PT-2025-38473

Name of the Vulnerable Software and Affected Versions affected versions not specified Description A crafted system call argument can cause memory corruption. Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability...

PT-2024-1737 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to the Windows Event Logging service and is caused by pointer dereference errors. It can be exploited by a remote attacker to cause a denial of service using a speciall...

SUSE CVE-2017-15299

The KEYS subsystem in the Linux kernel through 4.13.7 mishandles use of addkey for a key that already exists but is uninstantiated, which allows local users to cause a denial of service NULL pointer dereference and system crash or possibly have unspecified other impact via a crafted system call...

UBUNTU-CVE-2019-12881

i915gemuserptrgetpages in drivers/gpu/drm/i915/i915gemuserptr.c in the Linux kernel 4.15.0 on Ubuntu 18.04.2 allows local users to cause a denial of service NULL pointer dereference and BUG or possibly have unspecified other impact via crafted ioctl calls to /dev/dri/card0...

Linux kernel 'sctp_do_peeloff' function local denial of service vulnerability

Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. A security vulnerability exists in the 'sctpdopeeloff' function in the net/sctp/socket.c file in versions of Linux kernel prior to 4.14. A local attacker can exploit...

DEBIAN-CVE-2017-15299

The KEYS subsystem in the Linux kernel through 4.13.7 mishandles use of addkey for a key that already exists but is uninstantiated, which allows local users to cause a denial of service NULL pointer dereference and system crash or possibly have unspecified other impact via a crafted system call...

UBUNTU-CVE-2017-15299

The KEYS subsystem in the Linux kernel through 4.13.7 mishandles use of addkey for a key that already exists but is uninstantiated, which allows local users to cause a denial of service NULL pointer dereference and system crash or possibly have unspecified other impact via a crafted system call...

UBUNTU-CVE-2017-14954

The waitid implementation in kernel/exit.c in the Linux kernel through 4.13.4 accesses rusage data structures in unintended cases, which allows local users to obtain sensitive information, and bypass the KASLR protection mechanism, via a crafted system call...

Linux kernel denial of service vulnerability (CNVD-2017-24356)

The Linux kernel is the kernel used by the operating system Linux, released by the Linux Foundation in the United States. A denial of service vulnerability exists in the net/ipv4/route.c file in Linux kernel versions 4.13-rc1 through 4.13-rc6. A local attacker can exploit this vulnerability to...

Linux kernel denial of service vulnerability (CNVD-2017-07509)

The Linux kernel is the kernel used by the operating system Linux, released by the Linux Foundation in the United States. A denial of service vulnerability exists in the 'tcpv6synrecvsock' function in the net/ipv6/tcpipv6.c file in Linux kernel versions 4.11.1 and earlier, which stems from the...

Race condition

Race condition in the gettaskioprio function in block/ioprio.c in the Linux kernel before 4.6.6 allows local users to gain privileges or cause a denial of service use-after-free via a crafted ioprioget system call...

CVE-2016-7911

Race condition in the gettaskioprio function in block/ioprio.c in the Linux kernel before 4.6.6 allows local users to gain privileges or cause a denial of service use-after-free via a crafted ioprioget system call...

CVE-2013-1956

The createuserns function in kernel/usernamespace.c in the Linux kernel before 3.8.6 does not check whether a chroot directory exists that differs from the namespace root directory, which allows local users to bypass intended filesystem restrictions via a crafted clone system call...

CVE-2014-3880

The 1 execve and 2 fexecve system calls in the FreeBSD kernel 8.4 before p11, 9.1 before p14, 9.2 before p7, and 10.0 before p4 destroys the virtual memory address space and mappings for a process before all threads have terminated, which allows local users to cause a denial of service triple-fau...

Design/Logic Flaw

The nrrecvmsg function in net/netrom/afnetrom.c in the Linux kernel before 3.9-rc7 does not initialize a certain data structure, which allows local users to obtain sensitive information from kernel stack memory via a crafted recvmsg or recvfrom system call...

CVE-2013-3225

The rfcommsockrecvmsg function in net/bluetooth/rfcomm/sock.c in the Linux kernel before 3.9-rc7 does not initialize a certain length variable, which allows local users to obtain sensitive information from kernel stack memory via a crafted recvmsg or recvfrom system call...

CVE-2011-1593

Multiple integer overflows in the nextpidmap function in kernel/pid.c in the Linux kernel before 2.6.38.4 allow local users to cause a denial of service system crash via a crafted 1 getdents or 2 readdir system call...

CVE-2010-3066

The iosubmitone function in fs/aio.c in the Linux kernel before 2.6.23 allows local users to cause a denial of service NULL pointer dereference via a crafted iosubmit system call with an IOCBFLAGRESFD flag...

Null pointer dereference

The iosubmitone function in fs/aio.c in the Linux kernel before 2.6.23 allows local users to cause a denial of service NULL pointer dereference via a crafted iosubmit system call with an IOCBFLAGRESFD flag...

CVE-2010-3066

The iosubmitone function in fs/aio.c in the Linux kernel before 2.6.23 allows local users to cause a denial of service NULL pointer dereference via a crafted iosubmit system call with an IOCBFLAGRESFD flag...