Lucene search
+L

609 matches found

veracode
veracode
added 2020/04/10 12:57 a.m.33 views

Denial Of Service (DoS)

kernel is vulnerable to denial of service. Missing boundary checks in the block layer implementation could allow a local, unprivileged user to cause a denial of service...

4.7CVSS4AI score0.00393EPSS
Exploits1References29Affected Software2
redhat
redhat
added 2020/02/04 1:15 p.m.340 views

Important: Red Hat Security Advisory: kernel security and bug fix update

An update for kernel is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

10CVSS7.2AI score0.16908EPSS
Exploits6References9
cloudfoundry
cloudfoundry
added 2019/09/30 12:0 a.m.102 views

USN-4094-1: Linux kernel vulnerabilities | Cloud Foundry

Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 16.04 Description It was discovered that the alarmtimer implementation in the Linux kernel contained an integer overflow vulnerability. A local attacker could use this to cause a denial of service. CVE-2018-13053 Wen Xu...

9.8CVSS9.2AI score0.52199EPSS
Exploits37
osv
osv
added 2019/09/02 9:7 p.m.7 views

USN-4116-1 linux, linux-aws, linux-kvm, linux-raspi2, linux-snapdragon vulnerabilities

It was discovered that a use-after-free error existed in the block layer subsystem of the Linux kernel when certain failure conditions occurred. A local attacker could possibly use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2018-20856 Amit Klein and Ben...

7.8CVSS7.2AI score0.04425EPSS
Exploits0References7
nessus
nessus
added 2019/08/14 12:0 a.m.137 views

Ubuntu 16.04 LTS / 18.04 LTS : Linux kernel vulnerabilities (USN-4094-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4094-1 advisory. It was discovered that the alarmtimer implementation in the Linux kernel contained an integer overflow vulnerability. A local attacker could...

9.8CVSS8AI score0.52199EPSS
Exploits37References33
ubuntu
ubuntu
added 2019/08/13 4:1 p.m.221 views

USN-4094-1: Linux kernel vulnerabilities

It was discovered that the alarmtimer implementation in the Linux kernel contained an integer overflow vulnerability. A local attacker could use this to cause a denial of service. CVE-2018-13053 Wen Xu discovered that the XFS filesystem implementation in the Linux kernel did not properly track...

9.8CVSS7.7AI score0.52199EPSS
Exploits37
fedora
fedora
added 2018/08/19 10:40 p.m.36 views

[SECURITY] Fedora 28 Update: blktrace-1.2.0-6.fc28

blktrace is a block layer IO tracing mechanism which provides detailed information about request queue operations to user space. This package includes both blktrace, a utility which gathers event traces from the kerne l; and blkparse, a utility which formats trace data collected by blktrace. You...

5.5CVSS3.5AI score0.01976EPSS
Exploits0
openvas
openvas
added 2018/05/23 12:0 a.m.48 views

Ubuntu: Security Advisory (USN-3656-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.2AI score0.0055EPSS
Exploits1References2
nessus
nessus
added 2018/05/23 12:0 a.m.110 views

Ubuntu 14.04 LTS : Linux kernel (Xenial HWE) vulnerabilities (USN-3654-2)

The remote Ubuntu 14.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-3654-2 advisory. USN-3654-1 fixed vulnerabilities and added mitigations in the Linux kernel for Ubuntu 16.04 LTS. This update provides the corresponding updates for the...

7.8CVSS8AI score0.60631EPSS
Exploits3References14
ubuntu
ubuntu
added 2018/05/22 10:42 p.m.84 views

USN-3656-1: Linux kernel (Raspberry Pi 2, Snapdragon) vulnerabilities

Tuba Yavuz discovered that a double-free error existed in the USBTV007 driver of the Linux kernel. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2017-17975 It was discovered that a race condition existed in the F2FS implementatio...

7.8CVSS7.1AI score0.0055EPSS
Exploits1
ubuntu
ubuntu
added 2018/05/22 3:35 a.m.99 views

USN-3654-2: Linux kernel (Xenial HWE) vulnerabilities

USN-3654-1 fixed vulnerabilities and added mitigations in the Linux kernel for Ubuntu 16.04 LTS. This update provides the corresponding updates for the Linux Hardware Enablement HWE kernel from Ubuntu 16.04 LTS for Ubuntu 14.04 LTS. Jann Horn and Ken Johnson discovered that microprocessors...

7.8CVSS7.9AI score0.60631EPSS
Exploits3References1
ubuntu
ubuntu
added 2018/05/22 3:33 a.m.111 views

USN-3654-1: Linux kernel vulnerabilities

Jann Horn and Ken Johnson discovered that microprocessors utilizing speculative execution of a memory read may allow unauthorized memory reads via a sidechannel attack. This flaw is known as Spectre Variant 4. A local attacker could use this to expose sensitive information, including kernel memor...

7.8CVSS7.8AI score0.60631EPSS
Exploits3References1
redhat
redhat
added 2018/04/10 9:1 a.m.6 views

kernel: memory leak when merging buffers in SCSI IO vectors

It was found that in the Linux kernel through v4.14-rc5, biomapuseriov and biounmapuser in 'block/bio.c' do unbalanced pages refcounting if IO vector has small consecutive buffers belonging to the same page. bioaddpcpage merges them into one, but the page reference is never dropped, causing a...

6.5CVSS6.8AI score0.00531EPSS
Exploits0References4
nessus
nessus
added 2017/07/24 12:0 a.m.77 views

Ubuntu 14.04 LTS : Linux kernel vulnerabilities (USN-3360-1)

The remote Ubuntu 14.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-3360-1 advisory. It was discovered that the Linux kernel did not properly initialize a Wake- on-Lan data structure. A local attacker could use this to expose sensitive...

10CVSS6.4AI score0.1081EPSS
Exploits0References16
ubuntu
ubuntu
added 2017/07/21 8:12 a.m.124 views

USN-3360-1: Linux kernel vulnerabilities

It was discovered that the Linux kernel did not properly initialize a Wake- on-Lan data structure. A local attacker could use this to expose sensitive information kernel memory. CVE-2014-9900 It was discovered that the Linux kernel did not properly restrict access to /proc/iomem. A local attacker...

10CVSS7AI score0.1081EPSS
Exploits0
ubuntu
ubuntu
added 2017/02/22 7:49 a.m.81 views

USN-3209-1: Linux kernel vulnerabilities

It was discovered that the generic SCSI block layer in the Linux kernel did not properly restrict write operations in certain situations. A local attacker could use this to cause a denial of service system crash or possibly gain administrative privileges. CVE-2016-10088 Jim Mattson discovered tha...

7.8CVSS6.8AI score0.0596EPSS
Exploits13
osv
osv
added 2017/02/22 7:26 a.m.3 views

USN-3208-1 linux, linux-snapdragon vulnerabilities

It was discovered that the generic SCSI block layer in the Linux kernel did not properly restrict write operations in certain situations. A local attacker could use this to cause a denial of service system crash or possibly gain administrative privileges. CVE-2016-10088 CAI Qian discovered that t...

8.4CVSS6.9AI score0.0596EPSS
Exploits13References8
redhat
redhat
added 2014/03/11 5:7 p.m.45 views

Important: Red Hat Security Advisory: kernel security and bug fix update

Updated kernel packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 6.4 Extended Update Support. The Red Hat Security Response Team has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores...

6.9CVSS6.8AI score0.02578EPSS
Exploits10References9
openvas
openvas
added 2013/09/12 12:0 a.m.35 views

Ubuntu Update for linux USN-1941-1

Check for the Version of linux OpenVAS Vulnerability Test $Id: gbubuntuUSN19411.nasl 8456 2018-01-18 06:58:40Z teissa $ Ubuntu Update for linux USN-1941-1 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; y...

7.8CVSS0.1AI score0.04546EPSS
Exploits4References2
nessus
nessus
added 2013/09/07 12:0 a.m.242 views

Ubuntu 12.04 LTS : linux vulnerabilities (USN-1941-1)

Chanam Park reported a NULL pointer flaw in the Linux kernel's Ceph client. A remote attacker could exploit this flaw to cause a denial of service system crash. CVE-2013-1059 Vasily Kulikov discovered a flaw in the Linux Kernel's perf tool that allows for privilege escalation. A local user could...

7.8CVSS6.7AI score0.04546EPSS
Exploits4References9
Rows per page
Query Builder