Linux Kernel Security Vulnerabilities and Issues — Linux Kernel CVE List

Lucene search

LinuxLinux Kernel

5 matches found

CVE•added 2008/02/08 2:0 a.m.•89 views

CVE-2008-0007

Linux kernel before 2.6.22.17, when using certain drivers that register a fault handler that does not perform range checks, allows local users to access kernel memory via an out-of-range offset.

7.2CVSS5.1AI score0.00107EPSS

CVE•added 2008/02/12 9:0 p.m.•79 views

CVE-2008-0600

The vmsplice_to_pipe function in Linux kernel 2.6.17 through 2.6.24.1 does not validate a certain userspace pointer before dereference, which allows local users to gain root privileges via crafted arguments in a vmsplice system call, a different vulnerability than CVE-2008-0009 and CVE-2008-0010.

7.2CVSS6AI score0.01003EPSS

CVE•added 2008/02/12 9:0 p.m.•71 views

CVE-2008-0010

The copy_from_user_mmap_sem function in fs/splice.c in the Linux kernel 2.6.22 through 2.6.24 does not validate a certain userspace pointer before dereference, which allow local users to read from arbitrary kernel memory locations.

2.1CVSS5.8AI score0.0024EPSS

CVE•added 2008/02/12 9:0 p.m.•61 views

CVE-2008-0009

The vmsplice_to_user function in fs/splice.c in the Linux kernel 2.6.22 through 2.6.24 does not validate a certain userspace pointer before dereference, which might allow local users to access arbitrary kernel memory locations.

2.1CVSS5.9AI score0.01003EPSS

CVE•added 2008/02/12 9:0 p.m.•43 views

CVE-2008-0163

Linux kernel 2.6, when using vservers, allows local users to access resources of other vservers via a symlink attack in /proc.

4.4CVSS5.7AI score0.00032EPSS