Linux Distros Unpatched Vulnerability : CVE-2022-1729

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A race condition was found the Linux kernel in perfeventopen which can be exploited by an unprivileged user to gain root privileges. The bug allows to build...

Linux Distros Unpatched Vulnerability : CVE-2017-6001

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Race condition in kernel/events/core.c in the Linux kernel before 4.9.7 allows local users to gain privileges via a crafted application that makes concurrent...

The vulnerability of the __do_sys_perf_event_open() function in the kernel/events/core.c module of the Linux operating system allows a attacker to compromise the integrity of protected information.

The vulnerability of the dosysperfeventopen function in the kernel/events/core.c module of the Linux operating system is related to improper locking of resources. Exploiting this vulnerability could allow an attacker to compromise the integrity of protected information...

SUSE CVE-2013-2094

The perfsweventinit function in kernel/events/core.c in the Linux kernel before 3.8.9 uses an incorrect integer data type, which allows local users to gain privileges via a crafted perfeventopen system call...

kernel: perf_event_open() and execve() race in setuid programs allows a data leak

A race condition in perfeventopen allows local attackers to leak sensitive data from setuid programs. As no relevant locks in particular the credguardmutex are held during the ptracemayaccess call, it is possible for the specified target task to perform an execve syscall with setuid execution...