|
301191
|
- |
|
mark_stosberg
|
data\
|
The Data::FormValidator module 4.66 and earlier for Perl, when untaint_all_constraints is enabled, does not properly preserve the taint attribute of data, which might allow remote attackers to bypass…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-2201
|
2024-11-21 10:27 |
2011-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301192
|
- |
|
linux
|
linux_kernel
|
The key_replace_session_keyring function in security/keys/process_keys.c in the Linux kernel before 2.6.39.1 does not initialize a certain structure member, which allows local users to cause a denial…
|
CWE-476
NULL Pointer Dereference
|
CVE-2011-2184
|
2024-11-21 10:27 |
2011-09-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301193
|
6.1 |
MEDIUM
Physics
|
linux
redhat
|
linux_kernel
enterprise_linux_server
enterprise_linux_workstation
enterprise_linux_desktop
enterprise_linux_server_aus
enterprise_linux_server_eus
|
The is_gpt_valid function in fs/partitions/efi.c in the Linux kernel before 2.6.39 does not check the size of an Extensible Firmware Interface (EFI) GUID Partition Table (GPT) entry, which allows phy…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-1776
|
2024-11-21 10:27 |
2011-09-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301194
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
The cifs_close function in fs/cifs/file.c in the Linux kernel before 2.6.39 allows local users to cause a denial of service (NULL pointer dereference and BUG) or possibly have unspecified other impac…
|
CWE-476
NULL Pointer Dereference
|
CVE-2011-1771
|
2024-11-21 10:27 |
2011-09-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301195
|
- |
|
gnome
|
networkmanager
|
GNOME NetworkManager before 0.8.6 does not properly enforce the auth_admin element in PolicyKit, which allows local users to bypass intended wireless network sharing restrictions via unspecified vect…
|
CWE-287
Improper Authentication
|
CVE-2011-2176
|
2024-11-21 10:27 |
2011-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301196
|
- |
|
xmlsoft
|
libxml2
libxml
|
Integer overflow in xpath.c in libxml2 2.6.x through 2.6.32 and 2.7.x through 2.7.8, and libxml 1.8.16 and earlier, allows context-dependent attackers to cause a denial of service (crash) and possibl…
|
CWE-189
Numeric Errors
|
CVE-2011-1944
|
2024-11-21 10:27 |
2011-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301197
|
- |
|
systemtap
|
systemtap
|
SystemTap 1.4, when unprivileged (aka stapusr) mode is enabled, allows local users to cause a denial of service (divide-by-zero error and OOPS) via a crafted ELF program with DWARF expressions that a…
|
CWE-189
Numeric Errors
|
CVE-2011-1781
|
2024-11-21 10:27 |
2011-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301198
|
- |
|
systemtap
|
systemtap
|
SystemTap 1.4 and earlier, when unprivileged (aka stapusr) mode is enabled, allows local users to cause a denial of service (divide-by-zero error and OOPS) via a crafted ELF program with DWARF expres…
|
CWE-189
Numeric Errors
|
CVE-2011-1769
|
2024-11-21 10:27 |
2011-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301199
|
- |
|
linux
redhat
|
linux_kernel
enterprise_linux_server
enterprise_linux_workstation
enterprise_linux_desktop
enterprise_linux_eus
enterprise_linux_aus
|
The inet_diag_bc_audit function in net/ipv4/inet_diag.c in the Linux kernel before 2.6.39.3 does not properly audit INET_DIAG bytecode, which allows local users to cause a denial of service (kernel i…
|
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
|
CVE-2011-2213
|
2024-11-21 10:27 |
2011-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301200
|
- |
|
marcus_schafer
novell
|
kiwi
suse_studio_onsite
|
Cross-site scripting (XSS) vulnerability in Kiwi before 3.74.2, as used in SUSE Studio 1.1 before 1.1.4, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, relate…
|
CWE-79
Cross-site Scripting
|
CVE-2011-2226
|
2024-11-21 10:27 |
2011-08-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
