Lucene search
K

133 matches found

OSV
OSV
added 2018/12/18 10:29 p.m.4 views

DEBIAN-CVE-2018-16884

A flaw was found in the Linux kernel's NFS41+ subsystem. NFS41+ shares mounted in different network namespaces at the same time can make bcsvcprocess use wrong back-channel IDs and cause a use-after-free vulnerability. Thus a malicious container user can cause a host kernel memory corruption and ...

8CVSS6.6AI score0.01455EPSS
Exploits0References1
OSV
OSV
added 2018/12/18 10:29 p.m.5 views

CVE-2018-16884

A flaw was found in the Linux kernel's NFS41+ subsystem. NFS41+ shares mounted in different network namespaces at the same time can make bcsvcprocess use wrong back-channel IDs and cause a use-after-free vulnerability. Thus a malicious container user can cause a host kernel memory corruption and ...

8CVSS7.8AI score0.01455EPSS
Exploits0References22
Cvelist
Cvelist
added 2018/12/18 10:0 p.m.18 views

CVE-2018-16884

A flaw was found in the Linux kernel's NFS41+ subsystem. NFS41+ shares mounted in different network namespaces at the same time can make bcsvcprocess use wrong back-channel IDs and cause a use-after-free vulnerability. Thus a malicious container user can cause a host kernel memory corruption and ...

6.5CVSS8.1AI score0.01455EPSS
Exploits0References22
Tenable Nessus
Tenable Nessus
added 2018/09/18 12:0 a.m.290 views

EulerOS Virtualization 2.5.0 : kernel (EulerOS-SA-2018-1234)

According to the versions of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A use-after-free vulnerability was found in network namespaces code affecting the Linux kernel before 4.14.11. The function...

10CVSS6.4AI score0.52189EPSS
Exploits5References7
Tenable Nessus
Tenable Nessus
added 2018/05/16 12:0 a.m.85 views

Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2018-4108)

The remote Oracle Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2018-4108 advisory. - netfilter: nfnetlinkcthelper: Add missing permission checks Kevin Cernekee Orabug: 27260771 CVE-2017-17448 - netlink: Add netns check on taps Kev...

7.8CVSS6.6AI score0.02084EPSS
Exploits5References10
Ubuntu
Ubuntu
added 2018/04/24 6:25 a.m.97 views

USN-3632-1: Linux kernel (Azure) vulnerabilities

It was discovered that a race condition leading to a use-after-free vulnerability existed in the ALSA PCM subsystem of the Linux kernel. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2017-0861 It was discovered that the KVM...

7.8CVSS6.9AI score0.07679EPSS
Exploits10
OSV
OSV
added 2018/04/24 6:25 a.m.13 views

USN-3632-1 linux-azure vulnerabilities

It was discovered that a race condition leading to a use-after-free vulnerability existed in the ALSA PCM subsystem of the Linux kernel. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2017-0861 It was discovered that the KVM...

7.8CVSS6.9AI score0.07679EPSS
Exploits10References16
Tenable Nessus
Tenable Nessus
added 2018/04/24 12:0 a.m.83 views

Ubuntu 16.04 LTS : Linux kernel (Azure) vulnerabilities (USN-3632-1)

The remote Ubuntu 16.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-3632-1 advisory. It was discovered that a race condition leading to a use-after-free vulnerability existed in the ALSA PCM subsystem of the Linux kernel. A local attacker...

7.8CVSS7.1AI score0.07679EPSS
Exploits10References16
RedHat Linux
RedHat Linux
added 2018/04/10 3:23 p.m.5 views

kernel: net: double-free and memory corruption in get_net_ns_by_id()

A use-after-free vulnerability was found in a network namespaces code affecting the Linux kernel since v4.0-rc1 through v4.15-rc5. The function getnetnsbyid does not check for the net::count value after it has found a peer network in netnsids idr which could lead to double free and memory...

4.9CVSS6.7AI score0.00357EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2018/04/10 9:1 a.m.7 views

kernel: net: double-free and memory corruption in get_net_ns_by_id()

A use-after-free vulnerability was found in a network namespaces code affecting the Linux kernel since v4.0-rc1 through v4.15-rc5. The function getnetnsbyid does not check for the net::count value after it has found a peer network in netnsids idr which could lead to double free and memory...

4.9CVSS6.7AI score0.00357EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2018/04/10 3:34 a.m.2 views

kernel: net: double-free and memory corruption in get_net_ns_by_id()

A use-after-free vulnerability was found in a network namespaces code affecting the Linux kernel since v4.0-rc1 through v4.15-rc5. The function getnetnsbyid does not check for the net::count value after it has found a peer network in netnsids idr which could lead to double free and memory...

4.9CVSS6.7AI score0.00357EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2018/04/06 12:0 a.m.98 views

Ubuntu 14.04 LTS : Linux kernel (Xenial HWE) vulnerabilities (USN-3619-2)

The remote Ubuntu 14.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-3619-2 advisory. USN-3619-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.04 LTS. This update provides the corresponding updates for the Linux Hardware Enableme...

7.8CVSS7.5AI score0.30052EPSS
Exploits26References40
OpenVAS
OpenVAS
added 2018/04/06 12:0 a.m.48 views

Ubuntu: Security Advisory (USN-3617-3)

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7AI score0.07679EPSS
Exploits10References2
OSV
OSV
added 2018/04/05 8:14 p.m.12 views

USN-3619-2 linux-lts-xenial, linux-aws vulnerabilities

USN-3619-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.04 LTS. This update provides the corresponding updates for the Linux Hardware Enablement HWE kernel from Ubuntu 16.04 LTS for Ubuntu 14.04 LTS. Jann Horn discovered that the Berkeley Packet Filter BPF implementation in the Linux...

7.8CVSS7.1AI score0.30052EPSS
Exploits26References40
Tenable Nessus
Tenable Nessus
added 2018/04/05 12:0 a.m.47 views

Ubuntu 17.10 : linux-raspi2 vulnerabilities (USN-3617-3)

It was discovered that a race condition leading to a use-after-free vulnerability existed in the ALSA PCM subsystem of the Linux kernel. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2017-0861 It was discovered that a...

7.8CVSS6.8AI score0.07679EPSS
Exploits10References22
Ubuntu
Ubuntu
added 2018/04/04 7:21 p.m.103 views

USN-3619-1: Linux kernel vulnerabilities

Jann Horn discovered that the Berkeley Packet Filter BPF implementation in the Linux kernel improperly performed sign extension in some situations. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2017-16995 It was discovered that a...

7.8CVSS7.3AI score0.30052EPSS
Exploits26
OSV
OSV
added 2018/04/04 7:21 p.m.11 views

USN-3619-1 linux, linux-aws, linux-kvm, linux-raspi2, linux-snapdragon vulnerabilities

Jann Horn discovered that the Berkeley Packet Filter BPF implementation in the Linux kernel improperly performed sign extension in some situations. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2017-16995 It was discovered that a...

7.8CVSS7.1AI score0.30052EPSS
Exploits26References40
Ubuntu
Ubuntu
added 2018/04/04 6:17 p.m.110 views

USN-3617-3: Linux kernel (Raspberry Pi 2) vulnerabilities

It was discovered that a race condition leading to a use-after-free vulnerability existed in the ALSA PCM subsystem of the Linux kernel. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2017-0861 It was discovered that a...

7.8CVSS6.9AI score0.07679EPSS
Exploits10
Tenable Nessus
Tenable Nessus
added 2018/04/04 12:0 a.m.104 views

Ubuntu 16.04 LTS : Linux (HWE) vulnerabilities (USN-3617-2)

The remote Ubuntu 16.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-3617-2 advisory. USN-3617-1 fixed vulnerabilities in the Linux kernel for Ubuntu 17.10. This update provides the corresponding updates for the Linux Hardware Enablement H...

7.8CVSS7.1AI score0.07679EPSS
Exploits10References23
Ubuntu
Ubuntu
added 2018/04/03 7:40 p.m.105 views

USN-3617-2: Linux (HWE) vulnerabilities

USN-3617-1 fixed vulnerabilities in the Linux kernel for Ubuntu 17.10. This update provides the corresponding updates for the Linux Hardware Enablement HWE kernel from Ubuntu 17.10 for Ubuntu 16.04 LTS. It was discovered that a race condition leading to a use-after-free vulnerability existed in t...

7.8CVSS6.9AI score0.07679EPSS
Exploits10
Rows per page
Query Builder