Lucene search
K

88 matches found

Tenable Nessus
Tenable Nessus
added 2018/08/31 12:0 a.m.70 views

Virtuozzo 7 : OVMF / crit / criu / criu-devel / ksm-vz / etc (VZA-2018-063)

According to the versions of the OVMF / crit / criu / criu-devel / ksm-vz / etc packages installed, the Virtuozzo installation on the remote host is affected by the following vulnerabilities : - A flaw was found in the Linux kernel's skcipher component, which affects the skcipherrecvmsg function...

7.8CVSS7.2AI score0.7354EPSS
Exploits0References11
OSV
OSV
added 2018/08/30 12:29 p.m.2 views

DEBIAN-CVE-2018-14619

A flaw was found in the crypto subsystem of the Linux kernel before version kernel-4.15-rc4. The "null skcipher" was being dropped when each afalgctx was freed instead of when the aeadtfm was freed. This can cause the null skcipher to be freed while it is still in use leading to a local user bein...

7.8CVSS7.5AI score0.0043EPSS
Exploits0References1
OSV
OSV
added 2018/08/30 12:29 p.m.7 views

CVE-2018-14619

A flaw was found in the crypto subsystem of the Linux kernel before version kernel-4.15-rc4. The "null skcipher" was being dropped when each afalgctx was freed instead of when the aeadtfm was freed. This can cause the null skcipher to be freed while it is still in use leading to a local user bein...

7.8CVSS8.1AI score0.0043EPSS
Exploits0References5
NVD
NVD
added 2018/08/30 12:29 p.m.22 views

CVE-2018-14619

A flaw was found in the crypto subsystem of the Linux kernel before version kernel-4.15-rc4. The "null skcipher" was being dropped when each afalgctx was freed instead of when the aeadtfm was freed. This can cause the null skcipher to be freed while it is still in use leading to a local user bein...

7.8CVSS6.7AI score0.0043EPSS
Exploits0References5
OSV
OSV
added 2018/08/30 12:29 p.m.3 views

UBUNTU-CVE-2018-14619

A flaw was found in the crypto subsystem of the Linux kernel before version kernel-4.15-rc4. The "null skcipher" was being dropped when each afalgctx was freed instead of when the aeadtfm was freed. This can cause the null skcipher to be freed while it is still in use leading to a local user bein...

7.8CVSS6.8AI score0.0043EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2018/08/14 8:23 p.m.11 views

kernel: crypto: privilege escalation in skcipher_recvmsg function

A flaw was found in the Linux kernel's skcipher component, which affects the skcipherrecvmsg function. Attackers using a specific input can lead to a privilege escalation...

7.8CVSS7.1AI score0.00308EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2018/05/30 12:0 a.m.277 views

Amazon Linux AMI : kernel (ALAS-2018-1023)

A weakness was found in the Linux kernel's implementation of random seed data. Programs, early in the boot sequence, could use the data allocated for the seed before it was sufficiently generated. CVE-2018-1108 A flaw was found in the way the Linux kernel handled exceptions delivered after a stac...

8CVSS6.6AI score0.18262EPSS
Exploits14References12
Amazon
Amazon
added 2018/05/25 12:0 a.m.590 views

Important: kernel

Issue Overview: A weakness was found in the Linux kernel's implementation of random seed data. Programs, early in the boot sequence, could use the data allocated for the seed before it was sufficiently generated. CVE-2018-1108 A flaw was found in the way the Linux kernel handled exceptions...

8CVSS7.2AI score0.18262EPSS
Exploits14
BDU FSTEC
BDU FSTEC
added 2018/04/12 12:0 a.m.7 views

The vulnerability of the Skcipher component in the Android operating system’s kernel allows a hacker to increase their privileges.

The vulnerability of the Skcipher component crypto/algifskcipher.c in the Android operating system is related to deficiencies in access control. Exploiting this vulnerability can allow attackers to enhance their privileges...

7.8CVSS7.2AI score0.00308EPSS
Exploits0References4
OSV
OSV
added 2018/01/12 11:29 p.m.0 views

DEBIAN-CVE-2017-13215

A elevation of privilege vulnerability in the Upstream kernel skcipher. Product: Android. Versions: Android kernel. Android ID: A-64386293. References: Upstream kernel...

7.8CVSS7.7AI score0.00308EPSS
Exploits0References1
NVD
NVD
added 2018/01/12 11:29 p.m.19 views

CVE-2017-13215

A elevation of privilege vulnerability in the Upstream kernel skcipher. Product: Android. Versions: Android kernel. Android ID: A-64386293. References: Upstream kernel...

7.8CVSS7.2AI score0.00308EPSS
Exploits0References7
OSV
OSV
added 2018/01/12 11:29 p.m.4 views

CVE-2017-13215

A elevation of privilege vulnerability in the Upstream kernel skcipher. Product: Android. Versions: Android kernel. Android ID: A-64386293. References: Upstream kernel...

7.8CVSS7.6AI score
Exploits0References8
OSV
OSV
added 2018/01/12 11:29 p.m.3 views

UBUNTU-CVE-2017-13215

A elevation of privilege vulnerability in the Upstream kernel skcipher. Product: Android. Versions: Android kernel. Android ID: A-64386293. References: Upstream kernel...

7.8CVSS7.1AI score0.00308EPSS
Exploits0References5
Cvelist
Cvelist
added 2018/01/12 11:0 p.m.25 views

CVE-2017-13215

A elevation of privilege vulnerability in the Upstream kernel skcipher. Product: Android. Versions: Android kernel. Android ID: A-64386293. References: Upstream kernel...

7.3AI score0.00308EPSS
Exploits0References7
CVE
CVE
added 2018/01/12 11:0 p.m.246 views

CVE-2017-13215

CVE-2017-13215 describes an elevation-of-privilege in the Upstream Linux kernel skcipher_recvmsg path. The vulnerability, tied to the skcipherRecvMsg function, enables local privilege escalation when exploited via the Android kernel (Android kernel reference). Exploitation status is not detailed ...

7.8CVSS7.2AI score0.00308EPSS
Exploits0References7Affected Software1
Debian CVE
Debian CVE
added 2018/01/12 11:0 p.m.34 views

CVE-2017-13215

A elevation of privilege vulnerability in the Upstream kernel skcipher. Product: Android. Versions: Android kernel. Android ID: A-64386293. References: Upstream kernel...

7.8CVSS7.5AI score0.00308EPSS
Exploits0
CNVD
CNVD
added 2018/01/08 12:0 a.m.4 views

Google Android Skcipher Component Elevation of Privilege Vulnerability

Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA, of which Skcipher is a component of the kernel. An elevation of privilege vulnerability exists in the Skcipher component of Android. A remote attacker can exploit this vulnerabili...

7.8CVSS7.7AI score0.00308EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2017/12/21 12:0 a.m.7 views

PT-2018-12618 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 4.15-rc4 Description: A flaw was found in the crypto subsystem of the Linux kernel. The issue involves the "null skcipher" being dropped when each af alg ctx is freed instead of when the aead tfm is freed. This...

7.8CVSS6.4AI score0.04456EPSS
Exploits8References28
OSV
OSV
added 2017/12/20 11:29 p.m.2 views

DEBIAN-CVE-2017-17805

The Salsa20 encryption algorithm in the Linux kernel before 4.14.8 does not correctly handle zero-length inputs, allowing a local attacker able to use the AFALG-based skcipher interface CONFIGCRYPTOUSERAPISKCIPHER to cause a denial of service uninitialized-memory free and kernel crash or have...

7.8CVSS7.4AI score0.00428EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2017/12/20 11:0 p.m.52 views

CVE-2017-17805

The Salsa20 encryption algorithm in the Linux kernel before 4.14.8 does not correctly handle zero-length inputs, allowing a local attacker able to use the AFALG-based skcipher interface CONFIGCRYPTOUSERAPISKCIPHER to cause a denial of service uninitialized-memory free and kernel crash or have...

7.8CVSS6.6AI score0.00428EPSS
Exploits0
Rows per page
Query Builder