Lucene search
K

5 matches found

Veracode
Veracode
added 2019/01/15 9:3 a.m.30 views

Privilege Escalation

kernel-rt is vulnerable to privilege escalation attacks. The vulnerability exists as arch/x86/kernel/entry64.S in the Linux kernel before 3.17.5 does not properly handle faults associated with the Stack Segment SS segment register, which allows local users to gain privileges by triggering an IRET...

7.8CVSS7.4AI score0.01504EPSS
Exploits8References25Affected Software1
Cvelist
Cvelist
added 2014/12/17 11:0 a.m.27 views

CVE-2014-9322

arch/x86/kernel/entry64.S in the Linux kernel before 3.17.5 does not properly handle faults associated with the Stack Segment SS segment register, which allows local users to gain privileges by triggering an IRET instruction that leads to access to a GS Base address from the wrong space...

7.5AI score0.01504EPSS
Exploits8References22
OpenVAS
OpenVAS
added 2014/12/08 12:0 a.m.63 views

Debian Security Advisory DSA 3093-1 (linux - security update)

Several vulnerabilities have been discovered in the Linux kernel that may lead to a denial of service or privilege escalation: CVE-2014-7841 Liu Wei of Red Hat discovered that a SCTP server doing ASCONF will panic on malformed INIT chunks by triggering a NULL pointer dereference. CVE-2014-8369 A...

6.1CVSS0.4AI score0.0523EPSS
Exploits2References1
CVE
CVE
added 2014/11/30 1:0 a.m.123 views

CVE-2014-9090

CVE-2014-9090 affects the Linux kernel up to 3.17.4, where do_double_fault in arch/x86/kernel/traps.c mishandles SS fault conditions, allowing local users to cause a denial of service (panic) via modify_ldt (demonstrated by sigreturn_32 in linux-clock-tests). The issue was addressed by a patch li...

4.9CVSS5.9AI score0.00376EPSS
Exploits0References8Affected Software1
UbuntuCve
UbuntuCve
added 2014/11/29 12:0 a.m.53 views

CVE-2014-9090

The dodoublefault function in arch/x86/kernel/traps.c in the Linux kernel through 3.17.4 does not properly handle faults associated with the Stack Segment SS segment register, which allows local users to cause a denial of service panic via a modifyldt system call, as demonstrated by sigreturn32 i...

4.9CVSS6.8AI score0.00376EPSS
Exploits0References12
Rows per page
Query Builder