Lucene search
K

49 matches found

UbuntuCve
UbuntuCve
added 2020/05/04 12:15 p.m.50 views

CVE-2020-12114

A pivotroot race condition in fs/namespace.c in the Linux kernel 4.4.x before 4.4.221, 4.9.x before 4.9.221, 4.14.x before 4.14.178, 4.19.x before 4.19.119, and 5.x before 5.3 allows local users to cause a denial of service panic by corrupting a mountpoint reference counter...

4.7CVSS6.7AI score0.00423EPSS
Exploits0References9
CVE
CVE
added 2020/05/04 11:42 a.m.307 views

CVE-2020-12114

CVE-2020-12114 describes a local, pivot_root race condition in the Linux kernel’s fs/namespace.c that can allow a local user to trigger a denial of service (panic) by corrupting a mountpoint reference counter. The initial description lists affected kernel branches and versions where the issue exi...

4.7CVSS5.5AI score0.00423EPSS
Exploits0References16Affected Software1
Debian CVE
Debian CVE
added 2020/05/04 11:42 a.m.35 views

CVE-2020-12114

A pivotroot race condition in fs/namespace.c in the Linux kernel 4.4.x before 4.4.221, 4.9.x before 4.9.221, 4.14.x before 4.14.178, 4.19.x before 4.19.119, and 5.x before 5.3 allows local users to cause a denial of service panic by corrupting a mountpoint reference counter...

4.7CVSS6.3AI score0.00423EPSS
Exploits0
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.253 views

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2019-1483)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7AI score0.05489EPSS
Exploits17References2
Veracode
Veracode
added 2019/01/15 9:19 a.m.33 views

Denial Of Service (DoS)

kernel-rt is vulnerable to denial of service DoS attacks. The vulnerability exists as the pivotroot implementation in fs/namespace.c in the Linux kernel through 3.17 does not properly interact with certain locations of a chroot directory, which allows local users to cause a denial of service...

5.5CVSS5.5AI score0.00673EPSS
Exploits1References52Affected Software1
Oracle linux
Oracle linux
added 2018/12/09 12:0 a.m.70 views

Unbreakable Enterprise kernel security update

2.6.39-400.304.1 - mnt: Prevent pivotroot from creating a loop in the mount tree Eric W. Biederman Orabug: 26575709 CVE-2014-7970 CVE-2014-7970 - vfs: more mntparent cleanups Al Viro Orabug: 26575709 CVE-2014-7970 - vfs: new internal helper: mnthasparentmnt Al Viro Orabug: 26575709 CVE-2014-7970 ...

7.8CVSS0.01912EPSS
Exploits2
OpenVAS
OpenVAS
added 2015/02/27 12:0 a.m.45 views

Ubuntu: Security Advisory (USN-2514-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.9CVSS7AI score0.05489EPSS
Exploits4References2
OpenVAS
OpenVAS
added 2015/02/27 12:0 a.m.54 views

Ubuntu: Security Advisory (USN-2513-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.9CVSS7AI score0.05489EPSS
Exploits4References2
Tenable Nessus
Tenable Nessus
added 2015/02/27 12:0 a.m.33 views

Ubuntu 12.04 LTS : linux vulnerabilities (USN-2513-1)

A flaw was discovered in the Kernel Virtual Machine's KVM emulation of the SYSTENTER instruction when the guest OS does not initialize the SYSENTER MSRs. A guest OS user could exploit this flaw to cause a denial of service of the guest OS crash or potentially gain privileges on the guest OS...

6.9CVSS6.8AI score0.05489EPSS
Exploits4References9
Ubuntu
Ubuntu
added 2015/02/26 11:13 a.m.82 views

USN-2514-1: Linux kernel (OMAP4) vulnerabilities

A flaw was discovered in the Kernel Virtual Machine's KVM emulation of the SYSTENTER instruction when the guest OS does not initialize the SYSENTER MSRs. A guest OS user could exploit this flaw to cause a denial of service of the guest OS crash or potentially gain privileges on the guest OS...

6.9CVSS6.8AI score0.05489EPSS
Exploits4
Ubuntu
Ubuntu
added 2015/02/26 11:9 a.m.80 views

USN-2513-1: Linux kernel vulnerabilities

A flaw was discovered in the Kernel Virtual Machine's KVM emulation of the SYSTENTER instruction when the guest OS does not initialize the SYSENTER MSRs. A guest OS user could exploit this flaw to cause a denial of service of the guest OS crash or potentially gain privileges on the guest OS...

6.9CVSS6.8AI score0.05489EPSS
Exploits4
Tenable Nessus
Tenable Nessus
added 2014/12/22 12:0 a.m.36 views

Ubuntu 14.04 LTS : Linux kernel (Utopic HWE) regression (USN-2447-2)

The remote Ubuntu 14.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-2447-2 advisory. USN-2447-1 fixed vulnerabilities in the Linux kernel. Due to an unrelated regression TCP Throughput drops to zero for several drivers after upgrading. This update...

5.6AI score
Exploits0References1
Ubuntu
Ubuntu
added 2014/12/19 12:43 p.m.80 views

USN-2448-2: Linux kernel regression

USN-2448-1 fixed vulnerabilities in the Linux kernel. Due to an unrelated regression TCP Throughput drops to zero for several drivers after upgrading. This update fixes the problem. We apologize for the inconvenience. Original advisory details: An information leak in the Linux kernel was discover...

6.8AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2014/12/15 12:0 a.m.49 views

Ubuntu 14.04 LTS : Linux kernel (Utopic HWE) vulnerabilities (USN-2447-1)

The remote Ubuntu 14.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-2447-1 advisory. Andy Lutomirski discovered that the Linux kernel does not properly handle faults associated with the Stack Segment SS register in the x86 architecture. A...

7.8CVSS6.8AI score0.08579EPSS
Exploits17References12
Tenable Nessus
Tenable Nessus
added 2014/12/05 12:0 a.m.55 views

Amazon Linux AMI : kernel (ALAS-2014-455)

The sctpprocessparam function in net/sctp/smmakechunk.c in the SCTP implementation in the Linux kernel before 3.17.4, when ASCONF is used, allows remote attackers to cause a denial of service NULL pointer dereference and system crash via a malformed INIT chunk. CVE-2014-7841 The pivotroot...

7.8CVSS6.5AI score0.0523EPSS
Exploits10References5
Amazon
Amazon
added 2014/12/03 12:0 a.m.51 views

Medium: kernel

Issue Overview: The sctpprocessparam function in net/sctp/smmakechunk.c in the SCTP implementation in the Linux kernel before 3.17.4, when ASCONF is used, allows remote attackers to cause a denial of service NULL pointer dereference and system crash via a malformed INIT chunk. CVE-2014-7841 The...

7.8CVSS6.4AI score0.0523EPSS
Exploits10
Tenable Nessus
Tenable Nessus
added 2014/11/28 12:0 a.m.52 views

Mandriva Linux Security Advisory : kernel (MDVSA-2014:230)

Multiple vulnerabilities has been found and corrected in the Linux kernel : The WRMSR processing functionality in the KVM subsystem in the Linux kernel through 3.17.2 does not properly handle the writing of a non-canonical address to a model-specific register, which allows guest OS users to cause...

7.8CVSS6.7AI score0.08579EPSS
Exploits7References12
Ubuntu
Ubuntu
added 2014/11/25 3:20 a.m.104 views

USN-2419-1: Linux kernel (Trusty HWE) vulnerabilities

A flaw was discovered in how the Linux kernel's KVM Kernel Virtual Machine subsystem handles the CR4 control register at VM entry on Intel processors. A local host OS user can exploit this to cause a denial of service kill arbitrary processes, or system disruption by leveraging /dev/kvm access...

7.5CVSS6.9AI score0.05421EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2014/11/25 12:0 a.m.277 views

Ubuntu 12.04 LTS : linux-lts-trusty vulnerabilities (USN-2419-1)

A flaw was discovered in how the Linux kernel's KVM Kernel Virtual Machine subsystem handles the CR4 control register at VM entry on Intel processors. A local host OS user can exploit this to cause a denial of service kill arbitrary processes, or system disruption by leveraging /dev/kvm access...

7.5CVSS6.9AI score0.05421EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2014/11/25 12:0 a.m.57 views

Ubuntu 14.04 LTS : Linux kernel vulnerabilities (USN-2420-1)

The remote Ubuntu 14.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-2420-1 advisory. A flaw was discovered in how the Linux kernel's KVM Kernel Virtual Machine subsystem handles the CR4 control register at VM entry on Intel processors. A...

7.5CVSS7.1AI score0.05421EPSS
Exploits1References5
Rows per page
Query Builder