Linux Kernel Security Vulnerabilities and Issues — Page 151 of Linux Kernel CVE List

CVE-2017-0608

An elevation of privilege vulnerability in the Qualcomm sound driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.1...

CVE-2017-0610

7.6CVSS6.7AI score0.00187EPSS

CVE-2017-0613

An elevation of privilege vulnerability in the Qualcomm Secure Execution Environment Communicator driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Pr...

CVE-2017-0623

An elevation of privilege vulnerability in the HTC bootloader could enable a local malicious application to execute arbitrary code within the context of the bootloader. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.18. ...

CVE•added 2017/06/14 1:29 p.m.•47 views

CVE-2017-0651

An information disclosure vulnerability in the kernel ION subsystem could enable a local malicious application to access data outside of its permission levels. This issue is rated as Low because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.18. Android ID...

4.7CVSS4.3AI score0.00223EPSS

CVE•added 2017/02/06 6:59 a.m.•47 views

CVE-2017-5548

drivers/net/ieee802154/atusb.c in the Linux kernel 4.9.x before 4.9.6 interacts incorrectly with the CONFIG_VMAP_STACK option, which allows local users to cause a denial of service (system crash or memory corruption) or possibly have unspecified other impact by leveraging use of more than one virtu...

7.8CVSS7.6AI score0.00086EPSS

CVE•added 2017/04/23 5:59 a.m.•47 views

CVE-2017-8061

drivers/media/usb/dvb-usb/dvb-usb-firmware.c in the Linux kernel 4.9.x and 4.10.x before 4.10.7 interacts incorrectly with the CONFIG_VMAP_STACK option, which allows local users to cause a denial of service (system crash or memory corruption) or possibly have unspecified other impact by leveraging ...

7.8CVSS7.8AI score0.00046EPSS

CVE•added 2024/05/21 3:15 p.m.•47 views

CVE-2021-47271

In the Linux kernel, the following vulnerability has been resolved: usb: cdnsp: Fix deadlock issue in cdnsp_thread_irq_handler Patch fixes the following critical issue caused by deadlock which has beendetected during testing NCM class: smp: csd: Detected non-responsive CSD lock (#1) on CPU#0smp: cs...

5.5CVSS5.3AI score0.00016EPSS

CVE•added 2024/08/21 7:15 a.m.•47 views

CVE-2022-48894

In the Linux kernel, the following vulnerability has been resolved: iommu/arm-smmu-v3: Don't unregister on shutdown Similar to SMMUv2, this driver calls iommu_device_unregister() from theshutdown path, which removes the IOMMU groups with no coordinationwhatsoever with their users - shutdown methods...

5.5CVSS6.5AI score0.00036EPSS

CVE•added 2024/10/21 8:15 p.m.•47 views

CVE-2022-48964

In the Linux kernel, the following vulnerability has been resolved: ravb: Fix potential use-after-free in ravb_rx_gbeth() The skb is delivered to napi_gro_receive() which may free it, after calling this,dereferencing skb may trigger use-after-free.

7.8CVSS7.4AI score0.00044EPSS

CVE•added 2024/10/21 8:15 p.m.•47 views

CVE-2022-48965

In the Linux kernel, the following vulnerability has been resolved: gpio/rockchip: fix refcount leak in rockchip_gpiolib_register() The node returned by of_get_parent() with refcount incremented,of_node_put() needs be called when finish using it. So add it in theend of of_pinctrl_get().

5.5CVSS5.3AI score0.0003EPSS

CVE•added 2024/10/21 8:15 p.m.•47 views

CVE-2022-48984

In the Linux kernel, the following vulnerability has been resolved: can: slcan: fix freed work crash The LTP test pty03 is causing a crash in slcan:BUG: kernel NULL pointer dereference, address: 0000000000000008#PF: supervisor read access in kernel mode#PF: error_code(0x0000) - not-present pagePGD ...

5.5CVSS4.9AI score0.00036EPSS

CVE•added 2025/05/01 3:16 p.m.•47 views

CVE-2022-49919

In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: release flow rule object from commit path No need to postpone this to the commit release path, since no packetsare walking over this object, this is accessed from control plane only.This helped uncovered UAF t...

7CVSS6.5AI score0.00073EPSS

CVE•added 2024/09/13 6:15 a.m.•47 views

CVE-2024-46696

In the Linux kernel, the following vulnerability has been resolved: nfsd: fix potential UAF in nfsd4_cb_getattr_release Once we drop the delegation reference, the fields embedded in it are nolonger safe to access. Do that last.

7.8CVSS7.3AI score0.00037EPSS

CVE•added 2024/09/18 8:15 a.m.•47 views

CVE-2024-46799

In the Linux kernel, the following vulnerability has been resolved: net: ethernet: ti: am65-cpsw: Fix NULL dereference on XDP_TX If number of TX queues are set to 1 we get a NULL pointerdereference during XDP_TX. ~# ethtool -L eth0 tx 1~# ./xdp-trafficgen udp -A -a eth0 -t 2Transmitting on eth0 (...

5.5CVSS5.1AI score0.00051EPSS

CVE•added 2025/01/11 1:15 p.m.•47 views

CVE-2024-54191

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: iso: Fix circular lock in iso_conn_big_sync This fixes the circular locking dependency warning below, by reworkingiso_sock_recvmsg, to ensure that the socket lock is always releasedbefore calling a function that locks hd...

5.5CVSS6.5AI score0.00022EPSS

CVE•added 2024/12/27 3:15 p.m.•47 views

CVE-2024-56666

In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Dereference null return value In the function pqm_uninit there is a call-assignment of "pdd =kfd_get_process_device_data" which could be null, and this value waslater dereferenced without checking.

5.5CVSS6.6AI score0.0003EPSS

CVE•added 2000/02/04 5:0 a.m.•46 views

CVE-1999-0195

Denial of service in RPC portmapper allows attackers to register or unregister RPC services or spoof RPC services using a spoofed source IP address such as 127.0.0.1.

5CVSS7.2AI score0.00141EPSS

CVE•added 1999/09/29 4:0 a.m.•46 views

CVE-1999-0414

In Linux before version 2.0.36, remote attackers can spoof a TCP connection and pass data to the application layer before fully establishing the connection.

5CVSS7AI score0.03624EPSS

CVE•added 2002/03/09 5:0 a.m.•46 views

CVE-1999-1341

Linux kernel before 2.3.18 or 2.2.13pre15, with SLIP and PPP options, allows local unprivileged users to forge IP packets via the TIOCSETD option on tty devices.

4.6CVSS6.7AI score0.00113EPSS

CVE•added 2005/03/18 5:0 a.m.•46 views

CVE-2005-0767

Race condition in the Radeon DRI driver for Linux kernel 2.6.8.1 allows local users with DRI privileges to execute arbitrary code as root.

6.9CVSS5.8AI score0.00054EPSS

CVE•added 2005/11/25 9:3 p.m.•46 views

CVE-2005-3805

A locking problem in POSIX timer cleanup handling on exit in Linux kernel 2.6.10 to 2.6.14, when running on SMP systems, allows local users to cause a denial of service (deadlock) involving process CPU timers.

4.9CVSS5.8AI score0.00047EPSS

CVE•added 2006/04/05 10:4 a.m.•46 views

CVE-2006-1624

The default configuration of syslogd in the Linux sysklogd package does not enable the -x (disable name lookups) option, which allows remote attackers to cause a denial of service (traffic amplification) via messages with spoofed source IP addresses.

7.8CVSS6.5AI score0.00852EPSS

CVE•added 2007/03/28 10:19 p.m.•46 views

CVE-2007-1734

The DCCP support in the do_dccp_getsockopt function in net/dccp/proto.c in Linux kernel 2.6.20 and later does not verify the upper bounds of the optlen value, which allows local users running on certain architectures to read kernel memory or cause a denial of service (oops), a related issue to CVE-...

7.2CVSS6AI score0.00377EPSS

CVE•added 2010/03/16 7:30 p.m.•46 views

CVE-2007-6733

The nfs_lock function in fs/nfs/file.c in the Linux kernel 2.6.9 does not properly remove POSIX locks on files that are setgid without group-execute permission, which allows local users to cause a denial of service (BUG and system crash) by locking a file on an NFS filesystem and then changing this...

4.7CVSS4.9AI score0.00073EPSS

CVE•added 2009/09/17 10:30 a.m.•46 views

CVE-2009-3234

Buffer overflow in the perf_copy_attr function in kernel/perf_counter.c in the Linux kernel 2.6.31-rc1 allows local users to cause a denial of service (crash) and execute arbitrary code via a "big size data" to the perf_counter_open system call.

4.9CVSS7.3AI score0.01011EPSS

Web

CVE•added 2009/12/24 4:30 p.m.•46 views

CVE-2009-4410

The fuse_ioctl_copy_user function in the ioctl handler in fs/fuse/file.c in the Linux kernel 2.6.29-rc1 through 2.6.30.y uses the wrong variable in an argument to the kunmap function, which allows local users to cause a denial of service (panic) via unknown vectors.

4.9CVSS6.9AI score0.00066EPSS

CVE•added 2013/04/22 11:41 a.m.•46 views

CVE-2013-3233

The llcp_sock_recvmsg function in net/nfc/llcp/sock.c in the Linux kernel before 3.9-rc7 does not initialize a certain length variable and a certain data structure, which allows local users to obtain sensitive information from kernel stack memory via a crafted recvmsg or recvfrom system call.

4.9CVSS5.3AI score0.00073EPSS

CVE•added 2017/01/12 3:59 p.m.•46 views

CVE-2016-6759

An elevation of privilege vulnerability in Qualcomm media codecs could enable a local malicious application to execute arbitrary code within the context of a privileged process. This issue is rated as High because it could be used to gain local access to elevated capabilities, which are not normall...

9.3CVSS7.3AI score0.00151EPSS

CVE•added 2017/01/12 3:59 p.m.•46 views

CVE-2016-6777

An elevation of privilege vulnerability in the NVIDIA GPU driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may require reflashing the ope...

9.3CVSS7.4AI score0.00158EPSS

7.6CVSS6.7AI score0.0024EPSS

CVE-2016-8417

An elevation of privilege vulnerability in the Qualcomm camera driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Moderate because it first requires compromising a privileged process and is mitigated by current platfo...

CVE•added 2017/01/12 8:59 p.m.•46 views

CVE-2016-8424

9.3CVSS7.4AI score0.00256EPSS

CVE•added 2017/01/12 8:59 p.m.•46 views

CVE-2016-8457

An elevation of privilege vulnerability in the Broadcom Wi-Fi driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.1...

7.6CVSS6.9AI score0.00187EPSS

CVE•added 2017/01/12 8:59 p.m.•46 views

CVE-2016-8460

An information disclosure vulnerability in the NVIDIA video driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as High because it could be used to access sensitive data without explicit user permission. Product: Android. Versions: ...

5.5CVSS5.2AI score0.00226EPSS

CVE•added 2017/02/08 3:59 p.m.•46 views

CVE-2016-8480

7.6CVSS6.7AI score0.00138EPSS

CVE•added 2017/02/08 3:59 p.m.•46 views

CVE-2016-8481

7.6CVSS6.6AI score0.00137EPSS

9.3CVSS7.2AI score0.0024EPSS

CVE-2017-0307

9.3CVSS7.2AI score0.00254EPSS

CVE-2017-0333

CVE•added 2017/02/08 3:59 p.m.•46 views

CVE-2017-0447

An elevation of privilege vulnerability in the HTC touchscreen driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3....

7.6CVSS6.6AI score0.00137EPSS

CVE•added 2017/04/07 10:59 p.m.•46 views

CVE-2017-0462

An elevation of privilege vulnerability in the Qualcomm Seemp driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.1...

7.6CVSS6.9AI score0.00188EPSS

4.7CVSS4.3AI score0.00283EPSS

CVE-2017-0534

An information disclosure vulnerability in the Qualcomm video driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it first requires compromising a privileged process. Product: Android. Versions: Kernel-3.18. Andr...

CVE•added 2017/04/07 10:59 p.m.•46 views

CVE-2017-0567

7.6CVSS6.9AI score0.00254EPSS

CVE•added 2017/04/07 10:59 p.m.•46 views

CVE-2017-0577

7.6CVSS6.9AI score0.00254EPSS

CVE•added 2017/05/12 3:29 p.m.•46 views

CVE-2017-0611

CVE•added 2017/05/12 3:29 p.m.•46 views

CVE-2017-0622

An elevation of privilege vulnerability in the Goodix touchscreen driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. Versions: Kernel...