reiserfs: deadlocks when using journaled quotas

VUL-1: CVE-2011-3359: kernel: b43 allocates receive buffers big enough for max frame len + offset

VUL-0: CVE-2012-3375: kernel: crash in epoll()

The wait_for_unix_gc function in net/unix/garbage.c in the Linux kernel before 2.6.37-rc3-next-20101125 does not properly select times for garbage collection of inflight sockets, which allows local users to cause a denial of service (system hang) via craf

VUL-1: kernel: remote DoS in X.25

SBT740:Juno-IOC-L:cougarfsp:cougarp01:EEH recovery failed on Rains-LP (be2net/Emulex)

VUL-1: CVE-2012-2123: kernel: fcaps: clear the same personality flags as suid when fcaps are used

VUL-1: CVE-2012-6638: kernel: denial of service via specially forged TCP packets (SYN+FIN)

VUL-1: CVE-2012-2136: kernel: data_len not validated before allocating skb in sock_alloc_send_pskb()

** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.

VUL-1: CVE-2012-1090: kernel: cifs: dentry refcount leak when opening a FIFO on lookup leads to panic on unmount

nat ftp broken in latest maintenance kernel

Multiple buffer overflows in the si4713_write_econtrol_string function in drivers/media/radio/si4713-i2c.c in the Linux kernel before 2.6.39.4 on the N900 platform might allow local users to cause a denial of service or have unspecified other impact via a

** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.

BUG: unable to handle kernel paging request at 000000003b91bbac

The befs_follow_link function in fs/befs/linuxvfs.c in the Linux kernel before 3.1-rc3 does not validate the length attribute of long symlinks, which allows local users to cause a denial of service (incorrect pointer dereference and OOPS) by accessing a l

prepare memory cgroup controller for full hierarchy mode

** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.

VUL-1: kernel: si4713-i2c: avoid potential buffer overflow on si4713

unable to handle kernel paging request (task_rq_lock)

VUL-1: kernel: staging: comedi: fix infoleak to userspace

VUL-1: CVE-2011-2928: kernel: ZERO_SIZE_PTR dereference for long symlinks in Be FS

VUL-0: CVE-2012-0044: kernel: integer overflow in drm_mode_dirtyfb_ioctl()

** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.

VUL-1: CVE-2012-2319: kernel: hfsplus: mounting crafted filesystem can cause code execution

kernel BUG at linux-2.6.37/fs/notify/mark.c:140

VUL-1: kernel: nl80211: missing check for valid SSID size in scan operations

** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.

VUL-0: CVE-2012-1097: kernel: null pointer dereference on readonly regsets

fscache 2 GB file size limitation

If the number of ipsec policies exceeds the xfrm6 GC threshold (ipv6) the kernel crashes (panic).

VUL-1: kernel: xfs: potential buffer overflow in xfs_readlink()

VUL-1: kernel: unix socket local dos

VUL-1: CVE-2011-4132: kernel: jbd/jbd2: oops

VUL-1: CVE-2011-4110: kernel: NULL pointer deref in the user-defined key type

VUL-1: CVE-2012-2100: kernel: ext4: fix undefined behaviour in ext4_fill_flex_info()

Buffer overflow in the xfs_readlink function in fs/xfs/xfs_vnodeops.c in XFS in the Linux kernel 2.6, when CONFIG_XFS_DEBUG is disabled, allows local users to cause a denial of service (memory corruption and crash) and possibly execute arbitrary code via

/net/netfilter/nf_conntrack_ftp.c ignores RFC 1123 regarding parentheses in FTP passive mode message 227

Multiple integer underflows in the x25_parse_facilities function in net/x25/x25_facilities.c in the Linux kernel before 2.6.36.2 allow remote attackers to cause a denial of service (system crash) via malformed X.25 (1) X25_FAC_CLASS_A, (2) X25_FAC_CLASS_B

esp hangs on some MTUs if pmtu is enabled

The user_update function in security/keys/user_defined.c in the Linux kernel 2.6 allows local users to cause a denial of service (NULL pointer dereference and kernel oops) via vectors related to a user-defined key and "updating a negative key into a fully

Stack-based buffer overflow in the hfs subsystem in the Linux kernel 2.6.32 allows remote attackers to have an unspecified impact via a crafted Hierarchical File System (HFS) filesystem, related to the hfs_readdir function in fs/hfs/dir.c.

VUL-1: kernel: igmp: Avoid zero delay when receiving odd mixture of IGMP queries

VUL-0: kernel: xfs heap overflow

SKY2 driver reporting checksum problems

Opensuse 11.4 64b Kernel 2.6.37.6-0.7 bug : kworker thread at 90%

The econet_sendmsg function in net/econet/af_econet.c in the Linux kernel before 2.6.39 on the x86_64 platform allows remote attackers to obtain potentially sensitive information from kernel stack memory by reading uninitialized data in the ah field of an

The X.25 implementation in the Linux kernel before 2.6.36.2 does not properly parse facilities, which allows remote attackers to cause a denial of service (heap memory corruption and panic) or possibly have unspecified other impact via malformed (1) X25_F

vlans cause softirq overload

** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.

VUL-1: CVE-2011-4086: kernel: jbd2: unmapped buffer with _Unwritten or _Delay flags set can lead to DoS

failed to use pam_tty_audit

** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.

VUL-1: kernel: /proc/[PID]/attr/current overwrite Null pointer dereference

mount.ocfs2 failed - dlm_send_nodeinfo:1235 ERROR: node mismatch -92

The epoll implementation in the Linux kernel 2.6.37.2 and earlier does not properly traverse a tree of epoll file descriptors, which allows local users to cause a denial of service (CPU consumption) via a crafted application that makes epoll_create and ep

kernel oops from drbd

VUL-1: kernel: epoll DoS via large nested struct

** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.

VUL-1: kernel: ext4_ext_insert_extent() kernel oops

[Intel BUG] igb: Fix for Alt MAC Address feature on 82580 and later devices

VUL-1: kernel: unfiltered netdev rio_ioctl access by users

Stack-based buffer overflow in the hfs_mac2asc function in fs/hfs/trans.c in the Linux kernel 2.6 allows local users to cause a denial of service (crash) and possibly execute arbitrary code via an HFS image with a crafted len field.

VUL-1: CVE-2011-4330: kernel: hfs: wrong ->len field can cause overflow on a corrupted fs

** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.

Access to hd or filesystem broken after suspend2disk / resume

VUL-0: kernel: econet: 4 byte infoleak to the network

VUL-1: CVE-2012-2119: kernel: macvtap: zerocopy: vector length is not validated before pinning user pages

VUL-1: CVE-2012-3400: kernel: udf filesystem logical volume descriptor overflows

** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.

FTP passive mode fails

kernel BUG at /usr/src/packages/BUILD/kernel-xen-3.0.13/linux-3.0/fs/sysfs/group.c:65!

** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.

VUL-0: kernel: mm: memcg: unregistring of events attached to the same eventfd can lead to oops

VUL-0: kernel: X.25 remote DoS

During wake-up from standby mode call traces happen for the driver igb and ixgbe of SLES 11 SP2 GMC3.