4 matches found
CVE-2017-2647
CVE-2017-2647 affects the Linux kernel KEYS subsystem (keyring_search_iterator in keyring.c) and allows a local, authenticated user to trigger a NULL pointer dereference, enabling a crash or possible privilege escalation. The vulnerability is documented across multiple advisories; remediation is ...
CVE-2014-9922
CVE-2014-9922 affects the Linux kernel’s eCryptfs subsystem, where the combination of eCryptfs and an overlayfs stack can let a local user gain privileges. The issue is triggered by a vulnerability in fs/ecryptfs/main.c and fs/overlayfs/super.c, with impact described as local privilege escalation...
CVE-2015-3332
CVE-2015-3332 affects the Linux kernel TCP Fast Open code before 3.18, where a count is not correctly maintained, allowing a local user to crash the system (DoS) via the Fast Open feature. Demonstrated on certain 3.10.x–3.16.x kernels by visiting chrome://flags/#enable-tcp-fast-open. The issue is...
CVE-2026-46303
The CVE-2026-46303 vulnerability affects the Linux kernel isofs Rock Ridge CE handling. rock_continue() could use rs->cont_extent without validating the block number, allowing potential reads of data from an adjacent filesystem via sb_bread() on crafted ISO mounts. The issue was addressed by p...