use-after-free – Page 4 – WindowsTechs.com

SSD Advisory – Linux Kernel AF_PACKET Use-After-Free

Posted on October 17, 2017 by SSD / Maor Schwartz

Vulnerabilities summary The following advisory describes a use-after-free vulnerability found in Linux Kernel’s implementation of AF_PACKET that can lead to privilege escalation. AF_PACKET sockets “allow users to send or receive packets on the device driver level. This for example lets them to implement their own protocol on top of the physical layer or to sniff … Continue reading SSD Advisory – Linux Kernel AF_PACKET Use-After-Free

The post SSD Advisory – Linux Kernel AF_PACKET Use-After-Free appeared first on Security Boulevard.

Continue reading SSD Advisory – Linux Kernel AF_PACKET Use-After-Free→

Exploitability of Heap Vulnerabilities

Posted on January 31, 2017 by John

I’m researching memory safety vulnerabilities and noticed that in non-browser applications (for example the Linux kernel) the CVE details entries for use-after-free vulnerabilities almost always list UAFs as denial of service errors, not r… Continue reading Exploitability of Heap Vulnerabilities→

Firefox 46 Patches Critical Memory Vulnerabilities

Posted on April 27, 2016 by Michael Mimoso

Mozilla released Firefox 46, which includes patches for one critical and four high-severity vulnerabilities, all of which can lead to remote code execution. Continue reading Firefox 46 Patches Critical Memory Vulnerabilities→