Lucene search
K

109 matches found

Prion
Prion
added 2018/03/08 7:29 a.m.36 views

Code injection

An issue was discovered in the fdlockedioctl function in drivers/block/floppy.c in the Linux kernel through 4.15.7. The floppy driver will copy a kernel pointer to user memory in response to the FDGETPRM ioctl. An attacker can send the FDGETPRM ioctl and use the obtained kernel pointer to discove...

2.1CVSS6.1AI score0.00694EPSS
Exploits1References13Affected Software2
NVD
NVD
added 2017/11/16 10:29 p.m.21 views

CVE-2017-11029

In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, camera application triggers "user-memory-access" issue as the Camera CPP module Linux driver directly accesses the application provided buffer, which resides in user space. An unchecked...

7.8CVSS7.2AI score0.00137EPSS
Exploits0References1
OSV
OSV
added 2017/04/02 8:59 p.m.5 views

CVE-2016-8764

The TrustZone driver in Huawei P9 phones with software Versions earlier than EVA-AL10C00B352 and P9 Lite with software VNS-L21C185B130 and earlier versions and P8 Lite with software ALE-L02C636B150 and earlier versions has an input validation vulnerability, which allows attackers to read and writ...

6.4CVSS5.8AI score0.00213EPSS
Exploits0References2
OSV
OSV
added 2016/12/29 10:59 p.m.9 views

CVE-2015-8743

QEMU aka Quick Emulator built with the NE2000 device emulation support is vulnerable to an OOB r/w access issue. It could occur while performing 'ioport' r/w operations. A privileged CAPSYSRAWIO user/process could use this flaw to leak or corrupt QEMU memory bytes...

7.1CVSS7.5AI score
Exploits0References13
OpenVAS
OpenVAS
added 2013/11/13 12:0 a.m.25 views

Microsoft Windows Ancillary Function Driver Information Disclosure Vulnerability (2875783)

This host is missing an important security update according to Microsoft Bulletin MS13-093 SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

4.9CVSS5AI score0.0272EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2013/04/23 6:47 p.m.77 views

Important: Red Hat Security Advisory: rhev-hypervisor6 security and bug fix update

An updated rhev-hypervisor6 package that fixes several security issues and various bugs is now available. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...

10CVSS7.4AI score0.61604EPSS
Exploits19References11
RedHat Linux
RedHat Linux
added 2011/03/10 8:1 p.m.6 views

kernel: IB/uverbs: Handle large number of entries in poll CQ

The ibuverbspollcq function in drivers/infiniband/core/uverbscmd.c in the Linux kernel before 2.6.37 does not initialize a certain response buffer, which allows local users to obtain potentially sensitive information from kernel memory via vectors that cause this buffer to be only partially fille...

6.9CVSS7.2AI score0.00386EPSS
Exploits2References4
Cvelist
Cvelist
added 2006/01/05 11:0 a.m.28 views

CVE-2005-4618

Buffer overflow in sysctl in the Linux Kernel 2.6 before 2.6.15 allows local users to corrupt user memory and possibly cause a denial of service via a long string, which causes sysctl to write a zero byte outside the buffer. NOTE: since the sysctl is called from a userland program that provides t...

5.4AI score0.00452EPSS
Exploits0References13
UbuntuCve
UbuntuCve
added 2005/12/31 5:0 a.m.30 views

CVE-2005-4618

Buffer overflow in sysctl in the Linux Kernel 2.6 before 2.6.15 allows local users to corrupt user memory and possibly cause a denial of service via a long string, which causes sysctl to write a zero byte outside the buffer. NOTE: since the sysctl is called from a userland program that provides t...

3.6CVSS5.9AI score0.00452EPSS
Exploits0References2
Rows per page
Query Builder