5 matches found
USN-7089-1 linux, linux-gcp-6.8, linux-hwe-6.8 vulnerabilities
Chenyuan Yang discovered that the USB Gadget subsystem in the Linux kernel did not properly check for the device to be enabled before writing. A local attacker could possibly use this to cause a denial of service. CVE-2024-25741 Several security issues were discovered in the Linux kernel. An...
The vulnerability in the `arch/x86/kernel/fpu/xstate.c` component of the Linux operating system, related to the use of memory after it is freed, allows an attacker to gain access to confidential data, compromise its integrity, and cause service failures.
The vulnerability in the arch/x86/kernel/fpu/xstate.c component of the Linux operating system is related to the use of memory after it has been freed. Exploiting this vulnerability allows an attacker to gain access to confidential data, compromise its integrity, and cause service failures...
Local Privilege Escalation in polkits pkexec
A bug exists in the polkit pkexec binary in how it processes arguments. If the binary is provided with no arguments, it will continue to process environment variables as argument variables, but without any security checking. By using the execve call we can specify a null argument list and populat...
CVE-2016-5544
Unspecified vulnerability in Oracle Sun Solaris 10 and 11.3 allows local users to affect confidentiality, integrity, and availability via vectors related to Kernel/X86...
UBUNTU-CVE-2013-0268
The msropen function in arch/x86/kernel/msr.c in the Linux kernel before 3.7.6 allows local users to bypass intended capability restrictions by executing a crafted application as root, as demonstrated by msr32.c...