Lucene search
K
LinuxLinux Kernel3.0.0

10 matches found

CVE
CVE
added 2016/05/09 10:0 a.m.166 views

CVE-2015-0571

CVE-2015-0571 is a local privilege-escalation in the WLAN driver for the Linux kernel as used in Qualcomm QuIC Android contributions (MSM devices and related products). The issue arises from the driver’s lack of authorization checks for private SET IOCTL calls, allowing a crafted application to g...

9.3CVSS7.2AI score0.01354EPSS
CVE
CVE
added 2016/05/09 10:0 a.m.165 views

CVE-2015-0569

CVE-2015-0569 is a heap-based buffer overflow in the WLAN private wireless extensions IOCTL path (wlan_hdd_wext.c) of the Linux kernel 3.x–4.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices. The vulnerability allows a local attacker to escalate privileges via ...

9.3CVSS7.5AI score0.06468EPSS
CVE
CVE
added 2016/05/09 10:0 a.m.123 views

CVE-2015-0570

CVE-2015-0570 is a stack-based buffer overflow in the SET_WPS_IE IOCTL in wlan_hdd_hostapd.c of the Linux kernel WLAN driver (3.x/4.x), as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and similar products. Exploitation requires a crafted application with a long ...

9.3CVSS7.5AI score0.01751EPSS
CVE
CVE
added 2017/02/14 6:30 a.m.113 views

CVE-2017-5972

CVE-2017-5972 affects the Linux kernel 3.x TCP stack. The issue is that SYN cookies protection is not correctly applied for fast-network connection scenarios, enabling remote attackers to cause CPU denial of service by sending a flood of TCP SYN packets (as demonstrated against kernel-3.10.0 in C...

7.8CVSS7.1AI score0.2389EPSS
CVE
CVE
added 2016/05/02 10:0 a.m.104 views

CVE-2016-2853

CVE-2016-2853 – Linux kernel aufs Privilege Escalation : The vulnerability arises in the aufs module (Linux kernel 3.x/4.x) where mount namespace restrictions are insufficient. A local attacker can mount an aufs filesystem atop a FUSE filesystem and, by executing a crafted setuid program, escalat...

7.8CVSS7.3AI score0.00905EPSS
CVE
CVE
added 2015/11/16 11:0 a.m.99 views

CVE-2015-7312

CVE-2015-7312 affects the Linux kernel 3.x/4.x via race conditions in the aufs aufs3-mmap.patch and aufs4-mmap.patch patches. The vulnerability allows local users to cause denial of service (use-after-free/BUG) or potentially gain privileges through madvise or msync calls, related to mm/madvise.c...

4.4CVSS5.8AI score0.00389EPSS
CVE
CVE
added 2014/12/24 3:0 p.m.98 views

CVE-2014-4322

CVE-2014-4322 affects the Linux kernel 3.x QSEECOM driver. The qseecom.c ioctl logic does not validate certain offset, length, and base values, enabling a crafted application to escalate privileges or trigger memory corruption. Affected component: drivers/misc/qseecom.c in the QSEECOM driver used...

7.2CVSS7.2AI score0.02038EPSS
Web
CVE
CVE
added 2016/05/02 10:0 a.m.98 views

CVE-2016-2854

CVE-2016-2854 concerns the AUFS module in the Linux kernel (versions 3.x/4.x), which does not properly maintain POSIX ACL xattr data. This can allow a local attacker to gain privileges by exploiting a group-writable setgid directory. The connected documents confirm the vulnerability and its local...

7.8CVSS7.3AI score0.0095EPSS
CVE
CVE
added 2014/12/12 11:0 a.m.70 views

CVE-2014-4323

The CVE-2014-4323 issue affects the Linux kernel 3.x MDP display driver (mdp_lut_hw_update in drivers/video/msm/mdp.c) used in Qualcomm QuIC Android MSM contributions. The vulnerability stems from insufficient validation of certain start and length values in an ioctl call, enabling privilege esca...

7.5CVSS6.8AI score0.03598EPSS
CVE
CVE
added 2017/04/04 6:0 p.m.65 views

CVE-2016-5870

CVE-2016-5870 concerns the msm_ipc_router_close function in net/ipc_router/ipc_router_socket.c within the ipc_router component of the Linux kernel (3.x), as used in Qualcomm QuIC Android contributions for MSM devices. The vulnerability allows a denial of service via a NULL pointer dereference or ...

7.8CVSS7.8AI score0.00393EPSS