Lucene search
K

30 matches found

Cvelist
Cvelist
added 2019/02/11 3:0 p.m.32 views

CVE-2018-12006

In all android releasesAndroid for MSM, Firefox OS for MSM, QRD Android from CAF using the linux kernel, Users with no extra privileges can potentially access leaked data due to uninitialized padding present in display function...

6.4AI score0.0014EPSS
Exploits0References1
OSV
OSV
added 2017/07/05 1:29 a.m.1 views

ALPINE-CVE-2017-10911

The makeresponse function in drivers/block/xen-blkback/blkback.c in the Linux kernel before 4.11.8 allows guest OS users to obtain sensitive information from host OS or other guest OS kernel memory by leveraging the copying of uninitialized padding fields in Xen block-interface response structure...

6.5CVSS6AI score0.00445EPSS
Exploits0References1
OSV
OSV
added 2017/07/05 1:29 a.m.0 views

DEBIAN-CVE-2017-10911

The makeresponse function in drivers/block/xen-blkback/blkback.c in the Linux kernel before 4.11.8 allows guest OS users to obtain sensitive information from host OS or other guest OS kernel memory by leveraging the copying of uninitialized padding fields in Xen block-interface response structure...

6.5CVSS7.7AI score0.00445EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2016/12/15 8:19 p.m.45 views

CVE-2016-4569

A vulnerability was found in Linux kernel. There is an information leak in file "sound/core/timer.c" of the latest mainline Linux kernel, the stack object “tread” has a total size of 32 bytes. It contains a 8-bytes padding, which is not initialized but sent to user via copytouser, resulting a...

2.1CVSS2.7AI score0.00842EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2016/11/03 8:8 a.m.5 views

kernel: Information leak in Linux sound module in timer.c

A vulnerability was found in Linux kernel. There is an information leak in file "sound/core/timer.c" of the latest mainline Linux kernel, the stack object “tread” has a total size of 32 bytes. It contains a 8-bytes padding, which is not initialized but sent to user via copytouser, resulting a...

5.5CVSS6.9AI score0.00842EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2016/11/03 8:6 a.m.8 views

kernel: Information leak in Linux sound module in timer.c

A vulnerability was found in Linux kernel. There is an information leak in file "sound/core/timer.c" of the latest mainline Linux kernel, the stack object “tread” has a total size of 32 bytes. It contains a 8-bytes padding, which is not initialized but sent to user via copytouser, resulting a...

5.5CVSS6.9AI score0.00842EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2016/11/03 8:6 a.m.6 views

kernel: Information leak in events in timer.c

A vulnerability was found in Linux kernel. There is an information leak in file sound/core/timer.c of the latest mainline Linux kernel. The stack object “r1” has a total size of 32 bytes. Its field “event” and “val” both contain 4 bytes padding. These 8 bytes padding bytes are sent to user withou...

5.5CVSS7.1AI score0.01213EPSS
Exploits5References4
CNVD
CNVD
added 2016/05/06 12:0 a.m.2 views

Linux kernel devio information disclosure vulnerability

The Linux kernel is the kernel used by the operating system Linux, released by the Linux Foundation in the United States. An information disclosure vulnerability exists in the Linux kernel's devio, which stems from a program's failure to initialize the padding bytes in the 'map' stack object. An...

6.2CVSS6.4AI score0.00553EPSS
Exploits0References1
OSV
OSV
added 2015/11/06 9:59 p.m.5 views

UBUNTU-CVE-2015-7762

rx/rx.c in OpenAFS before 1.6.15 and 1.7.x before 1.7.33 does not properly initialize the padding of a data structure when constructing an Rx acknowledgement ACK packet, which allows remote attackers to obtain sensitive information by 1 conducting a replay attack or 2 sniffing the network...

5CVSS5.8AI score0.02133EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2012/02/01 6:51 p.m.6 views

openssl: uninitialized SSL 3.0 padding

The SSL 3.0 implementation in OpenSSL before 0.9.8s and 1.x before 1.0.0f does not properly initialize data structures for block cipher padding, which might allow remote attackers to obtain sensitive information by decrypting the padding data sent by an SSL peer...

5CVSS7.2AI score0.14523EPSS
Exploits0References4
Rows per page
Query Builder