Re: [FD] popo2, kernel/tun driver bufferoverflow.

from_user(, argp, ifreq_len)) // bug. > 3045return -EFAULT; > 3046} else { > 3047memset(, 0, sizeof(ifr)); > 3048} > -- > > -author: x90 -- Robert Święcki ___ Sent through the Full Disclosure mailing list https://nmap.org/mailman/listinfo/fulldisclosure Web Archives & RSS: http://seclists.org/fulldisclosure/

Re: [FD] Freeware Advanced Audio Decoder 2 (FAAD2) multiple vulnerabilities

; > > > for (i = 0; i < f->track[f->total_tracks - 1]->stco_entry_count; i++) > < > { > f->track[f->total_tracks - 1]->stco_chunk_offset[i] = > mp4ff_read_int32(f); > } > > > return 0; > } > > > POC: > faad2_2

Re: [FD] Partial pointer leaks

-generic 8178ad85 t sysret_careful $ sudo grep 8178ba47 /boot/System.map-3.16.0-31-generic 8178ba47 T native_irq_return_iret HTH -- Robert Święcki ___ Sent through the Full Disclosure mailing list https://nmap.org/mailman/listinfo