Linux Kernel@2.3.0 Security Vulnerabilities and Issues — Linux Kernel@2.3.0 CVE List

Lucene search

LinuxLinux Kernel2.3.0

12 matches found

CVE•added 2008/10/20 5:59 p.m.•483 views

CVE-2008-4609

The TCP implementation in (1) Linux, (2) platforms based on BSD Unix, (3) Microsoft Windows, (4) Cisco products, and probably other operating systems allows remote attackers to cause a denial of service (connection queue exhaustion) via multiple vectors that manipulate information in the TCP state ...

7.1CVSS8.8AI score0.00461EPSS

CVE•added 2004/12/23 5:0 a.m.•68 views

CVE-2004-0685

Certain USB drivers in the Linux 2.4 kernel use the copy_to_user function on uninitialized structures, which could allow local users to obtain sensitive information by reading memory that was not cleared from previous usage.

4.6CVSS5.3AI score0.00149EPSS

CVE•added 2005/03/14 5:0 a.m.•63 views

CVE-2005-0504

Buffer overflow in the MoxaDriverIoctl function for the moxa serial driver (moxa.c) in Linux 2.2.x, 2.4.x, and 2.6.x before 2.6.22 allows local users to execute arbitrary code via a certain modified length value.

4.6CVSS5.9AI score0.00148EPSS

CVE•added 2005/03/07 5:0 a.m.•61 views

CVE-2005-0178

Race condition in the setsid function in Linux before 2.6.8.1 allows local users to cause a denial of service (crash) and possibly access portions of kernel memory, related to TTY changes, locking, and semaphores.

6.2CVSS5.2AI score0.00048EPSS

CVE•added 2005/05/02 4:0 a.m.•61 views

CVE-2005-0815

Multiple "range checking flaws" in the ISO9660 filesystem handler in Linux 2.6.11 and earlier may allow attackers to cause a denial of service or corrupt memory via a crafted filesystem.

6.4CVSS5.2AI score0.09342EPSS

CVE•added 2000/10/13 4:0 a.m.•53 views

CVE-2000-0344

The knfsd NFS server in Linux kernel 2.2.x allows remote attackers to cause a denial of service via a negative size value.

5CVSS6.8AI score0.00655EPSS

CVE•added 2000/02/04 5:0 a.m.•51 views

CVE-1999-0460

Buffer overflow in Linux autofs module through long directory names allows local users to perform a denial of service.

2.1CVSS6.9AI score0.00192EPSS

CVE•added 2005/06/28 4:0 a.m.•51 views

CVE-2002-1976

ifconfig, when used on the Linux kernel 2.2 and later, does not report when the network interface is in promiscuous mode if it was put in promiscuous mode using PACKET_MR_PROMISC, which could allow attackers to sniff the network without detection, as demonstrated using libpcap.

2.1CVSS6.5AI score0.00075EPSS

CVE•added 2005/04/05 4:0 a.m.•51 views

CVE-2005-0749

The load_elf_library in the Linux kernel before 2.6.11.6 allows local users to cause a denial of service (kernel crash) via a crafted ELF library or executable, which causes a free of an invalid pointer.

7.2CVSS5AI score0.00043EPSS

CVE•added 2005/01/29 5:0 a.m.•49 views

CVE-2004-1057

Multiple drivers in Linux kernel 2.4.19 and earlier do not properly mark memory with the VM_IO flag, which causes incorrect reference counts and may lead to a denial of service (kernel panic) when accessing freed kernel pages.

7.2CVSS7.2AI score0.00051EPSS

CVE•added 2002/08/12 4:0 a.m.•44 views

CVE-2002-0499

The d_path function in Linux kernel 2.2.20 and earlier, and 2.4.18 and earlier, truncates long pathnames without generating an error, which could allow local users to force programs to perform inappropriate operations on the wrong directories.

2.1CVSS6.6AI score0.00461EPSS

CVE•added 2006/01/09 11:0 a.m.•42 views

CVE-2005-4635

The nl_fib_input function in fib_frontend.c in the Linux kernel before 2.6.15 does not check for valid lengths of the header and payload, which allows remote attackers to cause a denial of service (invalid memory reference) via malformed fib_lookup netlink messages.

5CVSS6.6AI score0.01476EPSS