca102ae34a1ed http://ubuntu.5.n6.nabble.com/PATCH-Oneiric-CVE-2012-2137-KVM-Fix-buffer-overflow-in-kvm-set-irq-td4990566.html http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.2.24 https://bugzilla.redhat.com/show_bug.cgi?id=816151 Common Vulnerability Exposure (CVE) ID: CVE-2012-2372 54062 http://www.securityfocus.com/bid/54062 RHSA-2012:1540 http://rhn.redhat.com/errata/RHSA-2012-1540.html USN-1555-1 http://www.ubuntu.com/usn/USN-1555-1 USN-1556-1 http://www.ubuntu.com/usn/USN-1556-1 https://bugzilla.redhat.com/show_bug.cgi?id=822754 https://oss.oracle.com/git/?p=redpatch.git%3Ba=commit%3Bh=c7b6a0a1d8d636852be130fa15fa8be10d4704e8 Common Vulnerability Exposure (CVE) ID: CVE-2012-2745 1027236 http://www.securitytracker.com/id?1027236 50633 http://secunia.com/advisories/50633 50853 http://secunia.com/advisories/50853 54365 http://www.securityfocus.com/bid/54365 RHSA-2012:1064 http://rhn.redhat.com/errata/RHSA-2012-1064.html USN-1567-1 http://www.ubuntu.com/usn/USN-1567-1 USN-1597-1 http://www.ubuntu.com/usn/USN-1597-1 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=79549c6dfda0603dba9a70a53467ce62d9335c33 http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.3.2 https://bugzilla.redhat.com/show_bug.cgi?id=833428 https://github.com/torvalds/linux/commit/79549c6dfda0603dba9a70a53467ce62d9335c33 Common Vulnerability Exposure (CVE) ID: CVE-2012-3375 1027237 http://www.securitytracker.com/id?1027237 51164 http://secunia.com/advisories/51164 [oss-security] 20120704 Re: CVE Request -- kernel: epoll: can leak file descriptors when returning -ELOOP http://www.openwall.com/lists/oss-security/2012/07/04/2 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=13d518074a952d33d47c428419693f63389547e9 https://bugzilla.redhat.com/show_bug.cgi?id=837502 https://downloads.avaya.com/css/P8/documents/100165733 https://github.com/torvalds/linux/commit/13d518074a952d33d47c428419693f63389547e9 Common Vulnerability Exposure (CVE) ID: CVE-2012-3412 50732 http://secunia.com/advisories/50732 50811 http://secunia.com/advisories/50811 51193 http://secunia.com/advisories/51193 RHSA-2012:1323 http://rhn.redhat.com/errata/RHSA-2012-1323.html RHSA-2012:1324 http://rhn.redhat.com/errata/RHSA-2012-1324.html RHSA-2012:1347 http://rhn.redhat.com/errata/RHSA-2012-1347.html RHSA-2012:1375 http://rhn.redhat.com/errata/RHSA-2012-1375.html RHSA-2012:1401 http://rhn.redhat.com/errata/RHSA-2012-1401.html RHSA-2012:1430 http://rhn.redhat.com/errata/RHSA-2012-1430.html USN-1568-1 http://www.ubuntu.com/usn/USN-1568-1 USN-1572-1 http://www.ubuntu.com/usn/USN-1572-1 USN-1575-1 http://www.ubuntu.com/usn/USN-1575-1 USN-1577-1 http://www.ubuntu.com/usn/USN-1577-1 USN-1578-1 http://www.ubuntu.com/usn/USN-1578-1 USN-1579-1 http://www.ubuntu.com/usn/USN-1579-1 USN-1580-1 http://www.ubuntu.com/usn/USN-1580-1 [oss-security] 20120803 Remote DoS in Linux sfc driver through TCP MSS option (CVE-2012-3412) http://www.openwall.com/lists/oss-security/2012/08/03/4 http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.2.30 https://bugzilla.redhat.com/show_bug.cgi?id=844714 https://github.com/torvalds/linux/commit/68cb695ccecf949d48949e72f8ce591fdaaa325c openSUSE-SU-2012:1330 http://lists.opensuse.org/opensuse-security-announce/2012-10/msg00005.html Common Vulnerability Exposure (CVE) ID: CVE-2012-3430 [oss-security] 20120726 Re: CVE Request -- kernel: recv{from,msg}() on an rds socket can leak kernel memory http://www.openwall.com/lists/oss-security/2012/07/26/5 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=06b6a1cf6e776426766298d055bb3991957d90a7 http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.0.44 https://bugzilla.redhat.com/show_bug.cgi?id=820039 https://github.com/torvalds/linux/commit/06b6a1cf6e776426766298d055bb3991957d90a7 Common Vulnerability Exposure (CVE) ID: CVE-2012-3511 55055 http://secunia.com/advisories/55055 55151 http://www.securityfocus.com/bid/55151 [oss-security] 20120820 Re: CVE Request -- kernel: mm: use-after-free in madvise_remove() http://www.openwall.com/lists/oss-security/2012/08/20/13 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=9ab4233dd08036fe34a89c7dc6f47a8bf2eb29eb http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.4.5 https://bugzilla.redhat.com/show_bug.cgi?id=849734 https://github.com/torvalds/linux/commit/9ab4233dd08036fe34a89c7dc6f47a8bf2eb29eb Common Vulnerability Exposure (CVE) ID: CVE-2012-4444 RHSA-2012:1580 http://rhn.redhat.com/errata/RHSA-2012-1580.html SUSE-SU-2013:0856 http://lists.opensuse.org/opensuse-security-announce/2013-06/msg00000.html USN-1660-1 http://www.ubuntu.com/usn/USN-1660-1 USN-1661-1 http://www.ubuntu.com/usn/USN-1661-1 [oss-security] 20121109 Re: CVE request --- acceptation of overlapping ipv6 fragments http://www.openwall.com/lists/oss-security/2012/11/09/2 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=70789d7052239992824628db8133de08dc78e593 https://bugzilla.redhat.com/show_bug.cgi?id=874835 https://github.com/torvalds/linux/commit/70789d7052239992824628db8133de08dc78e593 https://media.blackhat.com/bh-eu-12/Atlasis/bh-eu-12-Atlasis-Attacking_IPv6-WP.pdf Common Vulnerability Exposure (CVE) ID: CVE-2012-4530 RHSA-2013:0223 http://rhn.redhat.com/errata/RHSA-2013-0223.html SUSE-SU-2013:0674 http://lists.opensuse.org/opensuse-security-announce/2013-04/msg00018.html [oss-security] 20121019 Re: CVE Request -- kernel stack disclosure in binfmt_script load_script() http://www.openwall.com/lists/oss-security/2012/10/19/3 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=b66c5984017533316fd1951770302649baf1aa33 http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.7.2 https://bugzilla.redhat.com/show_bug.cgi?id=868285 https://github.com/torvalds/linux/commit/b66c5984017533316fd1951770302649baf1aa33 Common Vulnerability Exposure (CVE) ID: CVE-2012-4565 51409 http://secunia.com/advisories/51409 56346 http://www.securityfocus.com/bid/56346 FEDORA-2012-17479 http://lists.fedoraproject.org/pipermail/package-announce/2012-November/091110.html USN-1644-1 http://www.ubuntu.com/usn/USN-1644-1 USN-1645-1 http://www.ubuntu.com/usn/USN-1645-1 USN-1646-1 http://www.ubuntu.com/usn/USN-1646-1 USN-1647-1 http://www.ubuntu.com/usn/USN-1647-1 USN-1648-1 http://www.ubuntu.com/usn/USN-1648-1 USN-1649-1 http://www.ubuntu.com/usn/USN-1649-1 USN-1650-1 http://www.ubuntu.com/usn/USN-1650-1 USN-1651-1 http://www.ubuntu.com/usn/USN-1651-1 USN-1652-1 http://www.ubuntu.com/usn/USN-1652-1 [oss-security] 20121031 Re: CVE Request -- kernel: net: divide by zero in tcp algorithm illinois http://www.openwall.com/lists/oss-security/2012/10/31/5 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=8f363b77ee4fbf7c3bbcf5ec2c5ca482d396d664 http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.4.19 https://bugzilla.redhat.com/show_bug.cgi?id=871848 https://github.com/torvalds/linux/commit/8f363b77ee4fbf7c3bbcf5ec2c5ca482d396d664 Common Vulnerability Exposure (CVE) ID: CVE-2012-6537 http://www.openwall.com/lists/oss-security/2013/03/05/13 RedHat Security Advisories: RHSA-2013:0744 http://rhn.redhat.com/errata/RHSA-2013-0744.html http://www.ubuntu.com/usn/USN-1792-1 http://www.ubuntu.com/usn/USN-1798-1 Common Vulnerability Exposure (CVE) ID: CVE-2012-6538 Common Vulnerability Exposure (CVE) ID: CVE-2012-6539 Common Vulnerability Exposure (CVE) ID: CVE-2012-6540 Common Vulnerability Exposure (CVE) ID: CVE-2012-6541 Common Vulnerability Exposure (CVE) ID: CVE-2012-6542 RedHat Security Advisories: RHSA-2013:1645 http://rhn.redhat.com/errata/RHSA-2013-1645.html http://www.ubuntu.com/usn/USN-1805-1 http://www.ubuntu.com/usn/USN-1808-1 Common Vulnerability Exposure (CVE) ID: CVE-2012-6544 RedHat Security Advisories: RHSA-2013:1173 http://rhn.redhat.com/errata/RHSA-2013-1173.html Common Vulnerability Exposure (CVE) ID: CVE-2012-6545 Common Vulnerability Exposure (CVE) ID: CVE-2012-6546 Common Vulnerability Exposure (CVE) ID: CVE-2012-6547 http://www.mandriva.com/security/advisories?name=MDVSA-2013:176 Common Vulnerability Exposure (CVE) ID: CVE-2012-6548 RedHat Security Advisories: RHSA-2013:1051 http://rhn.redhat.com/errata/RHSA-2013-1051.html SuSE Security Announcement: openSUSE-SU-2013:1187 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00018.html http://www.ubuntu.com/usn/USN-1809-1 http://www.ubuntu.com/usn/USN-1811-1 http://www.ubuntu.com/usn/USN-1812-1 http://www.ubuntu.com/usn/USN-1813-1 http://www.ubuntu.com/usn/USN-1814-1 Common Vulnerability Exposure (CVE) ID: CVE-2012-6549 http://www.ubuntu.com/usn/USN-1829-1 Common Vulnerability Exposure (CVE) ID: CVE-2012-6647 [oss-security] 20140514 Re: CVE request Linux kernel: forbid uaddr == uaddr2 in futex_wait_requeue_pi() to avoid null dereference http://www.openwall.com/lists/oss-security/2014/05/14/9 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=6f7b0a2a5c0fb03be7c25bd1745baa50582348ef http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.5.1 https://bugzilla.redhat.com/show_bug.cgi?id=1097746 https://github.com/torvalds/linux/commit/6f7b0a2a5c0fb03be7c25bd1745baa50582348ef Common Vulnerability Exposure (CVE) ID: CVE-2012-6657 HPSBGN03282 http://marc.info/?l=bugtraq&m=142722544401658&w=2 HPSBGN03285 http://marc.info/?l=bugtraq&m=142722450701342&w=2 SUSE-SU-2015:0652 [oss-security] 20140915 Re: CVE request Linux kernel: net: guard tcp_set_keepalive against crash http://www.openwall.com/lists/oss-security/2014/09/15/8 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=3e10986d1d698140747fcfc2761ec9cb64c1d582 http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.5.7 https://bugzilla.redhat.com/show_bug.cgi?id=1141742 https://github.com/torvalds/linux/commit/3e10986d1d698140747fcfc2761ec9cb64c1d582 Common Vulnerability Exposure (CVE) ID: CVE-2013-0160 SUSE-SU-2013:1182 http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00016.html USN-2128-1 http://www.ubuntu.com/usn/USN-2128-1 USN-2129-1 http://www.ubuntu.com/usn/USN-2129-1 [oss-security] 20130107 Re: /dev/ptmx timing http://www.openwall.com/lists/oss-security/2013/01/08/3 https://bugzilla.redhat.com/show_bug.cgi?id=892983 openSUSE-SU-2013:0395 http://lists.opensuse.org/opensuse-security-announce/2013-03/msg00004.html openSUSE-SU-2013:1187 Common Vulnerability Exposure (CVE) ID: CVE-2013-0216 MDVSA-2013:176 [oss-security] 20130205 Xen Security Advisory 39 (CVE-2013-0216,CVE-2013-0217) - Linux netback DoS via malicious guest ring. http://www.openwall.com/lists/oss-security/2013/02/05/12 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=48856286b64e4b66ec62b94e504d0b29c1ade664 http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.7.8 https://bugzilla.redhat.com/show_bug.cgi?id=910883 https://github.com/torvalds/linux/commit/48856286b64e4b66ec62b94e504d0b29c1ade664 Common Vulnerability Exposure (CVE) ID: CVE-2013-0231 52059 http://secunia.com/advisories/52059 57740 http://www.securityfocus.com/bid/57740 89903 http://osvdb.org/89903 DSA-2632 http://www.debian.org/security/2013/dsa-2632 [oss-security] 20130205 Xen Security Advisory 43 (CVE-2013-0231) - Linux pciback DoS via not rate limited log messages. http://www.openwall.com/lists/oss-security/2013/02/05/9 xen-pcibackenablemsi-dos(81923) https://exchange.xforce.ibmcloud.com/vulnerabilities/81923 Common Vulnerability Exposure (CVE) ID: CVE-2013-0268 [oss-security] 20130207 Re: CVE request -- Linux kernel: x86/msr: /dev/cpu/*/msr local privilege escalation http://www.openwall.com/lists/oss-security/2013/02/07/12 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=c903f0456bc69176912dee6dd25c6a66ee1aed00 http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.7.6 https://bugzilla.redhat.com/show_bug.cgi?id=908693 https://github.com/torvalds/linux/commit/c903f0456bc69176912dee6dd25c6a66ee1aed00 Common Vulnerability Exposure (CVE) ID: CVE-2013-0310 RHSA-2013:0496 http://rhn.redhat.com/errata/RHSA-2013-0496.html [oss-security] 20130219 Re: CVE request -- Linux kernel: net: CIPSO_V4_TAG_LOCAL tag NULL pointer dereference http://www.openwall.com/lists/oss-security/2013/02/20/5 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=89d7ae34cdda4195809a5a987f697a517a2a3177 http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.4.8 https://bugzilla.redhat.com/show_bug.cgi?id=912900 https://github.com/torvalds/linux/commit/89d7ae34cdda4195809a5a987f697a517a2a3177 Common Vulnerability Exposure (CVE) ID: CVE-2013-0343 RHSA-2013:1449 http://rhn.redhat.com/errata/RHSA-2013-1449.html RHSA-2013:1490 http://rhn.redhat.com/errata/RHSA-2013-1490.html RHSA-2013:1645 USN-1976-1 http://www.ubuntu.com/usn/USN-1976-1 USN-1977-1 http://www.ubuntu.com/usn/USN-1977-1 USN-2019-1 http://www.ubuntu.com/usn/USN-2019-1 USN-2020-1 http://www.ubuntu.com/usn/USN-2020-1 USN-2021-1 http://www.ubuntu.com/usn/USN-2021-1 USN-2022-1 http://www.ubuntu.com/usn/USN-2022-1 USN-2023-1 http://www.ubuntu.com/usn/USN-2023-1 USN-2024-1 http://www.ubuntu.com/usn/USN-2024-1 USN-2038-1 http://www.ubuntu.com/usn/USN-2038-1 USN-2039-1 http://www.ubuntu.com/usn/USN-2039-1 USN-2050-1 http://www.ubuntu.com/usn/USN-2050-1 [oss-security] 20121205 Re: Linux kernel handling of IPv6 temporary addresses http://openwall.com/lists/oss-security/2012/12/05/4 [oss-security] 20130116 Re: Linux kernel handling of IPv6 temporary addresses http://openwall.com/lists/oss-security/2013/01/16/7 [oss-security] 20130121 Re: Linux kernel handling of IPv6 temporary addresses http://openwall.com/lists/oss-security/2013/01/21/11 [oss-security] 20130222 Re: Linux kernel handling of IPv6 temporary addresses http://www.openwall.com/lists/oss-security/2013/02/22/6 https://bugzilla.redhat.com/show_bug.cgi?id=914664 openSUSE-SU-2014:0204 http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00002.html Common Vulnerability Exposure (CVE) ID: CVE-2013-0349 RHSA-2013:0744 USN-1805-1 USN-1808-1 [oss-security] 20130222 Re: CVE request: Linux kernel: Bluetooth HIDP information disclosure http://www.openwall.com/lists/oss-security/2013/02/23/3 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=0a9ab9bdb3e891762553f667066190c1d22ad62b https://bugzilla.redhat.com/show_bug.cgi?id=914298 https://github.com/torvalds/linux/commit/0a9ab9bdb3e891762553f667066190c1d22ad62b Common Vulnerability Exposure (CVE) ID: CVE-2013-0871 Debian Security Information: DSA-2632 (Google Search) http://www.openwall.com/lists/oss-security/2013/02/15/16 RedHat Security Advisories: RHSA-2013:0567 http://rhn.redhat.com/errata/RHSA-2013-0567.html RedHat Security Advisories: RHSA-2013:0661 http://rhn.redhat.com/errata/RHSA-2013-0661.html RedHat Security Advisories: RHSA-2013:0662 http://rhn.redhat.com/errata/RHSA-2013-0662.html RedHat Security Advisories: RHSA-2013:0695 http://rhn.redhat.com/errata/RHSA-2013-0695.html SuSE Security Announcement: SUSE-SU-2013:0341 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00022.html SuSE Security Announcement: SUSE-SU-2013:0674 (Google Search) SuSE Security Announcement: openSUSE-SU-2013:0925 (Google Search) http://www.ubuntu.com/usn/USN-1736-1 http://www.ubuntu.com/usn/USN-1737-1 http://www.ubuntu.com/usn/USN-1738-1 http://www.ubuntu.com/usn/USN-1739-1 http://www.ubuntu.com/usn/USN-1740-1 http://www.ubuntu.com/usn/USN-1741-1 http://www.ubuntu.com/usn/USN-1742-1 http://www.ubuntu.com/usn/USN-1743-1 http://www.ubuntu.com/usn/USN-1744-1 http://www.ubuntu.com/usn/USN-1745-1 Common Vulnerability Exposure (CVE) ID: CVE-2013-0914 http://www.openwall.com/lists/oss-security/2013/03/11/8 SuSE Security Announcement: openSUSE-SU-2013:1971 (Google Search) http://lists.opensuse.org/opensuse-updates/2013-12/msg00129.html http://www.ubuntu.com/usn/USN-1787-1 http://www.ubuntu.com/usn/USN-1788-1 http://www.ubuntu.com/usn/USN-1793-1 http://www.ubuntu.com/usn/USN-1794-1 http://www.ubuntu.com/usn/USN-1795-1 http://www.ubuntu.com/usn/USN-1796-1 http://www.ubuntu.com/usn/USN-1797-1 Common Vulnerability Exposure (CVE) ID: CVE-2013-1767 RHSA-2013:0882 http://rhn.redhat.com/errata/RHSA-2013-0882.html RHSA-2013:0928 http://rhn.redhat.com/errata/RHSA-2013-0928.html USN-1787-1 USN-1788-1 USN-1792-1 USN-1793-1 USN-1794-1 USN-1795-1 USN-1796-1 USN-1797-1 USN-1798-1 [oss-security] 20130225 Re: kernel: tmpfs use-after-free http://www.openwall.com/lists/oss-security/2013/02/25/23 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=5f00110f7273f9ff04ac69a5f85bb535a4fd0987 http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.7.10 https://bugzilla.redhat.com/show_bug.cgi?id=915592 https://github.com/torvalds/linux/commit/5f00110f7273f9ff04ac69a5f85bb535a4fd0987 openSUSE-SU-2013:0847 http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00018.html Common Vulnerability Exposure (CVE) ID: CVE-2013-1773 23248 http://www.exploit-db.com/exploits/23248/ 58200 http://www.securityfocus.com/bid/58200 88310 http://www.osvdb.org/88310 RHSA-2013:1026 http://rhn.redhat.com/errata/RHSA-2013-1026.html [oss-security] 20130226 Re: CVE request - Linux kernel: VFAT slab-based buffer overflow http://www.openwall.com/lists/oss-security/2013/02/26/8 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=0720a06a7518c9d0c0125bd5d1f3b6264c55c3dd http://www.kernel.org/pub/linux/kernel/v3.x/patch-3.3.bz2 https://bugzilla.redhat.com/show_bug.cgi?id=916115 https://github.com/torvalds/linux/commit/0720a06a7518c9d0c0125bd5d1f3b6264c55c3dd Common Vulnerability Exposure (CVE) ID: CVE-2013-1774 SUSE-SU-2013:1474 http://lists.opensuse.org/opensuse-security-announce/2013-09/msg00004.html [oss-security] 20130227 Re: CVE request: Linux kernel: USB: io_ti: NULL pointer dereference http://www.openwall.com/lists/oss-security/2013/02/27/29 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=1ee0a224bc9aad1de496c795f96bc6ba2c394811 http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.7.4 http://xorl.wordpress.com/2013/05/18/cve-2013-1774-linux-kernel-edgeport-usb-serial-converter-null-pointer-dereference/ https://bugzilla.redhat.com/show_bug.cgi?id=916191 https://github.com/torvalds/linux/commit/1ee0a224bc9aad1de496c795f96bc6ba2c394811 Common Vulnerability Exposure (CVE) ID: CVE-2013-1792 [oss-security] 20130307 CVE-2013-1792 Linux kernel: KEYS: race with concurrent install_user_keyrings() http://www.openwall.com/lists/oss-security/2013/03/07/1 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=0da9dfdd2cd9889201bc6f6f43580c99165cd087 http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.8.3 https://bugzilla.redhat.com/show_bug.cgi?id=916646 https://github.com/torvalds/linux/commit/0da9dfdd2cd9889201bc6f6f43580c99165cd087 Common Vulnerability Exposure (CVE) ID: CVE-2013-1796 58607 http://www.securityfocus.com/bid/58607 RHSA-2013:0727 http://rhn.redhat.com/errata/RHSA-2013-0727.html RHSA-2013:0746 http://rhn.redhat.com/errata/RHSA-2013-0746.html USN-1809-1 USN-1812-1 USN-1813-1 [oss-security] 20130320 linux kernel: kvm: CVE-2013-179[6..8] http://www.openwall.com/lists/oss-security/2013/03/20/9 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=c300aa64ddf57d9c5d9c898a64b36877345dd4a9 https://bugzilla.redhat.com/show_bug.cgi?id=917012 https://github.com/torvalds/linux/commit/c300aa64ddf57d9c5d9c898a64b36877345dd4a9 Common Vulnerability Exposure (CVE) ID: CVE-2013-1797 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=0b79459b482e85cb7426aa7da683a9f2c97aeae1 https://bugzilla.redhat.com/show_bug.cgi?id=917013 https://github.com/torvalds/linux/commit/0b79459b482e85cb7426aa7da683a9f2c97aeae1 Common Vulnerability Exposure (CVE) ID: CVE-2013-1798 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=a2c118bfab8bc6b8bb213abfc35201e441693d55 http://packetstormsecurity.com/files/157233/Kernel-Live-Patch-Security-Notice-LSN-0065-1.html https://bugzilla.redhat.com/show_bug.cgi?id=917017 https://github.com/torvalds/linux/commit/a2c118bfab8bc6b8bb213abfc35201e441693d55 Common Vulnerability Exposure (CVE) ID: CVE-2013-1827 [oss-security] 20130307 Re: CVE Requests (maybe): Linux kernel: various info leaks, some NULL ptr derefs http://www.openwall.com/lists/oss-security/2013/03/07/2 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=276bdb82dedb290511467a5a4fdbe9f0b52dce6f http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.5.4 https://bugzilla.redhat.com/show_bug.cgi?id=919164 https://github.com/torvalds/linux/commit/276bdb82dedb290511467a5a4fdbe9f0b52dce6f Common Vulnerability Exposure (CVE) ID: CVE-2013-1860 58510 http://www.securityfocus.com/bid/58510 RHSA-2014:0328 http://rhn.redhat.com/errata/RHSA-2014-0328.html RHSA-2014:0339 http://rhn.redhat.com/errata/RHSA-2014-0339.html USN-1811-1 USN-1814-1 USN-1829-1 [oss-security] 20130314 Re: CVE Request/Guidance: Linux kernel cdc-wdm buffer overflow triggered by device http://www.openwall.com/lists/oss-security/2013/03/15/3 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=c0f5ecee4e741667b2493c742b60b6218d40b3aa http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.8.4 https://bugzilla.redhat.com/show_bug.cgi?id=921970 https://github.com/torvalds/linux/commit/c0f5ecee4e741667b2493c742b60b6218d40b3aa Common Vulnerability Exposure (CVE) ID: CVE-2013-1928 [oss-security] 20130405 Re: CVE Request: kernel information leak in fs/compat_ioctl.c VIDEO_SET_SPU_PALETTE http://www.openwall.com/lists/oss-security/2013/04/06/2 [oss-security] 20130409 Re: CVE Request: kernel information leak in fs/compat_ioctl.c VIDEO_SET_SPU_PALETTE http://www.openwall.com/lists/oss-security/2013/04/09/6 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=12176503366885edd542389eed3aaf94be163fdb http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.6.5 https://bugzilla.redhat.com/show_bug.cgi?id=949567 https://github.com/torvalds/linux/commit/12176503366885edd542389eed3aaf94be163fdb Common Vulnerability Exposure (CVE) ID: CVE-2013-1943 USN-1939-1 http://www.ubuntu.com/usn/USN-1939-1 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=fa3d315a4ce2c0891cdde262562e710d95fba19e http://web.archive.org/web/20130329070349/http://ftp.osuosl.org/pub/linux/kernel/v3.0/ChangeLog-3.0 https://bugzilla.redhat.com/show_bug.cgi?id=950490 https://github.com/torvalds/linux/commit/fa3d315a4ce2c0891cdde262562e710d95fba19e Common Vulnerability Exposure (CVE) ID: CVE-2013-2015 SUSE-SU-2016:2074 http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00038.html [oss-security] 20130426 Re: CVE request: Linux kernel: ext4: hang during mount(8) http://www.openwall.com/lists/oss-security/2013/04/26/16 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=0e9a9a1ad619e7e987815d20262d36a2f95717ca http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.7.3 https://bugzilla.redhat.com/show_bug.cgi?id=957123 https://github.com/torvalds/linux/commit/0e9a9a1ad619e7e987815d20262d36a2f95717ca Common Vulnerability Exposure (CVE) ID: CVE-2013-2141 DSA-2766 http://www.debian.org/security/2013/dsa-2766 RHSA-2013:1801 http://rhn.redhat.com/errata/RHSA-2013-1801.html USN-1899-1 http://www.ubuntu.com/usn/USN-1899-1 USN-1900-1 http://www.ubuntu.com/usn/USN-1900-1 [oss-security] 20130604 Re: CVE Request: kernel info leak in tkill/tgkill http://www.openwall.com/lists/oss-security/2013/06/04/10 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=b9e146d8eb3b9ecae5086d373b50fa0c1f3e7f0f http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.8.9 https://bugzilla.redhat.com/show_bug.cgi?id=970873 https://github.com/torvalds/linux/commit/b9e146d8eb3b9ecae5086d373b50fa0c1f3e7f0f openSUSE-SU-2013:1971 Common Vulnerability Exposure (CVE) ID: CVE-2013-2147 RHSA-2013:1166 http://rhn.redhat.com/errata/RHSA-2013-1166.html USN-1994-1 http://www.ubuntu.com/usn/USN-1994-1 USN-1996-1 http://www.ubuntu.com/usn/USN-1996-1 USN-1997-1 http://www.ubuntu.com/usn/USN-1997-1 USN-1999-1 http://www.ubuntu.com/usn/USN-1999-1 USN-2015-1 http://www.ubuntu.com/usn/USN-2015-1 USN-2016-1 http://www.ubuntu.com/usn/USN-2016-1 USN-2017-1 http://www.ubuntu.com/usn/USN-2017-1 [linux-kernel] 20130603 [patch] cciss: info leak in cciss_ioctl32_passthru() http://lkml.org/lkml/2013/6/3/127 [linux-kernel] 20130603 [patch] cpqarray: info leak in ida_locked_ioctl() http://lkml.org/lkml/2013/6/3/131 [oss-security] 20130605 Re: CVE request: kernel: cpqarray/c: info leak in ida_locked_ioctl() http://www.openwall.com/lists/oss-security/2013/06/05/25 https://bugzilla.redhat.com/show_bug.cgi?id=971242 Common Vulnerability Exposure (CVE) ID: CVE-2013-2164 SUSE-SU-2013:1473 http://lists.opensuse.org/opensuse-security-announce/2013-09/msg00003.html USN-1912-1 http://www.ubuntu.com/usn/USN-1912-1 USN-1913-1 http://www.ubuntu.com/usn/USN-1913-1 USN-1941-1 http://www.ubuntu.com/usn/USN-1941-1 USN-1942-1 http://www.ubuntu.com/usn/USN-1942-1 [oss-security] 20130610 Re: CVE Request: Linux Kernel - Leak information in cdrom driver. http://www.openwall.com/lists/oss-security/2013/06/10/9 http://git.kernel.org/cgit/linux/kernel/git/next/linux-next.git/commit/drivers/cdrom/cdrom.c?id=050e4b8fb7cdd7096c987a9cd556029c622c7fe2 https://bugzilla.redhat.com/show_bug.cgi?id=973100 Common Vulnerability Exposure (CVE) ID: CVE-2013-2232 RHSA-2013:1173 USN-1938-1 http://www.ubuntu.com/usn/USN-1938-1 USN-1943-1 http://www.ubuntu.com/usn/USN-1943-1 USN-1944-1 http://www.ubuntu.com/usn/USN-1944-1 USN-1945-1 http://www.ubuntu.com/usn/USN-1945-1 USN-1946-1 http://www.ubuntu.com/usn/USN-1946-1 USN-1947-1 http://www.ubuntu.com/usn/USN-1947-1 [oss-security] 20130702 Re: CVE Request: kernel: ipv6: using ipv4 vs ipv6 structure during routing lookup in sendmsg http://www.openwall.com/lists/oss-security/2013/07/02/5 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=a963a37d384d71ad43b3e9e79d68d42fbe0901f3 https://github.com/torvalds/linux/commit/a963a37d384d71ad43b3e9e79d68d42fbe0901f3 https://www.kernel.org/pub/linux/kernel/v3.x/patch-3.10.bz2 Common Vulnerability Exposure (CVE) ID: CVE-2013-2234 [oss-security] 20130702 Re: CVE Request: information leak in AF_KEY notify messages http://www.openwall.com/lists/oss-security/2013/07/02/7 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=a5cc68f3d63306d0d288f31edfc2ae6ef8ecd887 https://bugzilla.redhat.com/show_bug.cgi?id=980995 https://github.com/torvalds/linux/commit/a5cc68f3d63306d0d288f31edfc2ae6ef8ecd887 Common Vulnerability Exposure (CVE) ID: CVE-2013-2237 USN-1970-1 http://www.ubuntu.com/usn/USN-1970-1 USN-1972-1 http://www.ubuntu.com/usn/USN-1972-1 USN-1973-1 http://www.ubuntu.com/usn/USN-1973-1 USN-1992-1 http://www.ubuntu.com/usn/USN-1992-1 USN-1993-1 http://www.ubuntu.com/usn/USN-1993-1 USN-1995-1 http://www.ubuntu.com/usn/USN-1995-1 USN-1998-1 http://www.ubuntu.com/usn/USN-1998-1 [oss-security] 20130703 Re: CVE Request: Earlier AF_KEY in key_notify_policy_flush http://www.openwall.com/lists/oss-security/2013/07/04/3 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=85dfb745ee40232876663ae206cba35f24ab2a40 https://bugzilla.redhat.com/show_bug.cgi?id=981220 https://github.com/torvalds/linux/commit/85dfb745ee40232876663ae206cba35f24ab2a40 https://www.kernel.org/pub/linux/kernel/v3.x/patch-3.9.bz2 Common Vulnerability Exposure (CVE) ID: CVE-2013-2634 http://www.openwall.com/lists/oss-security/2013/03/20/1 Common Vulnerability Exposure (CVE) ID: CVE-2013-2851 Debian Security Information: DSA-2766 (Google Search) http://marc.info/?l=linux-kernel&m=137055204522556&w=2 http://www.openwall.com/lists/oss-security/2013/06/06/13 RedHat Security Advisories: RHSA-2013:1783 http://rhn.redhat.com/errata/RHSA-2013-1783.html RedHat Security Advisories: RHSA-2014:0284 http://rhn.redhat.com/errata/RHSA-2014-0284.html SuSE Security Announcement: SUSE-SU-2013:1473 (Google Search) SuSE Security Announcement: SUSE-SU-2013:1474 (Google Search) Common Vulnerability Exposure (CVE) ID: CVE-2013-2852 RedHat Security Advisories: RHSA-2013:1450 http://rhn.redhat.com/errata/RHSA-2013-1450.html http://www.ubuntu.com/usn/USN-1914-1 http://www.ubuntu.com/usn/USN-1915-1 http://www.ubuntu.com/usn/USN-1916-1 http://www.ubuntu.com/usn/USN-1917-1 http://www.ubuntu.com/usn/USN-1918-1 http://www.ubuntu.com/usn/USN-1919-1 http://www.ubuntu.com/usn/USN-1920-1 http://www.ubuntu.com/usn/USN-1930-1 Common Vulnerability Exposure (CVE) ID: CVE-2013-2888 http://marc.info/?l=linux-input&m=137772180514608&w=1 http://openwall.com/lists/oss-security/2013/08/28/13 RedHat Security Advisories: RHSA-2013:1490 Common Vulnerability Exposure (CVE) ID: CVE-2013-2889 BugTraq ID: 62042 http://www.securityfocus.com/bid/62042 http://marc.info/?l=linux-input&m=137772182014614&w=1 Common Vulnerability Exposure (CVE) ID: CVE-2013-2892 BugTraq ID: 62049 http://www.securityfocus.com/bid/62049 http://marc.info/?l=linux-input&m=137772185414625&w=1 Common Vulnerability Exposure (CVE) ID: CVE-2013-2893 BugTraq ID: 62050 http://www.securityfocus.com/bid/62050 http://marc.info/?l=linux-input&m=137772186714627&w=1 SuSE Security Announcement: SUSE-SU-2015:0481 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00010.html SuSE Security Announcement: openSUSE-SU-2015:0566 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00025.html Common Vulnerability Exposure (CVE) ID: CVE-2013-2897 BugTraq ID: 62044 http://www.securityfocus.com/bid/62044 http://marc.info/?l=linux-input&m=137772190214635&w=1 Common Vulnerability Exposure (CVE) ID: CVE-2013-2929 BugTraq ID: 64111 http://www.securityfocus.com/bid/64111 RedHat Security Advisories: RHSA-2014:0100 http://rhn.redhat.com/errata/RHSA-2014-0100.html RedHat Security Advisories: RHSA-2014:0159 http://rhn.redhat.com/errata/RHSA-2014-0159.html RedHat Security Advisories: RHSA-2014:0285 http://rhn.redhat.com/errata/RHSA-2014-0285.html RedHat Security Advisories: RHSA-2018:1252 https://access.redhat.com/errata/RHSA-2018:1252 http://www.ubuntu.com/usn/USN-2070-1 http://www.ubuntu.com/usn/USN-2075-1 http://www.ubuntu.com/usn/USN-2109-1 http://www.ubuntu.com/usn/USN-2110-1 http://www.ubuntu.com/usn/USN-2111-1 http://www.ubuntu.com/usn/USN-2112-1 http://www.ubuntu.com/usn/USN-2114-1 http://www.ubuntu.com/usn/USN-2115-1 http://www.ubuntu.com/usn/USN-2116-1 Common Vulnerability Exposure (CVE) ID: CVE-2013-3222 http://lists.fedoraproject.org/pipermail/package-announce/2013-April/103750.html http://lists.fedoraproject.org/pipermail/package-announce/2013-May/104480.html https://lkml.org/lkml/2013/4/14/107 http://www.openwall.com/lists/oss-security/2013/04/14/3 SuSE Security Announcement: SUSE-SU-2013:1182 (Google Search) http://www.ubuntu.com/usn/USN-1837-1 Common Vulnerability Exposure (CVE) ID: CVE-2013-3223 Common Vulnerability Exposure (CVE) ID: CVE-2013-3224 Common Vulnerability Exposure (CVE) ID: CVE-2013-3225 Common Vulnerability Exposure (CVE) ID: CVE-2013-3228 Common Vulnerability Exposure (CVE) ID: CVE-2013-3229 Common Vulnerability Exposure (CVE) ID: CVE-2013-3231 Common Vulnerability Exposure (CVE) ID: CVE-2013-3232 Common Vulnerability Exposure (CVE) ID: CVE-2013-3234 Common Vulnerability Exposure (CVE) ID: CVE-2013-3235 Common Vulnerability Exposure (CVE) ID: CVE-2013-4162 54148 http://secunia.com/advisories/54148 61411 http://www.securityfocus.com/bid/61411 RHSA-2013:1436 http://rhn.redhat.com/errata/RHSA-2013-1436.html RHSA-2013:1460 http://rhn.redhat.com/errata/RHSA-2013-1460.html RHSA-2013:1520 http://rhn.redhat.com/errata/RHSA-2013-1520.html [oss-security] 20130723 Re: CVE Request: Linux kernel: panic while pushing pending data out of an IPv6 socket with UDP_CORK enabled. http://www.openwall.com/lists/oss-security/2013/07/23/9 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=8822b64a0fa64a5dd1dfcf837c5b0be83f8c05d1 https://bugzilla.redhat.com/show_bug.cgi?id=987627 https://github.com/torvalds/linux/commit/8822b64a0fa64a5dd1dfcf837c5b0be83f8c05d1 Common Vulnerability Exposure (CVE) ID: CVE-2013-4299 RHSA-2013:1450 RHSA-2013:1519 http://rhn.redhat.com/errata/RHSA-2013-1519.html RHSA-2013:1783 RHSA-2013:1860 http://rhn.redhat.com/errata/RHSA-2013-1860.html USN-2040-1 http://www.ubuntu.com/usn/USN-2040-1 USN-2041-1 http://www.ubuntu.com/usn/USN-2041-1 USN-2042-1 http://www.ubuntu.com/usn/USN-2042-1 USN-2043-1 http://www.ubuntu.com/usn/USN-2043-1 USN-2044-1 http://www.ubuntu.com/usn/USN-2044-1 USN-2045-1 http://www.ubuntu.com/usn/USN-2045-1 USN-2046-1 http://www.ubuntu.com/usn/USN-2046-1 USN-2049-1 http://www.ubuntu.com/usn/USN-2049-1 USN-2066-1 http://www.ubuntu.com/usn/USN-2066-1 USN-2067-1 http://www.ubuntu.com/usn/USN-2067-1 http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=e9c6a182649f4259db704ae15a91ac820e63b0ca https://bugzilla.redhat.com/show_bug.cgi?id=1004233 https://github.com/torvalds/linux/commit/e9c6a182649f4259db704ae15a91ac820e63b0ca Common Vulnerability Exposure (CVE) ID: CVE-2013-4345 62740 http://www.securityfocus.com/bid/62740 USN-2064-1 http://www.ubuntu.com/usn/USN-2064-1 USN-2065-1 http://www.ubuntu.com/usn/USN-2065-1 USN-2068-1 http://www.ubuntu.com/usn/USN-2068-1 USN-2070-1 USN-2071-1 http://www.ubuntu.com/usn/USN-2071-1 USN-2072-1 http://www.ubuntu.com/usn/USN-2072-1 USN-2074-1 http://www.ubuntu.com/usn/USN-2074-1 USN-2075-1 USN-2076-1 http://www.ubuntu.com/usn/USN-2076-1 USN-2109-1 USN-2110-1 USN-2158-1 http://www.ubuntu.com/usn/USN-2158-1 [linux-crypto] 20130917 [PATCH] ansi_cprng: Fix off by one error in non-block size request http://marc.info/?l=linux-crypto-vger&m=137942122902845&w=2 https://bugzilla.redhat.com/show_bug.cgi?id=1007690 Common Vulnerability Exposure (CVE) ID: CVE-2013-4470 63359 http://www.securityfocus.com/bid/63359 RHSA-2014:0100 RHSA-2014:0284 SUSE-SU-2014:0459 http://lists.opensuse.org/opensuse-security-announce/2014-03/msg00026.html USN-2069-1 http://www.ubuntu.com/usn/USN-2069-1 USN-2073-1 http://www.ubuntu.com/usn/USN-2073-1 [oss-security] 20131025 Re: CVE request: Linux kernel: net: memory corruption with UDP_CORK and UFO http://www.openwall.com/lists/oss-security/2013/10/25/5 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=c547dbf55d5f8cf615ccc0e7265e98db27d3fb8b http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=e93b7d748be887cd7639b113ba7d7ef792a7efb9 https://bugzilla.redhat.com/show_bug.cgi?id=1023477 https://github.com/torvalds/linux/commit/c547dbf55d5f8cf615ccc0e7265e98db27d3fb8b https://github.com/torvalds/linux/commit/e93b7d748be887cd7639b113ba7d7ef792a7efb9 https://www.kernel.org/pub/linux/kernel/v3.x/patch-3.12.bz2 Common Vulnerability Exposure (CVE) ID: CVE-2013-4483 RHSA-2014:0285 RHSA-2015:0284 http://rhn.redhat.com/errata/RHSA-2015-0284.html [oss-security] 20131030 Re: CVE Request -- Linux kernel: ipc: ipc_rcu_putref refcount races http://www.openwall.com/lists/oss-security/2013/10/30/4 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=6062a8dc0517bce23e3c2f7d2fea5e22411269a3 https://bugzilla.redhat.com/show_bug.cgi?id=1024854 https://github.com/torvalds/linux/commit/6062a8dc0517bce23e3c2f7d2fea5e22411269a3 openSUSE-SU-2014:0247 http://lists.opensuse.org/opensuse-updates/2014-02/msg00045.html Common Vulnerability Exposure (CVE) ID: CVE-2013-4511 USN-2036-1 http://www.ubuntu.com/usn/USN-2036-1 USN-2037-1 http://www.ubuntu.com/usn/USN-2037-1 [oss-security] 20131104 Re: some unstracked linux kernel security fixes http://www.openwall.com/lists/oss-security/2013/11/04/22 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=7314e613d5ff9f0934f7a0f74ed7973b903315d1 https://github.com/torvalds/linux/commit/7314e613d5ff9f0934f7a0f74ed7973b903315d1 openSUSE-SU-2014:0205 http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00003.html Common Vulnerability Exposure (CVE) ID: CVE-2013-4587 USN-2113-1 http://www.ubuntu.com/usn/USN-2113-1 USN-2117-1 http://www.ubuntu.com/usn/USN-2117-1 USN-2135-1 http://www.ubuntu.com/usn/USN-2135-1 USN-2136-1 http://www.ubuntu.com/usn/USN-2136-1 USN-2138-1 http://www.ubuntu.com/usn/USN-2138-1 USN-2139-1 http://www.ubuntu.com/usn/USN-2139-1 USN-2141-1 http://www.ubuntu.com/usn/USN-2141-1 [oss-security] 20131212 Re: [vs-plain] kvm issues http://www.openwall.com/lists/oss-security/2013/12/12/12 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=338c7dbadd2671189cec7faf64c84d01071b3f96 https://bugzilla.redhat.com/show_bug.cgi?id=1030986 https://github.com/torvalds/linux/commit/338c7dbadd2671189cec7faf64c84d01071b3f96 https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.2.54 Common Vulnerability Exposure (CVE) ID: CVE-2013-4588 63744 http://www.securityfocus.com/bid/63744 [oss-security] 20131115 Re: CVE request: Linux kernel: net: ipvs stack buffer overflow http://www.openwall.com/lists/oss-security/2013/11/15/12 http://ftp.linux.org.uk/pub/linux/linux-2.6/ChangeLog-2.6.33 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=04bcef2a83f40c6db24222b27a52892cba39dffb https://bugzilla.redhat.com/show_bug.cgi?id=1030800 https://github.com/torvalds/linux/commit/04bcef2a83f40c6db24222b27a52892cba39dffb Common Vulnerability Exposure (CVE) ID: CVE-2013-4591 63791 http://www.securityfocus.com/bid/63791 [oss-security] 20131118 CVE-2013-4591 -- Linux kernel: kernel: nfs: missing check for buffer length in __nfs4_get_acl_uncached http://www.openwall.com/lists/oss-security/2013/11/18/2 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=7d3e91a89b7adbc2831334def9e494dd9892f9af https://bugzilla.redhat.com/show_bug.cgi?id=1031678 https://github.com/torvalds/linux/commit/7d3e91a89b7adbc2831334def9e494dd9892f9af Common Vulnerability Exposure (CVE) ID: CVE-2013-6367 64270 http://www.securityfocus.com/bid/64270 RHSA-2014:0163 http://rhn.redhat.com/errata/RHSA-2014-0163.html http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=b963a22e6d1a266a67e9eecc88134713fd54775c https://bugzilla.redhat.com/show_bug.cgi?id=1032207 https://github.com/torvalds/linux/commit/b963a22e6d1a266a67e9eecc88134713fd54775c Common Vulnerability Exposure (CVE) ID: CVE-2013-6368 64291 http://www.securityfocus.com/bid/64291 USN-2133-1 http://www.ubuntu.com/usn/USN-2133-1 USN-2134-1 http://www.ubuntu.com/usn/USN-2134-1 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=fda4e2e85589191b123d31cdc21fd33ee70f50fd https://bugzilla.redhat.com/show_bug.cgi?id=1032210 https://github.com/torvalds/linux/commit/fda4e2e85589191b123d31cdc21fd33ee70f50fd Common Vulnerability Exposure (CVE) ID: CVE-2013-6378 59262 http://secunia.com/advisories/59262 59309 http://secunia.com/advisories/59309 59406 http://secunia.com/advisories/59406 63886 http://www.securityfocus.com/bid/63886 USN-2111-1 USN-2112-1 USN-2114-1 USN-2115-1 USN-2116-1 [oss-security] 20131122 Linux kernel CVE fixes http://www.openwall.com/lists/oss-security/2013/11/22/5 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=a497e47d4aec37aaf8f13509f3ef3d1f6a717d88 http://linux.oracle.com/errata/ELSA-2014-0771.html http://linux.oracle.com/errata/ELSA-2014-3043.html https://bugzilla.redhat.com/show_bug.cgi?id=1033578 https://github.com/torvalds/linux/commit/a497e47d4aec37aaf8f13509f3ef3d1f6a717d88 Common Vulnerability Exposure (CVE) ID: CVE-2013-6382 63889 http://www.securityfocus.com/bid/63889 [xfs] 20131031 [patch] xfs: underflow bug in xfs_attrlist_by_handle() http://www.spinics.net/lists/xfs/msg23343.html https://bugzilla.redhat.com/show_bug.cgi?id=1033603 Common Vulnerability Exposure (CVE) ID: CVE-2013-6383 USN-2107-1 http://www.ubuntu.com/usn/USN-2107-1 USN-2108-1 http://www.ubuntu.com/usn/USN-2108-1 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=f856567b930dfcdbc3323261bf77240ccdde01f5 http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.11.8 https://bugzilla.redhat.com/show_bug.cgi?id=1033530 https://github.com/torvalds/linux/commit/f856567b930dfcdbc3323261bf77240ccdde01f5 Common Vulnerability Exposure (CVE) ID: CVE-2013-6885 1029415 http://www.securitytracker.com/id/1029415 55840 http://secunia.com/advisories/55840 63983 http://www.securityfocus.com/bid/63983 DSA-3128 http://www.debian.org/security/2015/dsa-3128 FEDORA-2013-22754 http://lists.fedoraproject.org/pipermail/package-announce/2013-December/123553.html FEDORA-2013-22866 http://lists.fedoraproject.org/pipermail/package-announce/2013-December/124199.html FEDORA-2013-22888 http://lists.fedoraproject.org/pipermail/package-announce/2013-December/124195.html GLSA-201407-03 http://security.gentoo.org/glsa/glsa-201407-03.xml SUSE-SU-2014:0372 http://lists.opensuse.org/opensuse-security-announce/2014-03/msg00010.html SUSE-SU-2014:0373 http://lists.opensuse.org/opensuse-security-announce/2014-03/msg00011.html SUSE-SU-2014:0411 http://lists.opensuse.org/opensuse-security-announce/2014-03/msg00015.html SUSE-SU-2014:0446 http://lists.opensuse.org/opensuse-security-announce/2014-03/msg00021.html SUSE-SU-2014:0470 http://lists.opensuse.org/opensuse-security-announce/2014-04/msg00000.html [kernel] 20111225 Buildworld loop seg-fault update -- I believe it is hardware http://lists.dragonflybsd.org/pipermail/kernel/2011-December/046594.html [oss-security] 20131127 CVE-2013-6885 AMD Publ. 51810 Errata 793 system hang http://openwall.com/lists/oss-security/2013/11/28/1 [oss-security] 20131202 Xen Security Advisory 82 (CVE-2013-6885) - Guest triggerable AMD CPU erratum may cause host to hang http://www.openwall.com/lists/oss-security/2013/12/02/1 http://support.amd.com/TechDocs/51810_16h_00h-0Fh_Rev_Guide.pdf http://www.zdnet.com/blog/hardware/amd-owns-up-to-cpu-bug/18924 https://bugzilla.redhat.com/show_bug.cgi?id=1035823 xen-cve20136885-dos(89335) https://exchange.xforce.ibmcloud.com/vulnerabilities/89335 Common Vulnerability Exposure (CVE) ID: CVE-2013-7027 BugTraq ID: 64013 http://www.securityfocus.com/bid/64013 http://www.securitytracker.com/id/1029413 http://secunia.com/advisories/55606 SuSE Security Announcement: openSUSE-SU-2014:0204 (Google Search) SuSE Security Announcement: openSUSE-SU-2014:0247 (Google Search) Common Vulnerability Exposure (CVE) ID: CVE-2013-7263 http://www.openwall.com/lists/oss-security/2013/11/28/13 http://seclists.org/oss-sec/2014/q1/29 http://secunia.com/advisories/55882 http://secunia.com/advisories/56036 SuSE Security Announcement: SUSE-SU-2014:0459 (Google Search) SuSE Security Announcement: SUSE-SU-2015:0736 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00015.html Common Vulnerability Exposure (CVE) ID: CVE-2013-7264 Common Vulnerability Exposure (CVE) ID: CVE-2013-7265 Common Vulnerability Exposure (CVE) ID: CVE-2013-7266 http://www.openwall.com/lists/oss-security/2013/12/31/7 Common Vulnerability Exposure (CVE) ID: CVE-2013-7267 Common Vulnerability Exposure (CVE) ID: CVE-2013-7268 Common Vulnerability Exposure (CVE) ID: CVE-2013-7269 BugTraq ID: 64742 http://www.securityfocus.com/bid/64742 XForce ISS Database: linux-kernel-cve20137269-info-disc(90130) https://exchange.xforce.ibmcloud.com/vulnerabilities/90130 Common Vulnerability Exposure (CVE) ID: CVE-2013-7270 BugTraq ID: 64744 http://www.securityfocus.com/bid/64744 XForce ISS Database: linux-kernel-cve20137270-info-disc(90131) https://exchange.xforce.ibmcloud.com/vulnerabilities/90131 Common Vulnerability Exposure (CVE) ID: CVE-2013-7271 BugTraq ID: 64746 http://www.securityfocus.com/bid/64746 XForce ISS Database: linux-kernel-cve20137271-info-disc(90132) https://exchange.xforce.ibmcloud.com/vulnerabilities/90132 Common Vulnerability Exposure (CVE) ID: CVE-2013-7339 BugTraq ID: 66351 http://www.securityfocus.com/bid/66351 http://www.openwall.com/lists/oss-security/2014/03/20/14 http://secunia.com/advisories/59386 Common Vulnerability Exposure (CVE) ID: CVE-2014-0101 59216 http://secunia.com/advisories/59216 65943 http://www.securityfocus.com/bid/65943 RHSA-2014:0419 http://rhn.redhat.com/errata/RHSA-2014-0419.html RHSA-2014:0432 http://rhn.redhat.com/errata/RHSA-2014-0432.html USN-2173-1 http://www.ubuntu.com/usn/USN-2173-1 USN-2174-1 http://www.ubuntu.com/usn/USN-2174-1 [oss-security] 20140304 CVE-2014-0101 -- Linux kernel: net: sctp: null pointer dereference when processing authenticated cookie_echo chunk http://www.openwall.com/lists/oss-security/2014/03/04/6 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=ec0223ec48a90cb605244b45f7c62de856403729 http://support.f5.com/kb/en-us/solutions/public/15000/300/sol15317.html https://bugzilla.redhat.com/show_bug.cgi?id=1070705 https://github.com/torvalds/linux/commit/ec0223ec48a90cb605244b45f7c62de856403729 Common Vulnerability Exposure (CVE) ID: CVE-2014-0181 RHSA-2014:1959 http://rhn.redhat.com/errata/RHSA-2014-1959.html SUSE-SU-2015:0481 SUSE-SU-2015:0736 [netdev] 20140423 [PATCH 0/5]: Preventing abuse when passing file descriptors http://marc.info/?l=linux-netdev&m=139828832919748&w=2 [oss-security] 20140423 Re: CVE-2014-0181: Linux network reconfiguration due to incorrect netlink checks http://www.openwall.com/lists/oss-security/2014/04/23/6 https://git.kernel.org/cgit/linux/kernel/git/davem/net.git/commit/?id=90f62cf30a78721641e08737bda787552428061e https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.45 https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.14.9 openSUSE-SU-2015:0566 http://www.openwall.com/lists/oss-security/2023/04/16/3 Common Vulnerability Exposure (CVE) ID: CVE-2014-0196 106646 http://www.osvdb.org/106646 33516 http://www.exploit-db.com/exploits/33516 59218 http://secunia.com/advisories/59218 59599 http://secunia.com/advisories/59599 DSA-2926 http://www.debian.org/security/2014/dsa-2926 DSA-2928 http://www.debian.org/security/2014/dsa-2928 RHSA-2014:0512 http://rhn.redhat.com/errata/RHSA-2014-0512.html SUSE-SU-2014:0667 http://lists.opensuse.org/opensuse-security-announce/2014-05/msg00007.html SUSE-SU-2014:0683 http://lists.opensuse.org/opensuse-security-announce/2014-05/msg00012.html USN-2196-1 http://www.ubuntu.com/usn/USN-2196-1 USN-2197-1 http://www.ubuntu.com/usn/USN-2197-1 USN-2198-1 http://www.ubuntu.com/usn/USN-2198-1 USN-2199-1 http://www.ubuntu.com/usn/USN-2199-1 USN-2200-1 http://www.ubuntu.com/usn/USN-2200-1 USN-2201-1 http://www.ubuntu.com/usn/USN-2201-1 USN-2202-1 http://www.ubuntu.com/usn/USN-2202-1 USN-2203-1 http://www.ubuntu.com/usn/USN-2203-1 USN-2204-1 http://www.ubuntu.com/usn/USN-2204-1 [oss-security] 20140429 CVE-2014-0196: Linux kernel pty layer race condition memory corruption http://www.openwall.com/lists/oss-security/2014/05/05/6 http://bugzilla.novell.com/show_bug.cgi?id=875690 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=4291086b1f081b869c6d79e5b7441633dc3ace00 http://pastebin.com/raw.php?i=yTSFUBgZ http://source.android.com/security/bulletin/2016-07-01.html http://support.f5.com/kb/en-us/solutions/public/15000/300/sol15319.html https://bugzilla.redhat.com/show_bug.cgi?id=1094232 https://github.com/torvalds/linux/commit/4291086b1f081b869c6d79e5b7441633dc3ace00 Common Vulnerability Exposure (CVE) ID: CVE-2014-0203 59560 http://secunia.com/advisories/59560 68125 http://www.securityfocus.com/bid/68125 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=86acdca1b63e6890540fa19495cfc708beff3d8b http://mirror.linux.org.au/linux/kernel/v2.6/ChangeLog-2.6.33 https://bugzilla.redhat.com/show_bug.cgi?id=1094363 https://github.com/torvalds/linux/commit/86acdca1b63e6890540fa19495cfc708beff3d8b Common Vulnerability Exposure (CVE) ID: CVE-2014-1444 BugTraq ID: 64952 http://www.securityfocus.com/bid/64952 http://www.openwall.com/lists/oss-security/2014/01/15/3 XForce ISS Database: linux-kernel-cve20141444-info-disc(90443) https://exchange.xforce.ibmcloud.com/vulnerabilities/90443 Common Vulnerability Exposure (CVE) ID: CVE-2014-1445 BugTraq ID: 64953 http://www.securityfocus.com/bid/64953 XForce ISS Database: linux-kernel-cve20141445-info-disc(90444) https://exchange.xforce.ibmcloud.com/vulnerabilities/90444 Common Vulnerability Exposure (CVE) ID: CVE-2014-1446 BugTraq ID: 64954 http://www.securityfocus.com/bid/64954 http://lists.fedoraproject.org/pipermail/package-announce/2014-January/126874.html http://lists.fedoraproject.org/pipermail/package-announce/2014-January/126858.html http://www.mandriva.com/security/advisories?name=MDVSA-2014:038 XForce ISS Database: linux-kernel-cve20141446-info-disc(90445) https://exchange.xforce.ibmcloud.com/vulnerabilities/90445 Common Vulnerability Exposure (CVE) ID: CVE-2014-1737 BugTraq ID: 67300 http://www.securityfocus.com/bid/67300 Debian Security Information: DSA-2926 (Google Search) Debian Security Information: DSA-2928 (Google Search) http://www.openwall.com/lists/oss-security/2014/05/09/2 RedHat Security Advisories: RHSA-2014:0800 http://rhn.redhat.com/errata/RHSA-2014-0800.html RedHat Security Advisories: RHSA-2014:0801 http://rhn.redhat.com/errata/RHSA-2014-0801.html http://www.securitytracker.com/id/1030474 SuSE Security Announcement: SUSE-SU-2014:0667 (Google Search) SuSE Security Announcement: SUSE-SU-2014:0683 (Google Search) Common Vulnerability Exposure (CVE) ID: CVE-2014-1738 BugTraq ID: 67302 http://www.securityfocus.com/bid/67302 Common Vulnerability Exposure (CVE) ID: CVE-2014-1874 65459 http://www.securityfocus.com/bid/65459 USN-2137-1 http://www.ubuntu.com/usn/USN-2137-1 USN-2140-1 http://www.ubuntu.com/usn/USN-2140-1 [oss-security] 20140206 Re: CVE Request: Linux kernel: SELinux local DoS http://www.openwall.com/lists/oss-security/2014/02/07/2 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=2172fa709ab32ca60e86179dc67d0857be8e2c98 http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.13.4 https://bugzilla.redhat.com/show_bug.cgi?id=1062356 https://github.com/torvalds/linux/commit/2172fa709ab32ca60e86179dc67d0857be8e2c98 Common Vulnerability Exposure (CVE) ID: CVE-2014-2523 BugTraq ID: 66279 http://www.securityfocus.com/bid/66279 http://twitter.com/grsecurity/statuses/445496197399461888 http://www.openwall.com/lists/oss-security/2014/03/17/7 http://www.securitytracker.com/id/1029945 http://secunia.com/advisories/57446 XForce ISS Database: linux-kernel-cve20142523-code-exec(91910) https://exchange.xforce.ibmcloud.com/vulnerabilities/91910 Common Vulnerability Exposure (CVE) ID: CVE-2014-2678 BugTraq ID: 66543 http://www.securityfocus.com/bid/66543 http://lists.fedoraproject.org/pipermail/package-announce/2014-April/131276.html https://lkml.org/lkml/2014/3/29/188 http://www.openwall.com/lists/oss-security/2014/03/31/10 http://secunia.com/advisories/60130 http://secunia.com/advisories/60471 Common Vulnerability Exposure (CVE) ID: CVE-2014-3122 59386 67162 http://www.securityfocus.com/bid/67162 USN-2240-1 http://www.ubuntu.com/usn/USN-2240-1 [oss-security] 20140430 Re: CVE request Linux kernel: mm: try_to_unmap_cluster() should lock_page() before mlocking http://www.openwall.com/lists/oss-security/2014/05/01/7 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=57e68e9cd65b4b8eb4045a1e0d0746458502554c http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.14.3 https://bugzilla.redhat.com/show_bug.cgi?id=1093076 https://github.com/torvalds/linux/commit/57e68e9cd65b4b8eb4045a1e0d0746458502554c Common Vulnerability Exposure (CVE) ID: CVE-2014-3144 58990 http://secunia.com/advisories/58990 59311 http://secunia.com/advisories/59311 59597 http://secunia.com/advisories/59597 60613 http://secunia.com/advisories/60613 67309 http://www.securityfocus.com/bid/67309 DSA-2949 http://www.debian.org/security/2014/dsa-2949 USN-2251-1 http://www.ubuntu.com/usn/USN-2251-1 USN-2252-1 http://www.ubuntu.com/usn/USN-2252-1 USN-2259-1 http://www.ubuntu.com/usn/USN-2259-1 USN-2261-1 http://www.ubuntu.com/usn/USN-2261-1 USN-2262-1 http://www.ubuntu.com/usn/USN-2262-1 USN-2263-1 http://www.ubuntu.com/usn/USN-2263-1 USN-2264-1 http://www.ubuntu.com/usn/USN-2264-1 [oss-security] 20140509 Re: CVE request Linux kernel: filter: prevent nla extensions to peek beyond the end of the message http://www.openwall.com/lists/oss-security/2014/05/09/6 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=05ab8f2647e4221cbdb3856dd7d32bd5407316b3 http://linux.oracle.com/errata/ELSA-2014-3052.html https://github.com/torvalds/linux/commit/05ab8f2647e4221cbdb3856dd7d32bd5407316b3 Common Vulnerability Exposure (CVE) ID: CVE-2014-3145 1038201 http://www.securitytracker.com/id/1038201 67321 http://www.securityfocus.com/bid/67321 https://source.android.com/security/bulletin/2017-04-01 Common Vulnerability Exposure (CVE) ID: CVE-2014-3153 BugTraq ID: 67906 http://www.securityfocus.com/bid/67906 Debian Security Information: DSA-2949 (Google Search) http://www.exploit-db.com/exploits/35370 https://elongl.github.io/exploitation/2021/01/08/cve-2014-3153.html https://github.com/elongl/CVE-2014-3153 https://www.openwall.com/lists/oss-security/2021/02/01/4 http://www.openwall.com/lists/oss-security/2014/06/05/22 http://openwall.com/lists/oss-security/2014/06/05/24 http://openwall.com/lists/oss-security/2014/06/06/20 http://www.openwall.com/lists/oss-security/2021/02/01/4 http://www.securitytracker.com/id/1030451 http://secunia.com/advisories/58500 http://secunia.com/advisories/59029 http://secunia.com/advisories/59092 http://secunia.com/advisories/59153 SuSE Security Announcement: SUSE-SU-2014:0775 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2014-06/msg00014.html SuSE Security Announcement: SUSE-SU-2014:0796 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2014-06/msg00018.html SuSE Security Announcement: SUSE-SU-2014:0837 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2014-06/msg00025.html SuSE Security Announcement: SUSE-SU-2014:1316 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00006.html SuSE Security Announcement: SUSE-SU-2014:1319 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00007.html SuSE Security Announcement: openSUSE-SU-2014:0878 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2014-07/msg00006.html http://www.ubuntu.com/usn/USN-2237-1 Common Vulnerability Exposure (CVE) ID: CVE-2014-3184 BugTraq ID: 69768 http://www.securityfocus.com/bid/69768 https://code.google.com/p/google-security-research/issues/detail?id=91 http://www.openwall.com/lists/oss-security/2014/09/11/21 RedHat Security Advisories: RHSA-2014:1318 http://rhn.redhat.com/errata/RHSA-2014-1318.html RedHat Security Advisories: RHSA-2015:1272 http://rhn.redhat.com/errata/RHSA-2015-1272.html SuSE Security Announcement: SUSE-SU-2015:0812 (Google Search) http://www.ubuntu.com/usn/USN-2374-1 http://www.ubuntu.com/usn/USN-2375-1 http://www.ubuntu.com/usn/USN-2376-1 http://www.ubuntu.com/usn/USN-2377-1 http://www.ubuntu.com/usn/USN-2378-1 http://www.ubuntu.com/usn/USN-2379-1 Common Vulnerability Exposure (CVE) ID: CVE-2014-3185 BugTraq ID: 69781 http://www.securityfocus.com/bid/69781 https://code.google.com/p/google-security-research/issues/detail?id=98 RedHat Security Advisories: RHSA-2015:0284 Common Vulnerability Exposure (CVE) ID: CVE-2014-3673 62428 http://secunia.com/advisories/62428 70883 http://www.securityfocus.com/bid/70883 DSA-3060 http://www.debian.org/security/2014/dsa-3060 RHSA-2015:0062 http://rhn.redhat.com/errata/RHSA-2015-0062.html RHSA-2015:0115 http://rhn.redhat.com/errata/RHSA-2015-0115.html SUSE-SU-2015:0529 http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00020.html USN-2417-1 http://www.ubuntu.com/usn/USN-2417-1 USN-2418-1 http://www.ubuntu.com/usn/USN-2418-1 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=9de7922bc709eee2f609cd01d98aaedc4cf5ea74 http://linux.oracle.com/errata/ELSA-2014-3087.html http://linux.oracle.com/errata/ELSA-2014-3088.html http://linux.oracle.com/errata/ELSA-2014-3089.html https://bugzilla.redhat.com/show_bug.cgi?id=1147850 https://github.com/torvalds/linux/commit/9de7922bc709eee2f609cd01d98aaedc4cf5ea74 Common Vulnerability Exposure (CVE) ID: CVE-2014-3687 70766 http://www.securityfocus.com/bid/70766 SUSE-SU-2015:0178 http://lists.opensuse.org/opensuse-security-announce/2015-01/msg00035.html SUSE-SU-2015:1489 http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00009.html http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=b69040d8e39f20d5215a03502a8e8b4c6ab78395 https://bugzilla.redhat.com/show_bug.cgi?id=1155731 https://github.com/torvalds/linux/commit/b69040d8e39f20d5215a03502a8e8b4c6ab78395 Common Vulnerability Exposure (CVE) ID: CVE-2014-3688 [oss-security] 20141113 Linux kernel: SCTP issues http://www.openwall.com/lists/oss-security/2014/11/13/8 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=26b87c7881006311828bb0ab271a551a62dcceb4 http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.17.4 https://bugzilla.redhat.com/show_bug.cgi?id=1155745 https://github.com/torvalds/linux/commit/26b87c7881006311828bb0ab271a551a62dcceb4 Common Vulnerability Exposure (CVE) ID: CVE-2014-3917 http://article.gmane.org/gmane.linux.kernel/1713179 http://www.openwall.com/lists/oss-security/2014/05/29/5 RedHat Security Advisories: RHSA-2014:1143 http://rhn.redhat.com/errata/RHSA-2014-1143.html RedHat Security Advisories: RHSA-2014:1281 http://rhn.redhat.com/errata/RHSA-2014-1281.html http://secunia.com/advisories/59777 http://secunia.com/advisories/60011 http://secunia.com/advisories/60564 http://www.ubuntu.com/usn/USN-2334-1 http://www.ubuntu.com/usn/USN-2335-1 Common Vulnerability Exposure (CVE) ID: CVE-2014-4508 BugTraq ID: 68126 http://www.securityfocus.com/bid/68126 http://article.gmane.org/gmane.linux.kernel/1726110 http://openwall.com/lists/oss-security/2014/06/20/1 http://www.openwall.com/lists/oss-security/2014/06/20/10 http://www.openwall.com/lists/oss-security/2020/11/12/3 http://secunia.com/advisories/58964 Common Vulnerability Exposure (CVE) ID: CVE-2014-4652 http://www.openwall.com/lists/oss-security/2014/06/26/6 RedHat Security Advisories: RHSA-2014:1083 http://rhn.redhat.com/errata/RHSA-2014-1083.html http://secunia.com/advisories/59434 http://secunia.com/advisories/60545 XForce ISS Database: linux-kernel-cve20144652-info-disc(94412) https://exchange.xforce.ibmcloud.com/vulnerabilities/94412 Common Vulnerability Exposure (CVE) ID: CVE-2014-4653 BugTraq ID: 68164 http://www.securityfocus.com/bid/68164 Common Vulnerability Exposure (CVE) ID: CVE-2014-4654 BugTraq ID: 68162 http://www.securityfocus.com/bid/68162 Common Vulnerability Exposure (CVE) ID: CVE-2014-4655 http://www.securitytracker.com/id/1036763 Common Vulnerability Exposure (CVE) ID: CVE-2014-4656 RedHat Security Advisories: RHSA-2015:0087 http://rhn.redhat.com/errata/RHSA-2015-0087.html Common Vulnerability Exposure (CVE) ID: CVE-2014-4667 BugTraq ID: 68224 http://www.securityfocus.com/bid/68224 Debian Security Information: DSA-2992 (Google Search) http://www.debian.org/security/2014/dsa-2992 http://www.openwall.com/lists/oss-security/2014/06/27/11 http://secunia.com/advisories/59790 http://secunia.com/advisories/60596 Common Vulnerability Exposure (CVE) ID: CVE-2014-4699 Debian Security Information: DSA-2972 (Google Search) http://www.debian.org/security/2014/dsa-2972 http://www.exploit-db.com/exploits/34134 http://packetstormsecurity.com/files/127573/Linux-Kernel-ptrace-sysret-Local-Privilege-Escalation.html http://www.openwall.com/lists/oss-security/2014/07/04/4 http://openwall.com/lists/oss-security/2014/07/05/4 http://openwall.com/lists/oss-security/2014/07/08/16 http://openwall.com/lists/oss-security/2014/07/08/5 http://www.osvdb.org/108754 http://secunia.com/advisories/59633 http://secunia.com/advisories/59639 http://secunia.com/advisories/59654 http://secunia.com/advisories/60220 http://secunia.com/advisories/60380 http://secunia.com/advisories/60393 http://www.ubuntu.com/usn/USN-2266-1 http://www.ubuntu.com/usn/USN-2267-1 http://www.ubuntu.com/usn/USN-2268-1 http://www.ubuntu.com/usn/USN-2269-1 http://www.ubuntu.com/usn/USN-2270-1 http://www.ubuntu.com/usn/USN-2271-1 http://www.ubuntu.com/usn/USN-2272-1 http://www.ubuntu.com/usn/USN-2273-1 http://www.ubuntu.com/usn/USN-2274-1 Common Vulnerability Exposure (CVE) ID: CVE-2014-4943 http://www.exploit-db.com/exploits/36267 http://openwall.com/lists/oss-security/2014/07/17/1 http://osvdb.org/show/osvdb/109277 RedHat Security Advisories: RHSA-2014:1025 http://rhn.redhat.com/errata/RHSA-2014-1025.html http://www.securitytracker.com/id/1030610 http://secunia.com/advisories/60071 XForce ISS Database: linux-kernel-cve20144943-priv-esc(94665) https://exchange.xforce.ibmcloud.com/vulnerabilities/94665 Common Vulnerability Exposure (CVE) ID: CVE-2014-5077 1030681 http://www.securitytracker.com/id/1030681 59777 60430 http://secunia.com/advisories/60430 60545 60564 60744 http://secunia.com/advisories/60744 62563 http://secunia.com/advisories/62563 68881 http://www.securityfocus.com/bid/68881 RHSA-2014:1083 RHSA-2014:1668 http://rhn.redhat.com/errata/RHSA-2014-1668.html RHSA-2014:1763 http://rhn.redhat.com/errata/RHSA-2014-1763.html SUSE-SU-2014:1316 SUSE-SU-2014:1319 USN-2334-1 USN-2335-1 USN-2358-1 http://www.ubuntu.com/usn/USN-2358-1 USN-2359-1 http://www.ubuntu.com/usn/USN-2359-1 [oss-security] 20140725 Re: CVE request Linux Kernel: net: SCTP: NULL pointer dereference http://www.openwall.com/lists/oss-security/2014/07/26/1 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=1be9a950c646c9092fb3618197f7b6bfb50e82aa https://bugzilla.redhat.com/show_bug.cgi?id=1122982 https://github.com/torvalds/linux/commit/1be9a950c646c9092fb3618197f7b6bfb50e82aa linux-kernel-cve20145077-dos(95134) https://exchange.xforce.ibmcloud.com/vulnerabilities/95134 Common Vulnerability Exposure (CVE) ID: CVE-2014-7841 62305 http://secunia.com/advisories/62305 62597 http://secunia.com/advisories/62597 62735 http://secunia.com/advisories/62735 71081 http://www.securityfocus.com/bid/71081 DSA-3093 http://www.debian.org/security/2014/dsa-3093 RHSA-2015:0087 RHSA-2015:0102 http://rhn.redhat.com/errata/RHSA-2015-0102.html RHSA-2015:0285 http://rhn.redhat.com/errata/RHSA-2015-0285.html RHSA-2015:0695 http://rhn.redhat.com/errata/RHSA-2015-0695.html [oss-security] 20141113 CVE-2014-7841 Linux kernel: net: sctp: NULL pointer dereference in af->from_addr_param on malformed packet http://www.openwall.com/lists/oss-security/2014/11/13/6 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=e40607cbe270a9e8360907cb1e62ddf0736e4864 http://linux.oracle.com/errata/ELSA-2015-3004.html http://linux.oracle.com/errata/ELSA-2015-3005.html https://bugzilla.redhat.com/show_bug.cgi?id=1163087 https://github.com/torvalds/linux/commit/e40607cbe270a9e8360907cb1e62ddf0736e4864 https://support.f5.com/kb/en-us/solutions/public/16000/000/sol16016.html Common Vulnerability Exposure (CVE) ID: CVE-2014-7842 62326 http://secunia.com/advisories/62326 62336 http://secunia.com/advisories/62336 71078 http://www.securityfocus.com/bid/71078 RHSA-2016:0855 [oss-security] 20141113 CVE-2014-7842 Linux kernel: kvm: reporting emulation failures to userspace http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=a2b9e6c1a35afcc0973acb72e591c714e78885ff http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html https://bugzilla.redhat.com/show_bug.cgi?id=1163762 https://github.com/torvalds/linux/commit/a2b9e6c1a35afcc0973acb72e591c714e78885ff https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.17.4 Common Vulnerability Exposure (CVE) ID: CVE-2014-8133 62801 http://secunia.com/advisories/62801 71684 http://www.securityfocus.com/bid/71684 MDVSA-2015:058 http://www.mandriva.com/security/advisories?name=MDVSA-2015:058 RHSA-2015:1272 USN-2490-1 http://www.ubuntu.com/usn/USN-2490-1 USN-2491-1 http://www.ubuntu.com/usn/USN-2491-1 USN-2492-1 http://www.ubuntu.com/usn/USN-2492-1 USN-2493-1 http://www.ubuntu.com/usn/USN-2493-1 USN-2515-1 http://www.ubuntu.com/usn/USN-2515-1 USN-2516-1 http://www.ubuntu.com/usn/USN-2516-1 USN-2517-1 http://www.ubuntu.com/usn/USN-2517-1 USN-2518-1 http://www.ubuntu.com/usn/USN-2518-1 [oss-security] 20141215 Linux kernel: multiple x86_64 vulnerabilities http://www.openwall.com/lists/oss-security/2014/12/15/6 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=41bdc78544b8a93a9c6814b8bbbfef966272abbe https://bugzilla.redhat.com/show_bug.cgi?id=1172797 https://github.com/torvalds/linux/commit/41bdc78544b8a93a9c6814b8bbbfef966272abbe Common Vulnerability Exposure (CVE) ID: CVE-2014-8160 72061 http://www.securityfocus.com/bid/72061 DSA-3170 http://www.debian.org/security/2015/dsa-3170 MDVSA-2015:057 http://www.mandriva.com/security/advisories?name=MDVSA-2015:057 RHSA-2015:0290 http://rhn.redhat.com/errata/RHSA-2015-0290.html RHSA-2015:0674 http://rhn.redhat.com/errata/RHSA-2015-0674.html USN-2513-1 http://www.ubuntu.com/usn/USN-2513-1 USN-2514-1 http://www.ubuntu.com/usn/USN-2514-1 [netfilter-devel] 20140925 [PATCH nf] netfilter: conntrack: disable generic protocol tracking http://www.spinics.net/lists/netfilter-devel/msg33430.html [oss-security] 20150114 CVE-2014-8160 Linux Kernel: SCTP firewalling fails until SCTP module is loaded http://www.openwall.com/lists/oss-security/2015/01/14/3 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=db29a9508a9246e77087c5531e45b2c88ec6988b https://bugzilla.redhat.com/show_bug.cgi?id=1182059 https://github.com/torvalds/linux/commit/db29a9508a9246e77087c5531e45b2c88ec6988b openSUSE-SU-2015:0714 http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00009.html Common Vulnerability Exposure (CVE) ID: CVE-2014-8709 BugTraq ID: 70965 http://www.securityfocus.com/bid/70965 http://www.openwall.com/lists/oss-security/2014/11/09/1 RedHat Security Advisories: RHSA-2015:0290 http://www.securitytracker.com/id/1037968 XForce ISS Database: linux-kernel-cve20148709-info-disclsoure(98922) https://exchange.xforce.ibmcloud.com/vulnerabilities/98922 Common Vulnerability Exposure (CVE) ID: CVE-2014-9090 Debian Security Information: DSA-3093 (Google Search) http://www.openwall.com/lists/oss-security/2014/11/26/5 Common Vulnerability Exposure (CVE) ID: CVE-2014-9322 http://www.exploit-db.com/exploits/36266 HPdes Security Advisory: HPSBGN03282 HPdes Security Advisory: HPSBGN03285 http://www.zerodayinitiative.com/advisories/ZDI-16-170 http://osvdb.org/show/osvdb/115919 RedHat Security Advisories: RHSA-2014:1998 http://rhn.redhat.com/errata/RHSA-2014-1998.html RedHat Security Advisories: RHSA-2014:2008 http://rhn.redhat.com/errata/RHSA-2014-2008.html RedHat Security Advisories: RHSA-2014:2028 http://rhn.redhat.com/errata/RHSA-2014-2028.html RedHat Security Advisories: RHSA-2014:2031 http://rhn.redhat.com/errata/RHSA-2014-2031.html RedHat Security Advisories: RHSA-2015:0009 http://rhn.redhat.com/errata/RHSA-2015-0009.html Common Vulnerability Exposure (CVE) ID: CVE-2014-9420 FEDORA-2015-0515 http://lists.fedoraproject.org/pipermail/package-announce/2015-January/147973.html FEDORA-2015-0517 http://lists.fedoraproject.org/pipermail/package-announce/2015-January/147864.html RHSA-2015:1081 http://rhn.redhat.com/errata/RHSA-2015-1081.html RHSA-2015:1137 http://rhn.redhat.com/errata/RHSA-2015-1137.html RHSA-2015:1138 http://rhn.redhat.com/errata/RHSA-2015-1138.html [oss-security] 20141225 Re: CVE Request Linux kernel: fs: isofs: infinite loop in CE records http://www.openwall.com/lists/oss-security/2014/12/25/4 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=f54e18f1b831c92f6512d2eedb224cd63d607d3d https://bugzilla.redhat.com/show_bug.cgi?id=1175235 https://github.com/torvalds/linux/commit/f54e18f1b831c92f6512d2eedb224cd63d607d3d https://source.android.com/security/bulletin/2017-01-01.html Common Vulnerability Exposure (CVE) ID: CVE-2014-9584 71883 http://www.securityfocus.com/bid/71883 RHSA-2015:0864 http://rhn.redhat.com/errata/RHSA-2015-0864.html USN-2511-1 http://www.ubuntu.com/usn/USN-2511-1 USN-2512-1 http://www.ubuntu.com/usn/USN-2512-1 [oss-security] 20150109 Re: CVE request Linux kernel: isofs: unchecked printing of ER records http://www.openwall.com/lists/oss-security/2015/01/09/4 http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=4e2024624e678f0ebb916e6192bd23c1f9fdf696 http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.18.2 https://bugzilla.redhat.com/show_bug.cgi?id=1180119 https://github.com/torvalds/linux/commit/4e2024624e678f0ebb916e6192bd23c1f9fdf696 Common Vulnerability Exposure (CVE) ID: CVE-2014-9585 BugTraq ID: 71990 http://www.securityfocus.com/bid/71990 Debian Security Information: DSA-3170 (Google Search) http://lists.fedoraproject.org/pipermail/package-announce/2015-January/148480.html http://git.kernel.org/?p=linux/kernel/git/luto/linux.git;a=commit;h=bc3b94c31d65e761ddfe150d02932c65971b74e2 http://v0ids3curity.blogspot.in/2014/12/return-to-vdso-using-elf-auxiliary.html http://www.openwall.com/lists/oss-security/2014/12/09/10 http://www.openwall.com/lists/oss-security/2015/01/09/8 RedHat Security Advisories: RHSA-2015:1081 RedHat Security Advisories: RHSA-2015:1778 http://rhn.redhat.com/errata/RHSA-2015-1778.html RedHat Security Advisories: RHSA-2015:1787 http://rhn.redhat.com/errata/RHSA-2015-1787.html SuSE Security Announcement: SUSE-SU-2015:0178 (Google Search) SuSE Security Announcement: openSUSE-SU-2015:0714 (Google Search)
Copyright	Copyright (C) 2021 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.