Lucene search
K

6633 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 5:38 a.m.2 views

SUSE CVE-2013-2548

The cryptoreportone function in crypto/cryptouser.c in the report API in the crypto user configuration API in the Linux kernel through 3.8.2 uses an incorrect length value during a copy operation, which allows local users to obtain sensitive information from kernel memory by leveraging the...

2.1CVSS5.9AI score0.00385EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 5:38 a.m.2 views

SUSE CVE-2013-2636

net/bridge/brmdb.c in the Linux kernel before 3.8.4 does not initialize certain structures, which allows local users to obtain sensitive information from kernel memory via a crafted application...

1.9CVSS5.9AI score0.00361EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 5:37 a.m.5 views

SUSE CVE-2013-2895

drivers/hid/hid-logitech-dj.c in the Human Interface Device HID subsystem in the Linux kernel through 3.11, when CONFIGHIDLOGITECHDJ is enabled, allows physically proximate attackers to cause a denial of service NULL pointer dereference and OOPS or obtain sensitive information from kernel memory...

5.4CVSS7.2AI score0.00383EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 5:37 a.m.2 views

SUSE CVE-2013-2898

drivers/hid/hid-sensor-hub.c in the Human Interface Device HID subsystem in the Linux kernel through 3.11, when CONFIGHIDSENSORHUB is enabled, allows physically proximate attackers to obtain sensitive information from kernel memory via a crafted device...

1.9CVSS6.2AI score0.00364EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 5:37 a.m.4 views

SUSE CVE-2013-3226

The scosockrecvmsg function in net/bluetooth/sco.c in the Linux kernel before 3.9-rc7 does not initialize a certain length variable, which allows local users to obtain sensitive information from kernel stack memory via a crafted recvmsg or recvfrom system call...

4.9CVSS6AI score0.0037EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 5:37 a.m.3 views

SUSE CVE-2013-3227

The caifseqpktrecvmsg function in net/caif/caifsocket.c in the Linux kernel before 3.9-rc7 does not initialize a certain length variable, which allows local users to obtain sensitive information from kernel stack memory via a crafted recvmsg or recvfrom system call...

4.9CVSS6AI score0.00378EPSS
Exploits0References8
SUSE CVE
SUSE CVE
added 2023/02/15 5:37 a.m.5 views

SUSE CVE-2013-3233

The llcpsockrecvmsg function in net/nfc/llcp/sock.c in the Linux kernel before 3.9-rc7 does not initialize a certain length variable and a certain data structure, which allows local users to obtain sensitive information from kernel stack memory via a crafted recvmsg or recvfrom system call...

4.9CVSS6AI score0.00381EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 5:37 a.m.3 views

SUSE CVE-2013-3236

The vmcitransportdgramdequeue function in net/vmwvsock/vmcitransport.c in the Linux kernel before 3.9-rc7 does not properly initialize a certain length variable, which allows local users to obtain sensitive information from kernel stack memory via a crafted recvmsg or recvfrom system call...

4.9CVSS6AI score0.00341EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 5:35 a.m.4 views

SUSE CVE-2013-4511

Multiple integer overflows in Alchemy LCD frame-buffer drivers in the Linux kernel before 3.12 allow local users to create a read-write memory mapping for the entirety of kernel memory, and consequently gain privileges, via crafted mmap operations, related to the 1 au1100fbfbmmap function in...

6.9CVSS6.5AI score0.00596EPSS
Exploits1References11
SUSE CVE
SUSE CVE
added 2023/02/15 5:34 a.m.2 views

SUSE CVE-2013-6282

The 1 getuser and 2 putuser API functions in the Linux kernel before 3.5.5 on the v6k and v7 ARM platforms do not validate certain addresses, which allows attackers to read or modify the contents of arbitrary kernel memory locations via a crafted application, as exploited in the wild against...

8.8CVSS8AI score0.39711EPSS
Exploits9References3
SUSE CVE
SUSE CVE
added 2023/02/15 5:33 a.m.3 views

SUSE CVE-2013-7264

The l2tpiprecvmsg function in net/l2tp/l2tpip.c in the Linux kernel before 3.12.4 updates a certain length value before ensuring that an associated data structure has been initialized, which allows local users to obtain sensitive information from kernel stack memory via a 1 recvfrom, 2 recvmmsg, ...

4.9CVSS6AI score0.00434EPSS
Exploits0References13
SUSE CVE
SUSE CVE
added 2023/02/15 5:33 a.m.4 views

SUSE CVE-2013-7267

The atalkrecvmsg function in net/appletalk/ddp.c in the Linux kernel before 3.12.4 updates a certain length value without ensuring that an associated data structure has been initialized, which allows local users to obtain sensitive information from kernel memory via a 1 recvfrom, 2 recvmmsg, or 3...

4.9CVSS6AI score0.00434EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/02/15 5:33 a.m.3 views

SUSE CVE-2013-7269

The nrrecvmsg function in net/netrom/afnetrom.c in the Linux kernel before 3.12.4 updates a certain length value without ensuring that an associated data structure has been initialized, which allows local users to obtain sensitive information from kernel memory via a 1 recvfrom, 2 recvmmsg, or 3...

4.9CVSS6AI score0.00452EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/02/15 5:32 a.m.2 views

SUSE CVE-2014-0206

Array index error in the aioreadeventsring function in fs/aio.c in the Linux kernel through 3.15.1 allows local users to obtain sensitive information from kernel memory via a large head value...

2.1CVSS5.8AI score0.0045EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 5:31 a.m.2 views

SUSE CVE-2014-1445

The wanxlioctl function in drivers/net/wan/wanxl.c in the Linux kernel before 3.11.7 does not properly initialize a certain data structure, which allows local users to obtain sensitive information from kernel memory via an ioctl call...

2.1CVSS6AI score0.00414EPSS
Exploits1References15
SUSE CVE
SUSE CVE
added 2023/02/15 5:31 a.m.5 views

SUSE CVE-2014-1444

The fstgetiface function in drivers/net/wan/farsync.c in the Linux kernel before 3.11.7 does not properly initialize a certain data structure, which allows local users to obtain sensitive information from kernel memory by leveraging the CAPNETADMIN capability for an SIOCWANDEV ioctl call...

1.7CVSS5.8AI score0.00338EPSS
Exploits1References15
SUSE CVE
SUSE CVE
added 2023/02/15 5:31 a.m.2 views

SUSE CVE-2014-1446

The yamioctl function in drivers/net/hamradio/yam.c in the Linux kernel before 3.12.8 does not initialize a certain structure member, which allows local users to obtain sensitive information from kernel memory by leveraging the CAPNETADMIN capability for an SIOCYAMGCFG ioctl call...

1.9CVSS5.8AI score0.00649EPSS
Exploits1References16
SUSE CVE
SUSE CVE
added 2023/02/15 5:30 a.m.3 views

SUSE CVE-2014-1690

The help function in net/netfilter/nfnatirc.c in the Linux kernel before 3.12.8 allows remote attackers to obtain sensitive information from kernel memory by establishing an IRC DCC session in which incorrect packet data is transmitted during use of the NAT mangle feature...

2.6CVSS6.4AI score0.03849EPSS
Exploits1References5
SUSE CVE
SUSE CVE
added 2023/02/15 5:30 a.m.2 views

SUSE CVE-2014-1739

The mediadeviceenumentities function in drivers/media/media-device.c in the Linux kernel before 3.14.6 does not initialize a certain data structure, which allows local users to obtain sensitive information from kernel memory by leveraging /dev/media0 read access for a MEDIAIOCENUMENTITIES ioctl...

2.1CVSS5.8AI score0.01121EPSS
Exploits2References7
SUSE CVE
SUSE CVE
added 2023/02/15 5:30 a.m.3 views

SUSE CVE-2014-2038

The nfscanextendwrite function in fs/nfs/write.c in the Linux kernel before 3.13.3 relies on a write delegation to extend a write operation without a certain up-to-date verification, which allows local users to obtain sensitive information from kernel memory in opportunistic circumstances by...

2.1CVSS5AI score0.00414EPSS
Exploits0References3
Rows per page
Query Builder