- Home
- CVEs with nessus.description==According+to+the+version+of+the+vzkernel+package+and+the+readykernel-patch+installed%2C+the+Virtuozzo+installation+on+the+remote+host+is+affected+by+the+following+vulnerabilities+%3A%0A%0A++-+A+vulnerability+was+found+in+the+handling+of+xfrm+++++Netlink+messages.+A+privileged+user+inside+a+container+++++could+cause+a+denial+of+service+%28kernel+crash%29+by+++++sending+a+crafted+Netlink+message+with+type+++++XFRM_MSG_MIGRATE+to+the+kernel.%0A%0A++-+Integer+overflow+vulnerability+in+ip6_find_1stfragopt%28%29+++++function+was+found.+Local+attacker+that+has+privileges+++++to+open+raw+sockets+can+cause+infinite+loop+inside+++++ip6_find_1stfragopt%28%29+function.%0A%0A++-+Kernel+memory+corruption+due+to+a+buffer+overflow+was+++++found+in+brcmf_cfg80211_mgmt_tx%28%29+function+in+Linux+++++kernels+from+v3.9-rc1+to+v4.13-rc1.+The+vulnerability+++++can+be+triggered+by+sending+a+crafted+NL80211_CMD_FRAME+++++packet+via+netlink.+An+unprivileged+local+user+could+++++use+this+flaw+to+induce+kernel+memory+corruption+on+the+++++system%2C+leading+to+a+crash.%0A%0ANote+that+Tenable+Network+Security+has+extracted+the+preceding+description+block+directly+from+the+Virtuozzo+security+advisory.%0ATenable+has+attempted+to+automatically+clean+and+format+it+as+much+as+possible+without+introducing+additional+issues
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top