Linux Kernel Security Vulnerabilities and Issues — Linux Kernel CVE List

Lucene search

LinuxLinux Kernel

16 matches found

CVE•added 2005/09/14 7:3 p.m.•69 views

CVE-2005-2490

Stack-based buffer overflow in the sendmsg function call in the Linux kernel 2.6 before 2.6.13.1 allows local users to execute arbitrary code by calling sendmsg and modifying the message contents in another thread.

4.6CVSS5.9AI score0.00186EPSS

CVE•added 2005/09/06 5:3 p.m.•69 views

CVE-2005-2801

xattr.c in the ext2 and ext3 file system code for Linux kernel 2.6 does not properly compare the name_index fields when sharing xattr blocks, which could prevent default ACLs from being applied.

7.5CVSS7.3AI score0.03343EPSS

CVE•added 2005/09/26 7:3 p.m.•65 views

CVE-2005-3055

Linux kernel 2.6.8 to 2.6.14-rc2 allows local users to cause a denial of service (kernel OOPS) via a userspace process that issues a USB Request Block (URB) to a USB device and terminates before the URB is finished, which leads to a stale pointer reference.

2.1CVSS4.9AI score0.0009EPSS

CVE•added 2005/09/14 7:3 p.m.•62 views

CVE-2005-2492

The raw_sendmsg function in the Linux kernel 2.6 before 2.6.13.1 allows local users to cause a denial of service (change hardware state) or read from arbitrary memory via crafted input.

3.6CVSS5.6AI score0.00071EPSS

CVE•added 2005/09/30 10:5 a.m.•62 views

CVE-2005-3109

The HFS and HFS+ (hfsplus) modules in Linux 2.6 allow attackers to cause a denial of service (oops) by using hfsplus to mount a filesystem that is not hfsplus.

2.1CVSS4.9AI score0.00071EPSS

CVE•added 2005/09/06 5:3 p.m.•61 views

CVE-2005-2800

Memory leak in the seq_file implementation in the SCSI procfs interface (sg.c) in Linux kernel 2.6.13 and earlier allows local users to cause a denial of service (memory consumption) via certain repeated reads from the /proc/scsi/sg/devices file, which is not properly handled when the next() iterat...

2.1CVSS4.9AI score0.00159EPSS

CVE•added 2005/09/09 7:7 p.m.•60 views

CVE-2005-2872

The ipt_recent kernel module (ipt_recent.c) in Linux kernel before 2.6.12, when running on 64-bit processors such as AMD64, allows remote attackers to cause a denial of service (kernel panic) via certain attacks such as SSH brute force, which leads to memset calls using a length based on the u_int3...

5CVSS7.1AI score0.05642EPSS

CVE•added 2005/09/22 9:3 p.m.•60 views

CVE-2005-3044

Multiple vulnerabilities in Linux kernel before 2.6.13.2 allow local users to cause a denial of service (kernel OOPS from null dereference) via (1) fput in a 32-bit ioctl on 64-bit x86 systems or (2) sockfd_put in the 32-bit routing_ioctl function on 64-bit systems.

2.1CVSS5.2AI score0.0012EPSS

CVE•added 2005/09/30 10:5 a.m.•59 views

CVE-2005-3108

mm/ioremap.c in Linux 2.6 on 64-bit x86 systems allows local users to cause a denial of service or an information leak via an ioremap on a certain memory map that causes the iounmap to perform a lookup of a page that does not exist.

2.1CVSS5.6AI score0.00066EPSS

CVE•added 2005/09/26 7:3 p.m.•58 views

CVE-2005-3053

The sys_set_mempolicy function in mempolicy.c in Linux kernel 2.6.x allows local users to cause a denial of service (kernel BUG()) via a negative first argument.

2.1CVSS4.8AI score0.00095EPSS

CVE•added 2005/09/30 10:5 a.m.•58 views

CVE-2005-3105

The mprotect code (mprotect.c) in Linux 2.6 on Itanium IA64 Montecito processors does not properly maintain cache coherency as required by the architecture, which allows local users to cause a denial of service and possibly corrupt data by modifying PTE protections.

2.1CVSS7.3AI score0.00066EPSS

CVE•added 2005/09/30 10:5 a.m.•57 views

CVE-2005-3106

Race condition in Linux 2.6, when threads are sharing memory mapping via CLONE_VM (such as linuxthreads and vfork), might allow local users to cause a denial of service (deadlock) by triggering a core dump while waiting for a thread that has just performed an exec.

4.7CVSS4.8AI score0.00078EPSS

CVE•added 2005/09/30 10:5 a.m.•57 views

CVE-2005-3107

fs/exec.c in Linux 2.6, when one thread is tracing another thread that shares the same memory map, might allow local users to cause a denial of service (deadlock) by forcing a core dump when the traced thread is in the TASK_TRACED state.

2.1CVSS5.5AI score0.00091EPSS

CVE•added 2005/09/14 7:3 p.m.•56 views

CVE-2005-1913

The Linux kernel 2.6 before 2.6.12.1 allows local users to cause a denial of service (kernel panic) via a non group-leader thread executing a different program than was pending in itimer, which causes the signal to be delivered to the old group-leader task, which does not exist.

2.1CVSS7AI score0.00063EPSS

CVE•added 2005/09/30 10:5 a.m.•53 views

CVE-2005-3110

Race condition in ebtables netfilter module (ebtables.c) in Linux 2.6, when running on an SMP system that is operating under a heavy load, might allow remote attackers to cause a denial of service (crash) via a series of packets that cause a value to be modified after it has been read but before it...

2.6CVSS5.7AI score0.02474EPSS

CVE•added 2005/09/09 7:7 p.m.•52 views

CVE-2005-2873

The ipt_recent kernel module (ipt_recent.c) in Linux kernel 2.6.12 and earlier does not properly perform certain time tests when the jiffies value is greater than LONG_MAX, which can cause ipt_recent netfilter rules to block too early, a different vulnerability than CVE-2005-2872.

2.1CVSS5.6AI score0.05642EPSS