Lucene search
K

41 matches found

Tenable Nessus
Tenable Nessus
added 2016/08/11 12:0 a.m.56 views

Ubuntu 14.04 LTS : Linux kernel (Vivid HWE) vulnerabilities (USN-3053-1)

The remote Ubuntu 14.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-3053-1 advisory. A missing permission check when settings ACLs was discovered in nfsd. A local user could exploit this flaw to gain access to any file by setting an ACL...

7.8CVSS7.2AI score0.00582EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2016/07/15 12:0 a.m.32 views

Ubuntu 14.04 LTS : Linux kernel (Vivid HWE) vulnerability (USN-3037-1)

The remote Ubuntu 14.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-3037-1 advisory. Jan Stancek discovered that the Linux kernel's memory manager did not properly handle moving pages mapped by the asynchronous I/O AIO ring buffer to the other...

7.8CVSS7.7AI score0.00419EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2016/07/14 10:27 p.m.45 views

USN-3037-1: Linux kernel (Vivid HWE) vulnerability

Jan Stancek discovered that the Linux kernel's memory manager did not properly handle moving pages mapped by the asynchronous I/O AIO ring buffer to the other nodes. A local attacker could use this to cause a denial of service system crash...

7.8CVSS7.3AI score0.00419EPSS
Exploits0
Ubuntu
Ubuntu
added 2016/06/27 9:30 p.m.84 views

USN-3020-1: Linux kernel (Vivid HWE) vulnerabilities

Jesse Hertz and Tim Newsham discovered that the Linux netfilter implementation did not correctly perform validation when handling 32 bit compatibility IPTSOSETREPLACE events on 64 bit platforms. A local unprivileged attacker could use this to cause a denial of service system crash or execute...

7.8CVSS7.1AI score0.05676EPSS
Exploits15
Ubuntu
Ubuntu
added 2016/06/10 5:40 a.m.78 views

USN-3001-1: Linux kernel (Vivid HWE) vulnerabilities

Justin Yackoski discovered that the Atheros L2 Ethernet Driver in the Linux kernel incorrectly enables scatter/gather I/O. A remote attacker could use this to obtain potentially sensitive information from kernel memory. CVE-2016-2117 Jann Horn discovered that eCryptfs improperly attempted to use...

10CVSS6.8AI score0.2593EPSS
Exploits19
Cloud Foundry
Cloud Foundry
added 2016/05/19 12:0 a.m.57 views

USN-2977-1 Linux kernel (Vivid HWE) vulnerabilities | Cloud Foundry

USN-2977-1 Linux kernel Vivid HWE vulnerabilities High Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 14.04 LTS Description Philip Pettersson discovered that the Linux kernel’s ASN.1 DER decoder did not properly process certificate files with tags of indefinite length. A local...

7.8CVSS8.1AI score0.00397EPSS
Exploits0
Ubuntu
Ubuntu
added 2016/05/16 5:25 p.m.77 views

USN-2977-1: Linux kernel (Vivid HWE) vulnerability

Philip Pettersson discovered that the Linux kernel's ASN.1 DER decoder did not properly process certificate files with tags of indefinite length. A local unprivileged attacker could use this to cause a denial of service system crash or possibly execute arbitrary code with administrative privilege...

7.8CVSS7.3AI score0.00397EPSS
Exploits0
Ubuntu
Ubuntu
added 2016/05/09 10:4 p.m.90 views

USN-2970-1: Linux kernel (Vivid HWE) vulnerabilities

Ralf Spenneberg discovered that the Aiptek Tablet USB device driver in the Linux kernel did not properly validate the endpoints reported by the device. An attacker with physical access could cause a denial of service system crash. CVE-2015-7515 Ben Hawkes discovered that the Linux kernel's AIO...

7.8CVSS6.6AI score0.01946EPSS
Exploits19
Cloud Foundry
Cloud Foundry
added 2016/05/06 12:0 a.m.64 views

USN-2949-1 Linux kernel (Vivid HWE) vulnerabilities | Cloud Foundry

USN-2949-1 Linux kernel Vivid HWE vulnerabilities Low/Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 14.04 LTS Description Venkatesh Pottem discovered a use-after-free vulnerability in the Linux kernel’s CXGB3 driver. A local attacker could use this to cause a denial of service...

10CVSS8.2AI score0.14281EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2016/04/07 12:0 a.m.63 views

Ubuntu 14.04 LTS : Linux kernel (Vivid HWE) vulnerabilities (USN-2949-1)

The remote Ubuntu 14.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-2949-1 advisory. Venkatesh Pottem discovered a use-after-free vulnerability in the Linux kernel's CXGB3 driver. A local attacker could use this to cause a denial of servi...

10CVSS7.2AI score0.14281EPSS
Exploits0References5
Ubuntu
Ubuntu
added 2016/04/06 7:53 a.m.71 views

USN-2949-1: Linux kernel (Vivid HWE) vulnerabilities

Venkatesh Pottem discovered a use-after-free vulnerability in the Linux kernel's CXGB3 driver. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2015-8812 Xiaofei Rex Guo discovered a timing side channel vulnerability in the Linux...

10CVSS7.4AI score0.14281EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2016/03/15 12:0 a.m.55 views

Ubuntu 14.04 LTS : Linux kernel (Vivid HWE) vulnerabilities (USN-2932-1)

The remote Ubuntu 14.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-2932-1 advisory. Ben Hawkes discovered that the Linux netfilter implementation did not correctly perform validation when handling IPTSOSETREPLACE events. A local...

8.4CVSS7.3AI score0.03723EPSS
Exploits22References17
Ubuntu
Ubuntu
added 2016/03/14 5:20 p.m.85 views

USN-2932-1: Linux kernel (Vivid HWE) vulnerabilities

Ben Hawkes discovered that the Linux netfilter implementation did not correctly perform validation when handling IPTSOSETREPLACE events. A local unprivileged attacker could use this to cause a denial of service system crash or possibly execute arbitrary code with administrative privileges...

8.4CVSS7.2AI score0.03723EPSS
Exploits22
Tenable Nessus
Tenable Nessus
added 2016/02/29 12:0 a.m.35 views

Ubuntu 14.04 LTS : Linux kernel (Vivid HWE) regression (USN-2910-2)

The remote Ubuntu 14.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-2910-2 advisory. USN-2910-1 fixed vulnerabilities in the Ubuntu 15.04 Linux kernel backported to Ubuntu 14.04 LTS. An incorrect locking fix caused a regression that broke graphics...

5.6AI score
Exploits0References1
Ubuntu
Ubuntu
added 2016/02/27 8:51 a.m.94 views

USN-2910-2: Linux kernel (Vivid HWE) regression

USN-2910-1 fixed vulnerabilities in the Ubuntu 15.04 Linux kernel backported to Ubuntu 14.04 LTS. An incorrect locking fix caused a regression that broke graphics displays for Ubuntu 14.04 LTS guests running the Ubuntu 15.04 backport kernel within VMWare virtual machines. This update fixes the...

6.8AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2016/02/23 12:0 a.m.246 views

Ubuntu 14.04 LTS : Linux kernel (Vivid HWE) vulnerabilities (USN-2910-1)

The remote Ubuntu 14.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-2910-1 advisory. halfdog discovered that OverlayFS, when mounting on top of a FUSE mount, incorrectly propagated file attributes, including setuid. A local unprivileged...

7.8CVSS7AI score0.0123EPSS
Exploits4References8
Ubuntu
Ubuntu
added 2016/02/22 9:24 p.m.68 views

USN-2910-1: Linux kernel (Vivid HWE) vulnerabilities

halfdog discovered that OverlayFS, when mounting on top of a FUSE mount, incorrectly propagated file attributes, including setuid. A local unprivileged attacker could use this to gain privileges. CVE-2016-1576 halfdog discovered that OverlayFS in the Linux kernel incorrectly propagated security...

7.8CVSS6.7AI score0.0123EPSS
Exploits4
Ubuntu
Ubuntu
added 2016/02/02 1:57 a.m.79 views

USN-2889-2: Linux kernel (Vivid HWE) vulnerabilities

It was discovered that a use-after-free vulnerability existed in the AFUNIX implementation in the Linux kernel. A local attacker could use crafted epollctl calls to cause a denial of service system crash or expose sensitive information. CVE-2013-7446 It was discovered that the KVM implementation ...

10CVSS6.4AI score0.09235EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2016/02/02 12:0 a.m.62 views

Ubuntu 14.04 LTS : Linux kernel (Vivid HWE) vulnerabilities (USN-2889-2)

The remote Ubuntu 14.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-2889-2 advisory. It was discovered that a use-after-free vulnerability existed in the AFUNIX implementation in the Linux kernel. A local attacker could use crafted epollc...

10CVSS6.5AI score0.09235EPSS
Exploits1References6
Ubuntu
Ubuntu
added 2016/01/19 4:59 p.m.57 views

USN-2871-2: Linux kernel (Vivid HWE) vulnerability

Yevgeny Pats discovered that the session keyring implementation in the Linux kernel did not properly reference count when joining an existing session keyring. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code with administrative privilege...

7.8CVSS7.9AI score0.03646EPSS
Exploits14
Rows per page
Query Builder