Kernel
by Linux
Source repositories
CVEs (15,869)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2001-1384 | 0.03 | — | 0.01 | Oct 18, 2001 | ptrace in Linux 2.2.x through 2.2.19, and 2.4.x through 2.4.9, allows local users to gain root privileges by running ptrace on a setuid or setgid program that itself calls an unprivileged program, such as newgrp. | |||
| CVE-2001-0907 | 0.03 | — | 0.01 | Oct 18, 2001 | Linux kernel 2.2.1 through 2.2.19, and 2.4.1 through 2.4.10, allows local users to cause a denial of service via a series of deeply nested symlinks, which causes the kernel to spend extra time when trying to access the link. | |||
| CVE-2001-0316 | 0.03 | — | 0.01 | May 3, 2001 | Linux kernel 2.4 and 2.2 allows local users to read kernel memory and possibly gain privileges via a negative argument to the sysctl call. | |||
| CVE-2001-0317 | 0.03 | — | 0.01 | May 3, 2001 | Race condition in ptrace in Linux kernel 2.4 and 2.2 allows local users to gain privileges by using ptrace to track and modify a running setuid process. | |||
| CVE-2000-0227 | 0.03 | — | 0.01 | Mar 23, 2000 | The Linux 2.2.x kernel does not restrict the number of Unix domain sockets as defined by the wmem_max parameter, which allows local users to cause a denial of service by requesting a large number of sockets. | |||
| CVE-1999-0986 | 0.03 | — | 0.04 | Dec 8, 1999 | The ping command in Linux 2.0.3x allows local users to cause a denial of service by sending large packets with the -R (record route) option. | |||
| CVE-1999-0720 | 0.03 | — | 0.01 | Aug 23, 1999 | The pt_chown command in Linux allows local users to modify TTY terminal devices that belong to other users. | |||
| CVE-1999-1166 | 0.03 | — | 0.01 | Jul 11, 1999 | Linux 2.0.37 does not properly encode the Custom segment limit, which allows local users to gain root privileges by accessing and modifying kernel memory. | |||
| CVE-1999-0804 | 0.03 | — | 0.06 | Jun 1, 1999 | Denial of service in Linux 2.2.x kernels via malformed ICMP packets containing unusual types, codes, and IP header lengths. | |||
| CVE-1999-0381 | 0.03 | — | 0.01 | Feb 26, 1999 | super 3.11.6 and other versions have a buffer overflow in the syslog utility which allows a local user to gain root access. | |||
| CVE-1999-0460 | 0.03 | — | 0.01 | Feb 19, 1999 | Buffer overflow in Linux autofs module through long directory names allows local users to perform a denial of service. | |||
| CVE-1999-0400 | 0.03 | — | 0.01 | Jan 26, 1999 | Denial of service in Linux 2.2.0 running the ldd command on a core file. | |||
| CVE-1999-0451 | 0.03 | — | 0.01 | Jan 19, 1999 | Denial of service in Linux 2.0.36 allows local users to prevent any server from listening on any non-privileged port. | |||
| CVE-1999-1441 | 0.03 | — | 0.01 | Jun 30, 1998 | Linux 2.0.34 does not properly prevent users from sending SIGIO signals to arbitrary processes, which allows local users to cause a denial of service by sending SIGIO to processes that do not catch it. | |||
| CVE-1999-1442 | 0.03 | — | 0.01 | Jun 22, 1998 | Bug in AMD K6 processor on Linux 2.0.x and 2.1.x kernels allows local users to cause a denial of service (crash) via a particular sequence of instructions, possibly related to accessing addresses outside of segments. | |||
| CVE-2018-5391 | Hig | 0.02 | 7.5 | 0.25 | Sep 6, 2018 | The Linux kernel, versions 3.9+, is vulnerable to a denial of service attack with low rates of specially modified packets targeting IP fragment re-assembly. An attacker may cause a denial of service condition by sending specially crafted IP fragments. Various vulnerabilities in… | ||
| CVE-2024-0582 | Hig | 0.01 | 7.8 | 0.13 | Jan 16, 2024 | A memory leak flaw was found in the Linux kernel’s io_uring functionality in how a user registers a buffer ring with IORING_REGISTER_PBUF_RING, mmap() it, and then frees it. This flaw allows a local user to crash or potentially escalate their privileges on the system. | ||
| CVE-2023-32233 | Hig | 0.01 | 7.8 | 0.13 | May 8, 2023 | In the Linux kernel through 6.3.1, a use-after-free in Netfilter nf_tables when processing batch requests can be abused to perform arbitrary read and write operations on kernel memory. Unprivileged local users can obtain root privileges. This occurs because anonymous sets are… | ||
| CVE-2022-4379 | Hig | 0.01 | 7.5 | 0.06 | Jan 10, 2023 | A use-after-free vulnerability was found in __nfs42_ssc_open() in fs/nfs/nfs4file.c in the Linux kernel. This flaw allows an attacker to conduct a remote denial | ||
| CVE-2021-20322 | Hig | 0.01 | 7.4 | 0.07 | Feb 18, 2022 | A flaw in the processing of received ICMP errors (ICMP fragment needed and ICMP redirect) in the Linux kernel functionality was found to allow the ability to quickly scan open UDP ports. This flaw allows an off-path remote user to effectively bypass the source port UDP… |
- CVE-2001-1384Oct 18, 2001risk 0.03cvss —epss 0.01
ptrace in Linux 2.2.x through 2.2.19, and 2.4.x through 2.4.9, allows local users to gain root privileges by running ptrace on a setuid or setgid program that itself calls an unprivileged program, such as newgrp.
- CVE-2001-0907Oct 18, 2001risk 0.03cvss —epss 0.01
Linux kernel 2.2.1 through 2.2.19, and 2.4.1 through 2.4.10, allows local users to cause a denial of service via a series of deeply nested symlinks, which causes the kernel to spend extra time when trying to access the link.
- CVE-2001-0316May 3, 2001risk 0.03cvss —epss 0.01
Linux kernel 2.4 and 2.2 allows local users to read kernel memory and possibly gain privileges via a negative argument to the sysctl call.
- CVE-2001-0317May 3, 2001risk 0.03cvss —epss 0.01
Race condition in ptrace in Linux kernel 2.4 and 2.2 allows local users to gain privileges by using ptrace to track and modify a running setuid process.
- CVE-2000-0227Mar 23, 2000risk 0.03cvss —epss 0.01
The Linux 2.2.x kernel does not restrict the number of Unix domain sockets as defined by the wmem_max parameter, which allows local users to cause a denial of service by requesting a large number of sockets.
- CVE-1999-0986Dec 8, 1999risk 0.03cvss —epss 0.04
The ping command in Linux 2.0.3x allows local users to cause a denial of service by sending large packets with the -R (record route) option.
- CVE-1999-0720Aug 23, 1999risk 0.03cvss —epss 0.01
The pt_chown command in Linux allows local users to modify TTY terminal devices that belong to other users.
- CVE-1999-1166Jul 11, 1999risk 0.03cvss —epss 0.01
Linux 2.0.37 does not properly encode the Custom segment limit, which allows local users to gain root privileges by accessing and modifying kernel memory.
- CVE-1999-0804Jun 1, 1999risk 0.03cvss —epss 0.06
Denial of service in Linux 2.2.x kernels via malformed ICMP packets containing unusual types, codes, and IP header lengths.
- CVE-1999-0381Feb 26, 1999risk 0.03cvss —epss 0.01
super 3.11.6 and other versions have a buffer overflow in the syslog utility which allows a local user to gain root access.
- CVE-1999-0460Feb 19, 1999risk 0.03cvss —epss 0.01
Buffer overflow in Linux autofs module through long directory names allows local users to perform a denial of service.
- CVE-1999-0400Jan 26, 1999risk 0.03cvss —epss 0.01
Denial of service in Linux 2.2.0 running the ldd command on a core file.
- CVE-1999-0451Jan 19, 1999risk 0.03cvss —epss 0.01
Denial of service in Linux 2.0.36 allows local users to prevent any server from listening on any non-privileged port.
- CVE-1999-1441Jun 30, 1998risk 0.03cvss —epss 0.01
Linux 2.0.34 does not properly prevent users from sending SIGIO signals to arbitrary processes, which allows local users to cause a denial of service by sending SIGIO to processes that do not catch it.
- CVE-1999-1442Jun 22, 1998risk 0.03cvss —epss 0.01
Bug in AMD K6 processor on Linux 2.0.x and 2.1.x kernels allows local users to cause a denial of service (crash) via a particular sequence of instructions, possibly related to accessing addresses outside of segments.
- risk 0.02cvss 7.5epss 0.25
The Linux kernel, versions 3.9+, is vulnerable to a denial of service attack with low rates of specially modified packets targeting IP fragment re-assembly. An attacker may cause a denial of service condition by sending specially crafted IP fragments. Various vulnerabilities in…
- risk 0.01cvss 7.8epss 0.13
A memory leak flaw was found in the Linux kernel’s io_uring functionality in how a user registers a buffer ring with IORING_REGISTER_PBUF_RING, mmap() it, and then frees it. This flaw allows a local user to crash or potentially escalate their privileges on the system.
- risk 0.01cvss 7.8epss 0.13
In the Linux kernel through 6.3.1, a use-after-free in Netfilter nf_tables when processing batch requests can be abused to perform arbitrary read and write operations on kernel memory. Unprivileged local users can obtain root privileges. This occurs because anonymous sets are…
- risk 0.01cvss 7.5epss 0.06
A use-after-free vulnerability was found in __nfs42_ssc_open() in fs/nfs/nfs4file.c in the Linux kernel. This flaw allows an attacker to conduct a remote denial
- risk 0.01cvss 7.4epss 0.07
A flaw in the processing of received ICMP errors (ICMP fragment needed and ICMP redirect) in the Linux kernel functionality was found to allow the ability to quickly scan open UDP ports. This flaw allows an off-path remote user to effectively bypass the source port UDP…
Page 595 of 794