Lucene search

K
LinuxLinux Kernel

10741 matches found

CVE
CVE
added 2025/04/18 7:15 a.m.60 views

CVE-2025-38104

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Replace Mutex with Spinlock for RLCG register access to avoid Priority Inversion in SRIOV RLCG Register Access is a way for virtual functions to safely access GPUregisters in a virtualized environment., including TLB fl...

6.7AI score0.00026EPSS
CVE
CVE
added 2001/09/12 4:0 a.m.59 views

CVE-1999-1018

IPChains in Linux kernels 2.2.10 and earlier does not reassemble IP fragments before checking the header information, which allows a remote attacker to bypass the filtering rules using several fragments with 0 offsets.

7.5CVSS7AI score0.04112EPSS
CVE
CVE
added 2000/10/13 4:0 a.m.59 views

CVE-2000-0289

IP masquerading in Linux 2.2.x allows remote attackers to route UDP packets through the internal interface by modifying the external source IP address and port number to match those of an established connection.

5CVSS6.7AI score0.00826EPSS
CVE
CVE
added 2004/03/03 5:0 a.m.59 views

CVE-2004-0003

Unknown vulnerability in Linux kernel before 2.4.22 allows local users to gain privileges, related to "R128 DRI limits checking."

4.6CVSS5.8AI score0.00093EPSS
CVE
CVE
added 2005/04/14 4:0 a.m.59 views

CVE-2004-1237

Unknown vulnerability in the system call filtering code in the audit subsystem for Red Hat Enterprise Linux 3 allows local users to cause a denial of service (system crash) via unknown vectors.

2.1CVSS6.3AI score0.00058EPSS
CVE
CVE
added 2005/09/30 10:5 a.m.59 views

CVE-2005-3108

mm/ioremap.c in Linux 2.6 on 64-bit x86 systems allows local users to cause a denial of service or an information leak via an ioremap on a certain memory map that causes the iounmap to perform a lookup of a page that does not exist.

2.1CVSS5.6AI score0.00066EPSS
CVE
CVE
added 2006/01/05 11:0 a.m.59 views

CVE-2005-4618

Buffer overflow in sysctl in the Linux Kernel 2.6 before 2.6.15 allows local users to corrupt user memory and possibly cause a denial of service via a long string, which causes sysctl to write a zero byte outside the buffer. NOTE: since the sysctl is called from a userland program that provides the...

3.6CVSS5.4AI score0.00139EPSS
CVE
CVE
added 2006/04/14 9:2 p.m.59 views

CVE-2006-0558

perfmon (perfmon.c) in Linux kernel on IA64 architectures allows local users to cause a denial of service (crash) by interrupting a task while another process is accessing the mm_struct, which triggers a BUG_ON action in the put_page_testzero function.

4.9CVSS5.7AI score0.00048EPSS
CVE
CVE
added 2006/03/21 6:2 p.m.59 views

CVE-2006-1343

net/ipv4/netfilter/ip_conntrack_core.c in Linux kernel 2.4 and 2.6, and possibly net/ipv4/netfilter/nf_conntrack_l3proto_ipv4.c in 2.6, does not clear sockaddr_in.sin_zero before returning IPv4 socket names from the getsockopt function with SO_ORIGINAL_DST, which allows local users to obtain portio...

2.1CVSS7AI score0.00102EPSS
CVE
CVE
added 2006/07/07 6:5 p.m.59 views

CVE-2006-2451

The suid_dumpable support in Linux kernel 2.6.13 up to versions before 2.6.17.4, and 2.6.16 before 2.6.16.24, allows a local user to cause a denial of service (disk consumption) and possibly gain privileges via the PR_SET_DUMPABLE argument of the prctl function and a program that causes a core dump...

4.6CVSS6.1AI score0.06758EPSS
CVE
CVE
added 2006/09/11 5:4 p.m.59 views

CVE-2006-4623

The Unidirectional Lightweight Encapsulation (ULE) decapsulation component in dvb-core/dvb_net.c in the dvb driver in the Linux kernel 2.6.17.8 allows remote attackers to cause a denial of service (crash) via an SNDU length of 0 in a ULE packet.

7.8CVSS7AI score0.13548EPSS
CVE
CVE
added 2006/09/09 12:4 a.m.59 views

CVE-2006-4663

The source code tar archive of the Linux kernel 2.6.16, 2.6.17.11, and possibly other versions specifies weak permissions (0666 and 0777) for certain files and directories, which might allow local users to insert Trojan horse source code that would be used during the next kernel compilation. NOTE: ...

7.8CVSS7AI score0.0004EPSS
CVE
CVE
added 2007/01/30 7:28 p.m.59 views

CVE-2006-5754

The aio_setup_ring function in Linux kernel does not properly initialize a variable, which allows local users to cause a denial of service (crash) via an unspecified error path that causes an incorrect free operation.

4.9CVSS5.8AI score0.00044EPSS
CVE
CVE
added 2006/11/22 1:7 a.m.59 views

CVE-2006-6056

Linux kernel 2.6.x up to 2.6.18 and possibly other versions, when SELinux hooks are enabled, allows local users to cause a denial of service (crash) via a malformed file stream that triggers a NULL pointer dereference in the superblock_doinit function, as demonstrated using an HFS filesystem image.

4.9CVSS7AI score0.00048EPSS
CVE
CVE
added 2008/11/10 4:15 p.m.59 views

CVE-2008-5033

The chip_command function in drivers/media/video/tvaudio.c in the Linux kernel 2.6.25.x before 2.6.25.19, 2.6.26.x before 2.6.26.7, and 2.6.27.x before 2.6.27.3 allows attackers to cause a denial of service (NULL function pointer dereference and OOPS) via unknown vectors.

7.8CVSS6.9AI score0.00557EPSS
CVE
CVE
added 2011/02/23 7:0 p.m.59 views

CVE-2011-0999

mm/huge_memory.c in the Linux kernel before 2.6.38-rc5 does not prevent creation of a transparent huge page (THP) during the existence of a temporary stack for an exec system call, which allows local users to cause a denial of service (memory consumption) or possibly have unspecified other impact v...

4.9CVSS7.3AI score0.00113EPSS
CVE
CVE
added 2012/05/24 11:55 p.m.59 views

CVE-2011-2521

The x86_assign_hw_event function in arch/x86/kernel/cpu/perf_event.c in the Performance Events subsystem in the Linux kernel before 2.6.39 does not properly calculate counter values, which allows local users to cause a denial of service (panic) via the perf program.

4.9CVSS5.1AI score0.00063EPSS
CVE
CVE
added 2012/05/24 11:55 p.m.59 views

CVE-2011-2707

The ptrace_setxregs function in arch/xtensa/kernel/ptrace.c in the Linux kernel before 3.1 does not validate user-space pointers, which allows local users to obtain sensitive information from kernel memory locations via a crafted PTRACE_SETXTREGS request.

6CVSS5.8AI score0.00097EPSS
CVE
CVE
added 2012/10/03 11:2 a.m.59 views

CVE-2012-3520

The Netlink implementation in the Linux kernel before 3.2.30 does not properly handle messages that lack SCM_CREDENTIALS data, which might allow local users to spoof Netlink communication via a crafted message, as demonstrated by a message to (1) Avahi or (2) NetworkManager.

1.9CVSS6.8AI score0.00062EPSS
CVE
CVE
added 2013/03/06 10:55 p.m.59 views

CVE-2013-1819

The _xfs_buf_find function in fs/xfs/xfs_buf.c in the Linux kernel before 3.7.6 does not validate block numbers, which allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact by leveraging the ability to mount an XFS file...

4.6CVSS6.6AI score0.00052EPSS
CVE
CVE
added 2013/05/03 11:57 a.m.59 views

CVE-2013-2017

The veth (aka virtual Ethernet) driver in the Linux kernel before 2.6.34 does not properly manage skbs during congestion, which allows remote attackers to cause a denial of service (system crash) by leveraging lack of skb consumption in conjunction with a double-free error.

7.8CVSS7AI score0.00766EPSS
CVE
CVE
added 2013/09/16 1:1 p.m.59 views

CVE-2013-2891

drivers/hid/hid-steelseries.c in the Human Interface Device (HID) subsystem in the Linux kernel through 3.11, when CONFIG_HID_STEELSERIES is enabled, allows physically proximate attackers to cause a denial of service (heap-based out-of-bounds write) via a crafted device.

4.7CVSS5.7AI score0.00066EPSS
CVE
CVE
added 2013/09/25 10:31 a.m.59 views

CVE-2013-5634

arch/arm/kvm/arm.c in the Linux kernel before 3.10 on the ARM platform, when KVM is used, allows host OS users to cause a denial of service (NULL pointer dereference, OOPS, and host OS crash) or possibly have unspecified other impact by omitting vCPU initialization before a KVM_GET_REG_LIST ioctl c...

4.3CVSS7.7AI score0.00175EPSS
CVE
CVE
added 2019/08/19 2:15 a.m.59 views

CVE-2016-10907

An issue was discovered in drivers/iio/dac/ad5755.c in the Linux kernel before 4.8.6. There is an out of bounds write in the function ad5755_parse_dt.

7.8CVSS7.4AI score0.00089EPSS
CVE
CVE
added 2016/06/13 1:59 a.m.59 views

CVE-2016-2061

Integer signedness error in the MSM V4L2 video driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, allows attackers to gain privileges or cause a denial of service (array overflow and memory corruption) via a crafte...

7.8CVSS7.4AI score0.00299EPSS
CVE
CVE
added 2017/04/07 10:59 p.m.59 views

CVE-2017-0576

An elevation of privilege vulnerability in the Qualcomm crypto engine driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions: Ke...

7.6CVSS6.9AI score0.00246EPSS
CVE
CVE
added 2017/12/27 5:8 p.m.59 views

CVE-2017-17855

kernel/bpf/verifier.c in the Linux kernel through 4.14.8 allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact by leveraging improper use of pointers in place of scalars.

7.8CVSS7.4AI score0.00061EPSS
CVE
CVE
added 2017/04/23 5:59 a.m.59 views

CVE-2017-8067

drivers/char/virtio_console.c in the Linux kernel 4.9.x and 4.10.x before 4.10.12 interacts incorrectly with the CONFIG_VMAP_STACK option, which allows local users to cause a denial of service (system crash or memory corruption) or possibly have unspecified other impact by leveraging use of more th...

7.8CVSS8.1AI score0.00113EPSS
CVE
CVE
added 2018/11/21 12:29 a.m.59 views

CVE-2018-19406

kvm_pv_send_ipi in arch/x86/kvm/lapic.c in the Linux kernel through 4.19.2 allows local users to cause a denial of service (NULL pointer dereference and BUG) via crafted system calls that reach a situation where the apic map is uninitialized.

5.5CVSS6.2AI score0.00046EPSS
CVE
CVE
added 2024/03/04 6:15 p.m.59 views

CVE-2021-47083

In the Linux kernel, the following vulnerability has been resolved: pinctrl: mediatek: fix global-out-of-bounds issue When eint virtual eint number is greater than gpio number,it maybe produce 'desc[eint_n]' size globle-out-of-bounds issue.

7.1CVSS6.3AI score0.00009EPSS
CVE
CVE
added 2024/03/25 9:15 a.m.59 views

CVE-2021-47140

In the Linux kernel, the following vulnerability has been resolved: iommu/amd: Clear DMA ops when switching domain Since commit 08a27c1c3ecf ("iommu: Add support to change default domainof an iommu group") a user can switch a device between IOMMU and directDMA through sysfs. This doesn't work for A...

5.3CVSS5AI score0.00047EPSS
CVE
CVE
added 2024/03/25 9:15 a.m.59 views

CVE-2021-47151

In the Linux kernel, the following vulnerability has been resolved: interconnect: qcom: bcm-voter: add a missing of_node_put() Add a missing of_node_put() in of_bcm_voter_get() to avoid thereference leak.

5.5CVSS6.6AI score0.00018EPSS
CVE
CVE
added 2024/04/10 7:15 p.m.59 views

CVE-2021-47193

In the Linux kernel, the following vulnerability has been resolved: scsi: pm80xx: Fix memory leak during rmmod Driver failed to release all memory allocated. This would lead to memoryleak during driver removal. Properly free memory when the module is removed.

5.5CVSS6.4AI score0.0001EPSS
CVE
CVE
added 2024/04/10 7:15 p.m.59 views

CVE-2021-47197

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: nullify cq->dbg pointer in mlx5_debug_cq_remove() Prior to this patch in case mlx5_core_destroy_cq() failed it proceedsto rest of destroy operations. mlx5_core_destroy_cq() could be called againby user and cause addit...

5.5CVSS6.3AI score0.00011EPSS
CVE
CVE
added 2024/05/21 3:15 p.m.59 views

CVE-2021-47294

In the Linux kernel, the following vulnerability has been resolved: netrom: Decrease sock refcount when sock timers expire Commit 63346650c1a9 ("netrom: switch to sock timer API") switched to usesock timer API. It replaces mod_timer() by sk_reset_timer(), anddel_timer() by sk_stop_timer(). Function...

5.5CVSS6.7AI score0.00061EPSS
CVE
CVE
added 2024/05/21 3:15 p.m.59 views

CVE-2021-47300

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix tail_call_reachable rejection for interpreter when jit failed During testing of f263a81451c1 ("bpf: Track subprog poke descriptors correctlyand fix use-after-free") under various failure conditions, for example, whenjit_su...

5.5CVSS6.5AI score0.00094EPSS
CVE
CVE
added 2024/05/21 3:15 p.m.59 views

CVE-2021-47360

In the Linux kernel, the following vulnerability has been resolved: binder: make sure fd closes complete During BC_FREE_BUFFER processing, the BINDER_TYPE_FDA objectcleanup may close 1 or more fds. The close operations arecompleted using the task work mechanism -- which means the threadneeds to ret...

5.5CVSS6.7AI score0.00009EPSS
CVE
CVE
added 2024/05/21 3:15 p.m.59 views

CVE-2021-47369

In the Linux kernel, the following vulnerability has been resolved: s390/qeth: fix NULL deref in qeth_clear_working_pool_list() When qeth_set_online() calls qeth_clear_working_pool_list() to rollback after an error exit from qeth_hardsetup_card(), we are at risk ofaccessing card->qdio.in_q befor...

5.5CVSS7.2AI score0.00009EPSS
CVE
CVE
added 2024/05/21 3:15 p.m.59 views

CVE-2021-47415

In the Linux kernel, the following vulnerability has been resolved: iwlwifi: mvm: Fix possible NULL dereference In __iwl_mvm_remove_time_event() check that 'te_data->vif' is NULLbefore dereferencing it.

5.5CVSS6.8AI score0.00015EPSS
CVE
CVE
added 2024/05/22 7:15 a.m.59 views

CVE-2021-47437

In the Linux kernel, the following vulnerability has been resolved: iio: adis16475: fix deadlock on frequency set With commit 39c024b51b560("iio: adis16475: improve sync scale mode handling"), two deadlocks wereintroduced: The call to 'adis_write_reg_16()' was not changed to it's unlockedversion. T...

5.5CVSS6.7AI score0.00007EPSS
CVE
CVE
added 2024/05/24 3:15 p.m.59 views

CVE-2021-47499

In the Linux kernel, the following vulnerability has been resolved: iio: accel: kxcjk-1013: Fix possible memory leak in probe and remove When ACPI type is ACPI_SMO8500, the data->dready_trig will not be set, thememory allocated by iio_triggered_buffer_setup() will not be freed, and causememory l...

5.5CVSS6.7AI score0.00014EPSS
CVE
CVE
added 2024/05/24 3:15 p.m.59 views

CVE-2021-47510

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix re-dirty process of tree-log nodes There is a report of a transaction abort of -EAGAIN with the followingscript. #!/bin/sh for d in sda sdb; domkfs.btrfs -d single -m single -f /dev/${d}done mount /dev/sda /mnt/testmount...

6.9AI score0.00029EPSS
CVE
CVE
added 2024/05/24 3:15 p.m.59 views

CVE-2021-47513

In the Linux kernel, the following vulnerability has been resolved: net: dsa: felix: Fix memory leak in felix_setup_mmio_filtering Avoid a memory leak if there is not a CPU port defined. Addresses-Coverity-ID: 1492897 ("Resource leak")Addresses-Coverity-ID: 1492899 ("Resource leak")

5.5CVSS6.9AI score0.0002EPSS
CVE
CVE
added 2024/05/24 3:15 p.m.59 views

CVE-2021-47537

In the Linux kernel, the following vulnerability has been resolved: octeontx2-af: Fix a memleak bug in rvu_mbox_init() In rvu_mbox_init(), mbox_regions is not freed or passed outunder the switch-default region, which could lead to a memory leak. Fix this bug by changing 'return err' to 'goto free_r...

5.5CVSS7.2AI score0.00017EPSS
CVE
CVE
added 2025/02/26 6:37 a.m.59 views

CVE-2021-47660

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Fix some memory leaks in an error handling path of 'log_replay()' All error handling paths lead to 'out' where many resources are freed. Do it as well here instead of a direct return, otherwise 'log', 'ra' and'log->one...

5.5CVSS5.3AI score0.00017EPSS
CVE
CVE
added 2022/09/26 3:15 p.m.59 views

CVE-2022-3103

off-by-one in io_uring module.

7.8CVSS7.5AI score0.0002EPSS
CVE
CVE
added 2024/04/28 1:15 p.m.59 views

CVE-2022-48660

In the Linux kernel, the following vulnerability has been resolved: gpiolib: cdev: Set lineevent_state::irq after IRQ register successfully When running gpio test on nxp-ls1028 platform with below commandgpiomon --num-events=3 --rising-edge gpiochip1 25There will be a warning trace as below:Call tr...

5.5CVSS6.4AI score0.00011EPSS
CVE
CVE
added 2024/05/03 6:15 p.m.59 views

CVE-2022-48690

In the Linux kernel, the following vulnerability has been resolved: ice: Fix DMA mappings leak Fix leak, when user changes ring parameters.During reallocation of RX buffers, new DMA mappings are created forthose buffers. New buffers with different RX ring count shouldsubstitute older ones, but thos...

6.5AI score0.00033EPSS
CVE
CVE
added 2024/06/20 11:15 a.m.59 views

CVE-2022-48712

In the Linux kernel, the following vulnerability has been resolved: ext4: fix error handling in ext4_fc_record_modified_inode() Current code does not fully takes care of krealloc() error case, whichcould lead to silent memory corruption or a kernel bug. This patchfixes that. Also it cleans up some ...

6.7AI score0.00037EPSS
CVE
CVE
added 2024/06/20 12:15 p.m.59 views

CVE-2022-48761

In the Linux kernel, the following vulnerability has been resolved: usb: xhci-plat: fix crash when suspend if remote wake enable Crashed at i.mx8qm platform when suspend if enable remote wakeup Internal error: synchronous external abort: 96000210 [#1] PREEMPT SMPModules linked in:CPU: 2 PID: 244 Co...

5.3CVSS7AI score0.00027EPSS
Total number of security vulnerabilities10741