Lucene search

K
LinuxLinux Kernel

10741 matches found

CVE
CVE
added 2000/02/04 5:0 a.m.62 views

CVE-1999-0656

The ugidd RPC interface, by design, allows remote attackers to enumerate valid usernames by specifying arbitrary UIDs that ugidd maps to local user and group names.

5CVSS6.7AI score0.00554EPSS
CVE
CVE
added 2003/04/02 5:0 a.m.62 views

CVE-2002-0429

The iBCS routines in arch/i386/kernel/traps.c for Linux kernels 2.4.18 and earlier on x86 systems allow local users to kill arbitrary processes via a a binary compatibility interface (lcall).

3.6CVSS6AI score0.00078EPSS
CVE
CVE
added 2004/06/01 4:0 a.m.62 views

CVE-2004-0109

Buffer overflow in the ISO9660 file system component for Linux kernel 2.4.x, 2.5.x and 2.6.x, allows local users with physical access to overflow kernel memory and execute arbitrary code via a malformed CD containing a long symbolic link entry.

4.6CVSS6.6AI score0.00159EPSS
CVE
CVE
added 2005/01/10 5:0 a.m.62 views

CVE-2004-1016

The scm_send function in the scm layer for Linux kernel 2.4.x up to 2.4.28, and 2.6.x up to 2.6.9, allows local users to cause a denial of service (system hang) via crafted auxiliary messages that are passed to the sendmsg function, which causes a deadlock condition.

2.1CVSS7AI score0.00322EPSS
CVE
CVE
added 2006/05/31 10:0 a.m.62 views

CVE-2005-0489

The /proc handling (proc/base.c) Linux kernel 2.4 before 2.4.17 allows local users to cause a denial of service via unknown vectors that cause an invalid access of free memory.

4.9CVSS5.8AI score0.00079EPSS
CVE
CVE
added 2005/09/30 10:5 a.m.62 views

CVE-2005-3109

The HFS and HFS+ (hfsplus) modules in Linux 2.6 allow attackers to cause a denial of service (oops) by using hfsplus to mount a filesystem that is not hfsplus.

2.1CVSS4.9AI score0.00071EPSS
CVE
CVE
added 2005/10/12 1:4 p.m.62 views

CVE-2005-3180

The Orinoco driver (orinoco.c) in Linux kernel 2.6.13 and earlier does not properly clear memory from a previously used packet whose length is increased, which allows remote attackers to obtain sensitive information.

5CVSS4.9AI score0.01881EPSS
CVE
CVE
added 2005/11/27 9:3 p.m.62 views

CVE-2005-3857

The time_out_leases function in locks.c for Linux kernel before 2.6.15-rc3 allows local users to cause a denial of service (kernel log message consumption) by causing a large number of broken leases, which is recorded to the log using the printk function.

4.9CVSS4.5AI score0.00295EPSS
CVE
CVE
added 2006/03/09 1:6 p.m.62 views

CVE-2006-0742

The die_if_kernel function in arch/ia64/kernel/unaligned.c in Linux kernel 2.6.x before 2.6.15.6, possibly when compiled with certain versions of gcc, has the "noreturn" attribute set, which allows local users to cause a denial of service by causing user faults on Itanium systems.

4.6CVSS6.9AI score0.00058EPSS
CVE
CVE
added 2006/05/22 4:6 p.m.62 views

CVE-2006-1857

Buffer overflow in SCTP in Linux kernel before 2.6.16.17 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a malformed HB-ACK chunk.

9CVSS7.8AI score0.04596EPSS
CVE
CVE
added 2006/08/21 7:4 p.m.62 views

CVE-2006-4145

The Universal Disk Format (UDF) filesystem driver in Linux kernel 2.6.17 and earlier allows local users to cause a denial of service (hang and crash) via certain operations involving truncated files, as demonstrated via the dd command.

4.9CVSS6.8AI score0.00122EPSS
CVE
CVE
added 2006/09/19 7:7 p.m.62 views

CVE-2006-4535

The Linux kernel 2.6.17.10 and 2.6.17.11 and 2.6.18-rc5 allows local users to cause a denial of service (crash) via an SCTP socket with a certain SO_LINGER value, possibly related to the patch for CVE-2006-3745. NOTE: older kernel versions for specific Linux distributions are also affected, due to ...

4.9CVSS7.1AI score0.00131EPSS
CVE
CVE
added 2007/01/30 7:28 p.m.62 views

CVE-2006-5753

Unspecified vulnerability in the listxattr system call in Linux kernel, when a "bad inode" is present, allows local users to cause a denial of service (data corruption) and possibly gain privileges via unknown vectors.

7.2CVSS5.9AI score0.00081EPSS
CVE
CVE
added 2007/03/02 9:18 p.m.62 views

CVE-2007-1217

Buffer overflow in the bufprint function in capiutil.c in libcapi, as used in Linux kernel 2.6.9 to 2.6.20 and isdn4k-utils, allows local users to cause a denial of service (crash) and possibly gain privileges via a crafted CAPI packet.

6.9CVSS6.1AI score0.0011EPSS
CVE
CVE
added 2007/08/13 7:17 p.m.62 views

CVE-2007-3851

The drm/i915 component in the Linux kernel before 2.6.22.2, when used with i965G and later chipsets, allows local users with access to an X11 session and Direct Rendering Manager (DRM) to write to arbitrary memory locations and gain privileges via a crafted batchbuffer.

6CVSS6AI score0.00086EPSS
CVE
CVE
added 2008/06/30 10:41 p.m.62 views

CVE-2008-2729

arch/x86_64/lib/copy_user.S in the Linux kernel before 2.6.19 on some AMD64 systems does not erase destination memory locations after an exception during kernel memory copy, which allows local users to obtain sensitive information.

4.9CVSS7AI score0.00063EPSS
CVE
CVE
added 2008/12/09 12:30 a.m.62 views

CVE-2008-5395

The parisc_show_stack function in arch/parisc/kernel/traps.c in the Linux kernel before 2.6.28-rc7 on PA-RISC allows local users to cause a denial of service (system crash) via vectors associated with an attempt to unwind a stack that contains userspace addresses.

4.9CVSS5.7AI score0.0006EPSS
CVE
CVE
added 2009/07/05 4:30 p.m.62 views

CVE-2009-1388

The ptrace_start function in kernel/ptrace.c in the Linux kernel 2.6.18 does not properly handle simultaneous execution of the do_coredump function, which allows local users to cause a denial of service (deadlock) via vectors involving the ptrace system call and a coredumping thread.

5.5CVSS5AI score0.00059EPSS
CVE
CVE
added 2009/09/18 10:30 a.m.62 views

CVE-2009-1883

The z90crypt_unlocked_ioctl function in the z90crypt driver in the Linux kernel 2.6.9 does not perform a capability check for the Z90QUIESCE operation, which allows local users to leverage euid 0 privileges to force a driver outage.

4.4CVSS5.5AI score0.00077EPSS
CVE
CVE
added 2010/01/27 5:30 p.m.62 views

CVE-2009-3556

A certain Red Hat configuration step for the qla2xxx driver in the Linux kernel 2.6.18 on Red Hat Enterprise Linux (RHEL) 5, when N_Port ID Virtualization (NPIV) hardware is used, sets world-writable permissions for the (1) vport_create and (2) vport_delete files under /sys/class/scsi_host/, which ...

1.9CVSS7AI score0.00029EPSS
CVE
CVE
added 2010/09/30 3:0 p.m.62 views

CVE-2010-2538

Integer overflow in the btrfs_ioctl_clone function in fs/btrfs/ioctl.c in the Linux kernel before 2.6.35 might allow local users to obtain sensitive information via a BTRFS_IOC_CLONE_RANGE ioctl call.

5.5CVSS5.8AI score0.00076EPSS
CVE
CVE
added 2013/06/08 1:5 p.m.62 views

CVE-2011-4348

Race condition in the sctp_rcv function in net/sctp/input.c in the Linux kernel before 2.6.29 allows remote attackers to cause a denial of service (system hang) via SCTP packets. NOTE: in some environments, this issue exists because of an incomplete fix for CVE-2011-2482.

7.1CVSS5.9AI score0.01166EPSS
CVE
CVE
added 2013/02/18 11:56 a.m.62 views

CVE-2012-5375

The CRC32C feature in the Btrfs implementation in the Linux kernel before 3.8-rc1 allows local users to cause a denial of service (prevention of file creation) by leveraging the ability to write to a directory important to the victim, and creating a file with a crafted name that is associated with ...

4CVSS5.8AI score0.0008EPSS
CVE
CVE
added 2013/03/22 11:59 a.m.62 views

CVE-2013-1826

The xfrm_state_netlink function in net/xfrm/xfrm_user.c in the Linux kernel before 3.5.7 does not properly handle error conditions in dump_one_state function calls, which allows local users to gain privileges or cause a denial of service (NULL pointer dereference and system crash) by leveraging the...

6.2CVSS5.4AI score0.00098EPSS
CVE
CVE
added 2013/03/22 11:59 a.m.62 views

CVE-2013-1848

fs/ext3/super.c in the Linux kernel before 3.8.4 uses incorrect arguments to functions in certain circumstances related to printk input, which allows local users to conduct format-string attacks and possibly gain privileges via a crafted application.

6.2CVSS5AI score0.00055EPSS
CVE
CVE
added 2013/04/22 11:40 a.m.62 views

CVE-2013-3076

The crypto API in the Linux kernel through 3.9-rc8 does not initialize certain length variables, which allows local users to obtain sensitive information from kernel stack memory via a crafted recvmsg or recvfrom system call, related to the hash_recvmsg function in crypto/algif_hash.c and the skcip...

4.9CVSS6.8AI score0.00084EPSS
CVE
CVE
added 2013/09/25 10:31 a.m.62 views

CVE-2013-4300

The scm_check_creds function in net/core/scm.c in the Linux kernel before 3.11 performs a capability check in an incorrect namespace, which allows local users to gain privileges via PID spoofing.

7.2CVSS5.9AI score0.00042EPSS
CVE
CVE
added 2013/11/12 2:35 p.m.62 views

CVE-2013-4513

Buffer overflow in the oz_cdev_write function in drivers/staging/ozwpan/ozcdev.c in the Linux kernel before 3.12 allows local users to cause a denial of service or possibly have unspecified other impact via a crafted write operation.

4.9CVSS8.6AI score0.00016EPSS
CVE
CVE
added 2013/11/12 2:35 p.m.62 views

CVE-2013-4516

The mp_get_count function in drivers/staging/sb105x/sb_pci_mp.c in the Linux kernel before 3.12 does not initialize a certain data structure, which allows local users to obtain sensitive information from kernel stack memory via a TIOCGICOUNT ioctl call.

4.9CVSS6.6AI score0.00039EPSS
CVE
CVE
added 2013/11/12 2:35 p.m.62 views

CVE-2013-6763

The uio_mmap_physical function in drivers/uio/uio.c in the Linux kernel before 3.12 does not validate the size of a memory block, which allows local users to cause a denial of service (memory corruption) or possibly gain privileges via crafted mmap operations, a different vulnerability than CVE-201...

6.9CVSS6.7AI score0.00075EPSS
CVE
CVE
added 2014/02/28 6:18 a.m.62 views

CVE-2014-2039

arch/s390/kernel/head64.S in the Linux kernel before 3.13.5 on the s390 platform does not properly handle attempted use of the linkage stack, which allows local users to cause a denial of service (system crash) by executing a crafted instruction.

4.9CVSS5.7AI score0.00038EPSS
CVE
CVE
added 2014/11/10 11:55 a.m.62 views

CVE-2014-7207

A certain Debian patch to the IPv6 implementation in the Linux kernel 3.2.x through 3.2.63 does not properly validate arguments in ipv6_select_ident function calls, which allows local users to cause a denial of service (NULL pointer dereference and system crash) by leveraging (1) tun or (2) macvtap...

4.9CVSS6.9AI score0.00087EPSS
CVE
CVE
added 2016/05/02 10:59 a.m.62 views

CVE-2015-2686

net/socket.c in the Linux kernel 3.19 before 3.19.3 does not validate certain range data for (1) sendto and (2) recvfrom system calls, which allows local users to gain privileges by leveraging a subsystem that uses the copy_from_iter function in the iov_iter interface, as demonstrated by the Blueto...

7.8CVSS7.4AI score0.00043EPSS
CVE
CVE
added 2016/05/02 10:59 a.m.62 views

CVE-2015-4178

The fs_pin implementation in the Linux kernel before 4.0.5 does not ensure the internal consistency of a certain list data structure, which allows local users to cause a denial of service (system crash) by leveraging user-namespace root access for an MNT_DETACH umount2 system call, related to fs/fs...

5.5CVSS5.1AI score0.00042EPSS
CVE
CVE
added 2017/03/08 1:59 a.m.62 views

CVE-2017-0510

An elevation of privilege vulnerability in the kernel FIQ debugger could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the o...

9.3CVSS7.1AI score0.00301EPSS
CVE
CVE
added 2017/05/23 5:29 a.m.62 views

CVE-2017-9211

The crypto_skcipher_init_tfm function in crypto/skcipher.c in the Linux kernel through 4.11.2 relies on a setkey function that lacks a key-size check, which allows local users to cause a denial of service (NULL pointer dereference) via a crafted application.

5.5CVSS5AI score0.00044EPSS
CVE
CVE
added 2025/04/17 6:15 p.m.62 views

CVE-2020-36789

In the Linux kernel, the following vulnerability has been resolved: can: dev: can_get_echo_skb(): prevent call to kfree_skb() in hard IRQ context If a driver calls can_get_echo_skb() during a hardware IRQ (which is often, butnot always, the case), the 'WARN_ON(in_irq)' innet/core/skbuff.c#skb_relea...

5.5CVSS6.4AI score0.00018EPSS
CVE
CVE
added 2024/03/04 6:15 p.m.62 views

CVE-2021-47096

In the Linux kernel, the following vulnerability has been resolved: ALSA: rawmidi - fix the uninitalized user_pversion The user_pversion was uninitialized for the user space file structurein the open function, because the file private structure usekmalloc for the allocation. The kernel ALSA sequenc...

4CVSS5.5AI score0.00008EPSS
CVE
CVE
added 2024/03/15 9:15 p.m.62 views

CVE-2021-47116

In the Linux kernel, the following vulnerability has been resolved: ext4: fix memory leak in ext4_mb_init_backend on error path. Fix a memory leak discovered by syzbot when a file system is corruptedwith an illegally large s_log_groups_per_flex.

5.5CVSS6.5AI score0.00018EPSS
CVE
CVE
added 2024/03/25 9:15 a.m.62 views

CVE-2021-47146

In the Linux kernel, the following vulnerability has been resolved: mld: fix panic in mld_newpack() mld_newpack() doesn't allow to allocate high order page,only order-0 allocation is allowed.If headroom size is too large, a kernel panic could occur in skb_put(). Test commands:ip netns del Aip netns...

5.5CVSS6.4AI score0.00008EPSS
CVE
CVE
added 2024/03/25 10:15 a.m.62 views

CVE-2021-47160

In the Linux kernel, the following vulnerability has been resolved: net: dsa: mt7530: fix VLAN traffic leaks PCR_MATRIX field was set to all 1's when VLAN filtering is enabled, butwas not reset when it is disabled, which may cause traffic leaks: ip link add br0 type bridge vlan_filtering 1 ip link ...

7.1CVSS6.7AI score0.00013EPSS
CVE
CVE
added 2024/03/25 10:15 a.m.62 views

CVE-2021-47161

In the Linux kernel, the following vulnerability has been resolved: spi: spi-fsl-dspi: Fix a resource leak in an error handling path 'dspi_request_dma()' should be undone by a 'dspi_release_dma()' call in theerror handling path of the probe function, as already done in the removefunction

5.5CVSS6AI score0.00008EPSS
CVE
CVE
added 2024/04/10 7:15 p.m.62 views

CVE-2021-47187

In the Linux kernel, the following vulnerability has been resolved: arm64: dts: qcom: msm8998: Fix CPU/L2 idle state latency and residency The entry/exit latency and minimum residency in state for the idlestates of MSM8998 were ..bad: first of all, for all of them thetimings were written for CPU sl...

5.5CVSS6.5AI score0.00011EPSS
CVE
CVE
added 2024/04/10 7:15 p.m.62 views

CVE-2021-47189

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix memory ordering between normal and ordered work functions Ordered work functions aren't guaranteed to be handled by the same threadwhich executed the normal work functions. The only way execution betweennormal/ordered fu...

6.3CVSS6.3AI score0.00178EPSS
CVE
CVE
added 2024/05/21 3:15 p.m.62 views

CVE-2021-47241

In the Linux kernel, the following vulnerability has been resolved: ethtool: strset: fix message length calculation Outer nest for ETHTOOL_A_STRSET_STRINGSETS is not accounted for.This may result in ETHTOOL_MSG_STRSET_GET producing a warning like: calculated message payload length (684) not suffici...

7.5CVSS7.7AI score0.00027EPSS
CVE
CVE
added 2024/05/21 3:15 p.m.62 views

CVE-2021-47246

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix page reclaim for dead peer hairpin When adding a hairpin flow, a firmware-side send queue is created forthe peer net device, which claims some host memory pages for itsinternal ring buffer. If the peer net device is ...

5.5CVSS6.5AI score0.0001EPSS
CVE
CVE
added 2024/05/21 3:15 p.m.62 views

CVE-2021-47283

In the Linux kernel, the following vulnerability has been resolved: net:sfc: fix non-freed irq in legacy irq mode SFC driver can be configured via modparam to work using MSI-X, MSI orlegacy IRQ interrupts. In the last one, the interrupt was not properlyreleased on module remove. It was not freed be...

5.5CVSS6.7AI score0.00021EPSS
CVE
CVE
added 2024/05/21 3:15 p.m.62 views

CVE-2021-47308

In the Linux kernel, the following vulnerability has been resolved: scsi: libfc: Fix array index out of bound exception Fix array index out of bound exception in fc_rport_prli_resp().

6.5CVSS7.6AI score0.00034EPSS
CVE
CVE
added 2024/05/21 3:15 p.m.62 views

CVE-2021-47406

In the Linux kernel, the following vulnerability has been resolved: ext4: add error checking to ext4_ext_replay_set_iblocks() If the call to ext4_map_blocks() fails due to an corrupted filesystem, ext4_ext_replay_set_iblocks() can get stuck in an infiniteloop. This could be reproduced by running ge...

5.5CVSS7AI score0.00005EPSS
CVE
CVE
added 2024/05/21 3:15 p.m.62 views

CVE-2021-47427

In the Linux kernel, the following vulnerability has been resolved: scsi: iscsi: Fix iscsi_task use after free Commit d39df158518c ("scsi: iscsi: Have abort handler get ref to conn")added iscsi_get_conn()/iscsi_put_conn() calls during abort handling butthen also changed the handling of the case whe...

7.8CVSS6.8AI score0.00022EPSS
Total number of security vulnerabilities10741