Lucene search
K

81 matches found

Tenable Nessus
Tenable Nessus
added 2020/10/14 12:0 a.m.50 views

Ubuntu 18.04 LTS : Linux kernel vulnerabilities (USN-4577-1)

The remote Ubuntu 18.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4577-1 advisory. Hadar Manor discovered that the DCCP protocol implementation in the Linux kernel improperly handled socket reuse, leading to a use-after-free...

7.8CVSS7.4AI score0.00422EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2020/10/14 12:0 a.m.39 views

Ubuntu: Security Advisory (USN-4579-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.7AI score0.00509EPSS
Exploits2References2
Veracode
Veracode
added 2020/04/10 12:56 a.m.29 views

Denial Of Service (DoS)

kernel is vulnerable to denial of service DoS. The vulnerability exists as a flaw in the dccprcvstateprocess function could allow a remote attacker to cause a denial of service, even when the socket was already closed...

7.8CVSS4AI score0.03477EPSS
Exploits1References15Affected Software2
Tenable Nessus
Tenable Nessus
added 2018/07/03 12:0 a.m.73 views

Ubuntu 17.10 : linux, linux-raspi2 vulnerabilities (USN-3697-1)

It was discovered that a NULL pointer dereference vulnerability existed in the DCCP protocol implementation in the Linux kernel. A local attacker could use this to cause a denial of service system crash. CVE-2018-1130 Jann Horn discovered that the 32 bit adjtimex syscall implementation for 64 bit...

7.8CVSS6.4AI score0.0172EPSS
Exploits5References8
Ubuntu
Ubuntu
added 2018/07/02 8:5 p.m.81 views

USN-3697-2: Linux kernel (OEM) vulnerabilities

It was discovered that a null pointer dereference vulnerability existed in the DCCP protocol implementation in the Linux kernel. A local attacker could use this to cause a denial of service system crash. CVE-2018-1130 Jann Horn discovered that the 32 bit adjtimex syscall implementation for 64 bit...

7.8CVSS6.4AI score0.0172EPSS
Exploits5
OpenVAS
OpenVAS
added 2018/05/23 12:0 a.m.48 views

Ubuntu: Security Advisory (USN-3656-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.2AI score0.00559EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2018/05/23 12:0 a.m.110 views

Ubuntu 14.04 LTS : Linux kernel (Xenial HWE) vulnerabilities (USN-3654-2)

The remote Ubuntu 14.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-3654-2 advisory. USN-3654-1 fixed vulnerabilities and added mitigations in the Linux kernel for Ubuntu 16.04 LTS. This update provides the corresponding updates for the...

7.8CVSS8AI score0.60631EPSS
Exploits3References14
Ubuntu
Ubuntu
added 2018/05/22 10:42 p.m.84 views

USN-3656-1: Linux kernel (Raspberry Pi 2, Snapdragon) vulnerabilities

Tuba Yavuz discovered that a double-free error existed in the USBTV007 driver of the Linux kernel. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2017-17975 It was discovered that a race condition existed in the F2FS implementatio...

7.8CVSS7.1AI score0.00559EPSS
Exploits1
Ubuntu
Ubuntu
added 2018/05/22 3:35 a.m.98 views

USN-3654-2: Linux kernel (Xenial HWE) vulnerabilities

USN-3654-1 fixed vulnerabilities and added mitigations in the Linux kernel for Ubuntu 16.04 LTS. This update provides the corresponding updates for the Linux Hardware Enablement HWE kernel from Ubuntu 16.04 LTS for Ubuntu 14.04 LTS. Jann Horn and Ken Johnson discovered that microprocessors...

7.8CVSS7.9AI score0.60631EPSS
Exploits3References1
Ubuntu
Ubuntu
added 2018/05/22 3:33 a.m.110 views

USN-3654-1: Linux kernel vulnerabilities

Jann Horn and Ken Johnson discovered that microprocessors utilizing speculative execution of a memory read may allow unauthorized memory reads via a sidechannel attack. This flaw is known as Spectre Variant 4. A local attacker could use this to expose sensitive information, including kernel memor...

7.8CVSS7.8AI score0.60631EPSS
Exploits3References1
Hacker One
Hacker One
added 2018/05/03 10:10 p.m.134 views

Internet Bug Bounty: Linux kernel: CVE-2017-6074: DCCP double-free vulnerability

Hi! CVE-2017-6074 1 is a double-free vulnerability I found in the Linux kernel. It can be exploited to gain kernel code execution from an unprivileged processes. The kernel needs to be built with CONFIGIPDCCP for the vulnerability to be present. A lot of modern distributions enable this option by...

7.2CVSS7.7AI score0.0596EPSS
Exploits13
Cloud Foundry
Cloud Foundry
added 2018/03/01 12:0 a.m.81 views

USN-3582-2: Linux kernel (Xenial HWE) vulnerabilities | Cloud Foundry

Severity High Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 14.04 Description USN-3582-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.04 LTS. This update provides the corresponding updates for the Linux Hardware Enablement HWE kernel from Ubuntu 16.04 LTS for Ubuntu 14.04...

7.8CVSS7.8AI score0.74041EPSS
Exploits14
Ubuntu
Ubuntu
added 2018/02/23 6:57 a.m.95 views

USN-3581-3: Linux kernel (Raspberry Pi 2) vulnerabilities

Mohamed Ghannam discovered that the IPv4 raw socket implementation in the Linux kernel contained a race condition leading to uninitialized pointer usage. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. CVE-2017-17712 ChunYu Wang discovered that a...

7.8CVSS6.8AI score0.01344EPSS
Exploits5
Tenable Nessus
Tenable Nessus
added 2018/02/23 12:0 a.m.58 views

Ubuntu 14.04 LTS : Linux kernel (Xenial HWE) vulnerabilities (USN-3582-2)

The remote Ubuntu 14.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-3582-2 advisory. USN-3582-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.04 LTS. This update provides the corresponding updates for the Linux Hardware Enableme...

7.8CVSS7.7AI score0.74041EPSS
Exploits14References7
Tenable Nessus
Tenable Nessus
added 2018/02/23 12:0 a.m.109 views

Ubuntu 17.10 : linux vulnerabilities (USN-3581-1) (Spectre)

Mohamed Ghannam discovered that the IPv4 raw socket implementation in the Linux kernel contained a race condition leading to uninitialized pointer usage. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. CVE-2017-17712 ChunYu Wang discovered that a...

7.8CVSS7.5AI score0.74041EPSS
Exploits14References5
Tenable Nessus
Tenable Nessus
added 2018/02/23 12:0 a.m.53 views

Ubuntu 17.10 : linux-raspi2 vulnerabilities (USN-3581-3)

Mohamed Ghannam discovered that the IPv4 raw socket implementation in the Linux kernel contained a race condition leading to uninitialized pointer usage. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. CVE-2017-17712 ChunYu Wang discovered that a...

7.8CVSS6.9AI score0.01344EPSS
Exploits5References4
OpenVAS
OpenVAS
added 2018/02/22 12:0 a.m.38 views

Ubuntu: Security Advisory (USN-3581-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.8AI score0.74041EPSS
Exploits14References2
OpenVAS
OpenVAS
added 2018/02/22 12:0 a.m.41 views

Ubuntu: Security Advisory (USN-3582-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.3AI score0.74041EPSS
Exploits14References2
OSV
OSV
added 2017/12/05 9:29 a.m.1 views

DEBIAN-CVE-2017-8824

The dccpdisconnect function in net/dccp/proto.c in the Linux kernel through 4.14.3 allows local users to gain privileges or cause a denial of service use-after-free via an AFUNSPEC connect system call during the DCCPLISTEN state...

7.8CVSS6.2AI score0.01344EPSS
Exploits5References1
RedHat Linux
RedHat Linux
added 2017/08/01 2:22 p.m.4 views

kernel: net: IPv6 DCCP implementation mishandles inheritance

The IPv6 DCCP implementation in the Linux kernel mishandles inheritance, which allows local users to cause a denial of service or possibly have unspecified other impact via crafted system calls, a related issue to CVE-2017-8890. An unprivileged local user could use this flaw to induce kernel memo...

7.8CVSS6.8AI score0.00366EPSS
Exploits1References4
Rows per page
Query Builder