Linux Kernel@2.6.20.1 Security Vulnerabilities and Issues — Page 3 of Linux Kernel@2.6.20.1 CVE List

Lucene search

LinuxLinux Kernel2.6.20.1

121 matches found

CVE•added 2012/01/27 3:55 p.m.•50 views

CVE-2011-4325

The NFS implementation in Linux kernel before 2.6.31-rc6 calls certain functions without properly initializing certain data, which allows local users to cause a denial of service (NULL pointer dereference and O_DIRECT oops), as demonstrated using diotest4 from LTP.

4.9CVSS5.6AI score0.00204EPSS

CVE•added 2000/02/04 5:0 a.m.•49 views

CVE-1999-0461

Versions of rpcbind including Linux, IRIX, and Wietse Venema's rpcbind allow a remote attacker to insert and delete entries by spoofing a source address.

10CVSS7AI score0.01271EPSS

CVE•added 2005/01/29 5:0 a.m.•49 views

CVE-2004-1057

Multiple drivers in Linux kernel 2.4.19 and earlier do not properly mark memory with the VM_IO flag, which causes incorrect reference counts and may lead to a denial of service (kernel panic) when accessing freed kernel pages.

7.2CVSS7.2AI score0.00051EPSS

CVE•added 2009/01/13 5:0 p.m.•49 views

CVE-2009-0024

The sys_remap_file_pages function in mm/fremap.c in the Linux kernel before 2.6.24.1 allows local users to cause a denial of service or gain privileges via unspecified vectors, related to the vm_file structure member, and the mmap_region and do_munmap functions.

7.2CVSS6.7AI score0.00047EPSS

CVE•added 2009/02/17 5:30 p.m.•49 views

CVE-2009-0605

Stack consumption vulnerability in the do_page_fault function in arch/x86/mm/fault.c in the Linux kernel before 2.6.28.5 allows local users to cause a denial of service (memory corruption) or possibly gain privileges via unspecified vectors that trigger page faults on a machine that has a registere...

4.9CVSS6.8AI score0.00053EPSS

CVE•added 2000/02/04 5:0 a.m.•48 views

CVE-1999-0216

Denial of service of inetd on Linux through SYN and RST packets.

5CVSS7.4AI score0.00588EPSS

CVE•added 2009/09/02 5:30 p.m.•46 views

CVE-2009-3043

The tty_ldisc_hangup function in drivers/char/tty_ldisc.c in the Linux kernel 2.6.31-rc before 2.6.31-rc8 allows local users to cause a denial of service (system crash, sometimes preceded by a NULL pointer dereference) or possibly gain privileges via certain pseudo-terminal I/O activity, as demonst...

4.9CVSS6.9AI score0.00128EPSS

CVE•added 2009/10/30 8:30 p.m.•46 views

CVE-2009-3623

The lookup_cb_cred function in fs/nfsd/nfs4callback.c in the nfsd4 subsystem in the Linux kernel before 2.6.31.2 attempts to access a credentials cache even when a client specifies the AUTH_NULL authentication flavor, which allows remote attackers to cause a denial of service (NULL pointer derefere...

7.8CVSS7.3AI score0.01408EPSS

CVE•added 2009/11/16 7:30 p.m.•46 views

CVE-2009-3888

The do_mmap_pgoff function in mm/nommu.c in the Linux kernel before 2.6.31.6, when the CPU lacks a memory management unit, allows local users to cause a denial of service (OOPS) via an application that attempts to allocate a large amount of memory.

4.9CVSS7AI score0.00122EPSS

CVE•added 2000/02/04 5:0 a.m.•45 views

CVE-1999-0195

Denial of service in RPC portmapper allows attackers to register or unregister RPC services or spoof RPC services using a spoofed source IP address such as 127.0.0.1.

5CVSS7.2AI score0.00141EPSS

CVE•added 2006/04/05 10:4 a.m.•45 views

CVE-2006-1624

The default configuration of syslogd in the Linux sysklogd package does not enable the -x (disable name lookups) option, which allows remote attackers to cause a denial of service (traffic amplification) via messages with spoofed source IP addresses.

7.8CVSS6.5AI score0.00852EPSS

CVE•added 2007/03/28 10:19 p.m.•45 views

CVE-2007-1734

The DCCP support in the do_dccp_getsockopt function in net/dccp/proto.c in Linux kernel 2.6.20 and later does not verify the upper bounds of the optlen value, which allows local users running on certain architectures to read kernel memory or cause a denial of service (oops), a related issue to CVE-...

7.2CVSS6AI score0.00377EPSS

CVE•added 2000/02/04 5:0 a.m.•43 views

CVE-1999-0257

Nestea variation of teardrop IP fragmentation denial of service.

5CVSS6.8AI score0.00504EPSS

CVE•added 2000/02/04 5:0 a.m.•43 views

CVE-1999-0330

Linux bdash game has a buffer overflow that allows local users to gain root access.

7.2CVSS7.8AI score0.00063EPSS

CVE•added 2000/02/04 5:0 a.m.•42 views

CVE-1999-0171

Denial of service in syslog by sending it a large number of superfluous messages.

2.1CVSS6.8AI score0.00173EPSS

CVE•added 1999/09/29 4:0 a.m.•42 views

CVE-1999-0245

Some configurations of NIS+ in Linux allowed attackers to log in as the user "+".

4.6CVSS7.3AI score0.00082EPSS

CVE•added 2000/04/25 4:0 a.m.•42 views

CVE-1999-0780

KDE klock allows local users to kill arbitrary processes by specifying an arbitrary PID in the .kss.pid file.

4.6CVSS7.1AI score0.00073EPSS

CVE•added 2002/06/25 4:0 a.m.•39 views

CVE-2002-0046

Linux kernel, and possibly other operating systems, allows remote attackers to read portions of memory via a series of fragmented ICMP packets that generate an ICMP TTL Exceeded response, which includes portions of the memory in the response packet.

5CVSS7AI score0.01202EPSS

CVE•added 2000/04/25 4:0 a.m.•37 views

CVE-1999-0782

KDE kppp allows local users to create a directory in an arbitrary location via the HOME environmental variable.

2.1CVSS7.1AI score0.00112EPSS

CVE•added 2000/04/25 4:0 a.m.•34 views

CVE-1999-0781

KDE allows local users to execute arbitrary commands by setting the KDEDIR environmental variable to modify the search path that KDE uses to locate its executables.

7.2CVSS8AI score0.00102EPSS

CVE•added 2002/03/09 5:0 a.m.•34 views

CVE-1999-1276

fte-console in the fte package before 0.46b-4.1 does not drop root privileges, which allows local users to gain root access via the virtual console device.

7.2CVSS7.3AI score0.00046EPSS

Total number of security vulnerabilities121