RSS   Vulnerabilities for 'Omnios'   RSS

2020-10-26
 
CVE-2020-27678

CWE-120
 
 
An issue was discovered in illumos before 2020-10-22, as used in OmniOS before r151030by, r151032ay, and r151034y and SmartOS before 20201022. There is a buffer overflow in parse_user_name in lib/libpam/pam_framework.c.

 
2019-11-29
 
CVE-2019-19396

CWE-20
 
 
illumos, as used in OmniOS Community Edition before r151030y, allows a kernel crash via an application with multiple threads calling sendmsg concurrently over a single socket, because uts/common/inet/ip/ip_attr.c mishandles conn_ixa dereferences.

 

Copyright 2024, cxsecurity.com

 

Back to Top