A cross-protocol attack was found in rxrpc where an attacker could send specially crafted packets that would cause the clients to crash.
Two information leak flaws were found in the way the Linux kernel handled leaked user memory during X11 connection initiation and connection closure. A local user with access to X11 or a remote user with access to X11 could use these flaws to expose previously unavailable information about the user's system or other X11 connections.
CVE-2017-2636: An information leak was found in the way get_rx_mode() , a virtual function of RxFilter .c, was used by the Linux kernel's Virtual Network Interface (VNI) subsystem to retrieve information from the kernel's buffer cache. By using this for parsing the rx path information, it was possible to bypass the KASLR protection mechanism, leading to a potential information leak.
CVE-2017-2637: A kernel information leak was found in the uname() -like function of the Linux kernel's network configuration subsystem. This information leak occurs during kernel input parsing, when uname() reads data into buffer, which is consumed by parse_str() .
These issues can be exploited to reveal certain information that should be kept private.
CVE-2017-7187: The load_icon() function in load.c in the Linux kernel before 4.14.15 allows local users to cause a denial of service (NULL pointer dereference and
CVE-2018-5683: An information leak was found in the Linux kernel in the way load_pirn() parses piram fs filesystem images. An attacker could use this flaw to read uninitialized memory in the kernel.
CVE-2017-2636: An information leak was found in the way get_rx_mode() , a virtual function of RxFilter .c, was used by the Linux kernel's Virtual Network Interface (VNI) subsystem to retrieve information from the kernel's buffer cache. By using this for parsing the rx path information, it was possible to bypass the KASLR protection mechanism, leading to a potential information leak.
CVE-2018-5683: Information leak vulnerabilities were found in load_pirn() and piramfs_read() in the Linux kernel. A local user who can mount a maliciously crafted view could use these flaws to expose sensitive information or cause a denial of service (oops).
These issues can be exploited to reveal certain information that should be kept private.
CVE-2017-7184: The icon_printer function in printk.c, when used on a printer with iris driver, allow local users to cause a denial of service
Timeline
Published on: 07/26/2022 17:15:00 UTC
Last modified on: 08/02/2022 19:30:00 UTC