5 matches found
CVE-2017-12192
CVE-2017-12192 affects the Linux kernel Key Management subcomponent: keyctl_read_key in security/keys/keyctl.c may be read on negatively instantiated keys, enabling a local attacker to cause a denial of service (kernel oops and crash). Affected: kernel before 4.13.5; fix implemented in 4.13.5 (Ch...
CVE-2018-1091
The CVE-2018-1091 entry is supported by connected advisories describing Linux kernel vulnerability on POWERPC: In arch/powerpc/kernel/ptrace.c, the function flush_tmregs_to_thread before 4.13.5 can crash a guest kernel when a core dump occurs, due to a missing processor feature check and an erron...
CVE-2017-15537
The CVE-2017-15537 issue affects the x86 FPU state handling in the Linux kernel prior to 4.13.5. If a CPU supports xsave but not xsaves, ptrace() or rt_sigreturn() mishandles reserved xstate header bits, enabling local users to read other processes’ FPU registers. A fix is provided in Linux kerne...
CVE-2017-14954
CVE-2017-14954 affects the Linux kernel: the waitid implementation in waitid.c? actually kernel/exit.c in the Linux kernel up to 4.13.4 accesses rusage data structures in unintended cases, enabling local users to obtain sensitive information and bypass the KASLR protection via a crafted system ca...
CVE-2022-49892
CVE-2022-49892 — Linux kernel (ftrace): A use-after-free was fixed in dynamic ftrace_ops handling. KASAN reported use-after-free when two dynamic ftrace_ops with identical content were registered, and on unregistering the second op, FTRACE_UPDATE_CALLS and FTRACE_UPDATE_TRACE_FUNC could be skippe...