Lucene search
+L

250 matches found

osv
osv
added 2023/03/02 12:0 a.m.6 views

UBUNTU-CVE-2023-1078

A flaw was found in the Linux Kernel in RDS Reliable Datagram Sockets protocol. The rdsrmzerocopycallback uses listentry on the head of a list causing a type confusion. Local user can trigger this with rdsmessageput. Type confusion leads to struct rdsmsgzcopyinfo info actually points to something...

7.8CVSS6.6AI score0.00251EPSS
Exploits0References18
susecve
susecve
added 2023/02/15 5:56 a.m.3 views

SUSE CVE-2010-3904

The rdspagecopyuser function in net/rds/page.c in the Reliable Datagram Sockets RDS protocol implementation in the Linux kernel before 2.6.36 does not properly validate addresses obtained from user space, which allows local users to gain privileges via crafted use of the sendmsg and recvmsg syste...

7.8CVSS6.8AI score0.11217EPSS
Exploits16References8
debiancve
debiancve
added 2021/12/24 10:55 p.m.37 views

CVE-2021-45480

An issue was discovered in the Linux kernel before 5.15.11. There is a memory leak in the rdsconncreate function in net/rds/connection.c in a certain combination of circumstances...

5.5CVSS6.5AI score0.00353EPSS
Exploits0
veracode
veracode
added 2020/04/10 12:52 a.m.31 views

Privilege Escalation

kernel is vulnerable to privilege escalation. An integer overflow flaw was found in the Linux kernel's Reliable Datagram Sockets RDS protocol implementation. A local, unprivileged user could use this flaw to cause a denial of service or escalate their privileges...

7.2CVSS4.5AI score0.00555EPSS
Exploits1References28Affected Software1
veracode
veracode
added 2020/04/10 12:50 a.m.30 views

Privilege Escalation

kernel is vulnerable to privilege escalation. A function in the Linux kernel's Reliable Datagram Sockets RDS protocol implementation was missing sanity checks, which could allow a local, unprivileged user to escalate their privileges...

7.8CVSS4.6AI score0.11217EPSS
Exploits16References23Affected Software1
ubuntu
ubuntu
added 2019/07/23 4:47 a.m.283 views

USN-4068-2: Linux kernel (HWE) vulnerabilities

USN-4068-1 fixed vulnerabilities in the Linux kernel for Ubuntu 18.04 LTS. This update provides the corresponding updates for the Linux Hardware Enablement HWE kernel from Ubuntu 18.04 for Ubuntu 16.04 LTS. Adam Zabrocki discovered that the Intel i915 kernel mode graphics driver in the Linux kern...

9.3CVSS6.9AI score0.04458EPSS
Exploits1
osv
osv
added 2019/07/23 3:20 a.m.7 views

USN-4068-1 linux, linux-aws, linux-gcp, linux-kvm, linux-oracle, linux-raspi2, linux-snapdragon vulnerabilities

Adam Zabrocki discovered that the Intel i915 kernel mode graphics driver in the Linux kernel did not properly restrict mmap ranges in some situations. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2019-11085 It was discovered tha...

9.3CVSS6.9AI score0.04458EPSS
Exploits1References5
nessus
nessus
added 2019/07/23 12:0 a.m.48 views

Ubuntu 18.04 LTS : Linux kernel vulnerabilities (USN-4068-1)

The remote Ubuntu 18.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4068-1 advisory. Adam Zabrocki discovered that the Intel i915 kernel mode graphics driver in the Linux kernel did not properly restrict mmap ranges in some situations. A...

9.3CVSS7.1AI score0.04458EPSS
Exploits1References5
nessus
nessus
added 2019/07/23 12:0 a.m.43 views

Ubuntu 16.04 LTS : Linux kernel (HWE) vulnerabilities (USN-4068-2)

The remote Ubuntu 16.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4068-2 advisory. USN-4068-1 fixed vulnerabilities in the Linux kernel for Ubuntu 18.04 LTS. This update provides the corresponding updates for the Linux Hardware Enableme...

9.3CVSS7.1AI score0.04458EPSS
Exploits1References5
ubuntu
ubuntu
added 2019/06/07 4:21 a.m.437 views

USN-4008-3: Linux kernel (Xenial HWE) vulnerabilities

USN-4008-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.04 LTS. This update provides the corresponding updates for the Linux Hardware Enablement HWE kernel from Ubuntu 16.04 LTS for Ubuntu 14.04 ESM. Robert Święcki discovered that the Linux kernel did not properly apply Address Space...

9.3CVSS6.9AI score0.05789EPSS
Exploits3
nessus
nessus
added 2019/06/07 12:0 a.m.69 views

Ubuntu 14.04 LTS : linux-lts-xenial, linux-aws vulnerabilities (USN-4008-3)

USN-4008-1 fixed vulnerabilities in the Linux kernel for Ubuntu 16.04 LTS. This update provides the corresponding updates for the Linux Hardware Enablement HWE kernel from Ubuntu 16.04 LTS for Ubuntu 14.04 ESM. Robert Swiecki discovered that the Linux kernel did not properly apply Address Space...

9.3CVSS6.9AI score0.05789EPSS
Exploits3References5
openvas
openvas
added 2019/06/06 12:0 a.m.54 views

Ubuntu: Security Advisory (USN-4008-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS7AI score0.05789EPSS
Exploits3References2
nessus
nessus
added 2019/06/05 12:0 a.m.278 views

Ubuntu 19.04 : linux, linux-aws, linux-gcp, linux-kvm, linux-raspi2, linux-snapdragon (USN-4005-1)

It was discovered that a NULL pointer dereference vulnerability existed in the LSI Logic MegaRAID driver in the Linux kernel. A local attacker could use this to cause a denial of service system crash. CVE-2019-11810 It was discovered that a race condition leading to a use-after-free existed in th...

9.3CVSS6.8AI score0.05789EPSS
Exploits1References3
ubuntu
ubuntu
added 2019/06/04 10:52 p.m.410 views

USN-4008-1: Linux kernel vulnerabilities

Robert Święcki discovered that the Linux kernel did not properly apply Address Space Layout Randomization ASLR in some situations for setuid elf binaries. A local attacker could use this to improve the chances of exploiting an existing vulnerability in a setuid elf binary. CVE-2019-11190 It was...

9.3CVSS6.9AI score0.05789EPSS
Exploits3
ubuntu
ubuntu
added 2019/06/04 10:47 p.m.193 views

USN-4005-1: Linux kernel vulnerabilities

It was discovered that a null pointer dereference vulnerability existed in the LSI Logic MegaRAID driver in the Linux kernel. A local attacker could use this to cause a denial of service system crash. CVE-2019-11810 It was discovered that a race condition leading to a use-after-free existed in th...

9.3CVSS6.9AI score0.05789EPSS
Exploits1
ubuntu
ubuntu
added 2018/06/12 12:18 a.m.90 views

USN-3677-2: Linux kernel (HWE) vulnerabilities

USN-3677-1 fixed vulnerabilities in the Linux kernel for Ubuntu 17.10. This update provides the corresponding updates for the Linux Hardware Enablement HWE kernel from Ubuntu 17.10 for Ubuntu 16.04 LTS. It was discovered that the netfilter subsystem of the Linux kernel did not properly validate...

7.8CVSS6.9AI score0.01999EPSS
Exploits1
openvas
openvas
added 2018/06/12 12:0 a.m.40 views

Ubuntu: Security Advisory (USN-3674-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.2AI score0.01489EPSS
Exploits1References2
ubuntu
ubuntu
added 2018/06/11 10:47 p.m.81 views

USN-3677-1: Linux kernel vulnerabilities

It was discovered that the netfilter subsystem of the Linux kernel did not properly validate ebtables offsets. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2018-1068 Wen Xu discovered that the ext4 filesystem implementation in t...

7.8CVSS6.8AI score0.01999EPSS
Exploits1
ubuntu
ubuntu
added 2018/06/11 7:20 p.m.120 views

USN-3674-2: Linux kernel (Trusty HWE) vulnerabilities

USN-3674-1 fixed vulnerabilities in the Linux kernel for Ubuntu 14.04 LTS. This update provides the corresponding updates for the Linux Hardware Enablement HWE kernel from Ubuntu 14.04 LTS for Ubuntu 12.04 ESM. It was discovered that the netfilter subsystem of the Linux kernel did not properly...

7.8CVSS6.8AI score0.01489EPSS
Exploits1
ubuntu
ubuntu
added 2018/06/11 6:35 p.m.84 views

USN-3674-1: Linux kernel vulnerabilities

It was discovered that the netfilter subsystem of the Linux kernel did not properly validate ebtables offsets. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2018-1068 It was discovered that a NULL pointer dereference existed in t...

7.8CVSS6.8AI score0.01489EPSS
Exploits1
Rows per page
Query Builder