exploit the possibilities
Showing 1 - 1 of 1 RSS Feed

Files

Ubuntu Security Notice 974-1
Posted Aug 20, 2010
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 974-1 - Gael Delalleu, Rafal Wojtczuk, and Brad Spengler discovered that the memory manager did not properly handle when applications grow stacks into adjacent memory regions. A local attacker could exploit this to gain control of certain applications, potentially leading to privilege escalation, as demonstrated in attacks against the X server. Kees Cook discovered that under certain situations the ioctl subsystem for DRM did not properly sanitize its arguments. A local attacker could exploit this to read previously freed kernel memory, leading to a loss of privacy. Ben Hawkes discovered an integer overflow in the Controller Area Network (CAN) subsystem when setting up frame content and filtering certain messages. An attacker could send specially crafted CAN traffic to crash the system or gain root privileges.

tags | advisory, overflow, kernel, local, root
systems | linux, ubuntu
advisories | CVE-2010-2240, CVE-2010-2803, CVE-2010-2959
MD5 | 9a178270b8a45436233a9d99b085bc7d
Page 1 of 1
Back1Next

Top Authors In Last 30 Days

Recent News

News RSS Feed
Apple Drops Hong Kong Police Tracking App Used By Protesters
Posted Oct 10, 2019

tags | headline, government, phone, china, cyberwar, apple
Forum Cracks The Vintage Passwords Of Ken Thompson And Other Unix Pioneers
Posted Oct 10, 2019

tags | headline, password
Ransomware Gang Uses iTunes Zero-Day
Posted Oct 10, 2019

tags | headline, hacker, virus, fraud, flaw, patch, apple, zero day
Human Rights Activist Allegedly Targeted With NSO Malware
Posted Oct 10, 2019

tags | headline, government, privacy, cyberwar, spyware
Court Finds FBI Use Of NSA Database Violated Americans' 4th Amendment Rights
Posted Oct 9, 2019

tags | headline, government, privacy, usa, data loss, spyware, fbi, nsa
Cookie Monster Eats Data From Sesame Street Store
Posted Oct 9, 2019

tags | headline, hacker, cybercrime, data loss, fraud, backdoor
iOS 13 Tells You When Apps Are Secretly Tracking You
Posted Oct 9, 2019

tags | headline, privacy, phone, spyware, apple
Twitter Sold User Security Information To Advertisers
Posted Oct 9, 2019

tags | headline, privacy, data loss, twitter
Trump's Syria Move Blindsides National Security Leaders
Posted Oct 8, 2019

tags | headline, government, usa, turkey, terror, syria
D-Link Gear Open To Remote Takeover Will Remain Unpatched
Posted Oct 8, 2019

tags | headline, flaw, patch
View More News →
packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close