VYPR

Kernel

by Linux

Source repositories

CVEs (15,353)

  • CVE-2008-1514Mar 26, 2008
    risk 0.00cvss epss 0.01

    arch/s390/kernel/ptrace.c in Linux kernel 2.6.9, and other versions before 2.6.27-rc6, on s390 platforms allows local users to cause a denial of service (kernel panic) via the user-area-padding test from the ptrace testsuite in 31-bit mode, which triggers an invalid dereference.

  • CVE-2008-1367Mar 17, 2008
    risk 0.00cvss epss 0.03

    gcc 4.3.x does not generate a cld instruction while compiling functions used for string manipulation such as memcpy and memmove on x86 and i386, which can prevent the direction flag (DF) from being reset in violation of ABI conventions and cause data to be copied in the wrong…

  • CVE-2008-0163Feb 12, 2008
    risk 0.00cvss epss 0.00

    Linux kernel 2.6, when using vservers, allows local users to access resources of other vservers via a symlink attack in /proc.

  • CVE-2008-0731Feb 12, 2008
    risk 0.00cvss epss 0.01

    The Linux kernel before 2.6.18.8-0.8 in SUSE openSUSE 10.2 does not properly handle failure of an AppArmor change_hat system call, which might allow attackers to trigger the unconfining of an apparmored task.

  • CVE-2008-0007Feb 8, 2008
    risk 0.00cvss epss 0.00

    Linux kernel before 2.6.22.17, when using certain drivers that register a fault handler that does not perform range checks, allows local users to access kernel memory via an out-of-range offset.

  • CVE-2007-4130Feb 5, 2008
    risk 0.00cvss epss 0.00

    The Linux kernel 2.6.9 before 2.6.9-67 in Red Hat Enterprise Linux (RHEL) 4 on Itanium (ia64) does not properly handle page faults during NUMA memory access, which allows local users to cause a denial of service (panic) via invalid arguments to set_mempolicy in an MPOL_BIND…

  • CVE-2007-4998Jan 31, 2008
    risk 0.00cvss epss 0.00

    cp, when running with an option to preserve symlinks on multiple OSes, allows local, user-assisted attackers to overwrite arbitrary files via a symlink attack using crafted directories containing multiple source files that are copied to the same destination.

  • CVE-2007-6694Jan 29, 2008
    risk 0.00cvss epss 0.03

    The chrp_show_cpuinfo function (chrp/setup.c) in Linux kernel 2.4.21 through 2.6.18-53, when running on PowerPC, might allow local users to cause a denial of service (crash) via unknown vectors that cause the of_get_property function to fail, which triggers a NULL pointer…

  • CVE-2008-0001Jan 15, 2008
    risk 0.00cvss epss 0.00

    VFS in the Linux kernel before 2.6.22.16, and 2.6.23.x before 2.6.23.14, performs tests of access mode by using the flag variable instead of the acc_mode variable, which might allow local users to bypass intended permissions and remove directories.

  • CVE-2007-5966Dec 20, 2007
    risk 0.00cvss epss 0.00

    Integer overflow in the hrtimer_start function in kernel/hrtimer.c in the Linux kernel before 2.6.23.10 allows local users to execute arbitrary code or cause a denial of service (panic) via a large relative timeout value. NOTE: some of these details are obtained from third…

  • CVE-2007-6434Dec 18, 2007
    risk 0.00cvss epss 0.00

    Linux kernel 2.6.23 allows local users to create low pages in virtual userspace memory and bypass mmap_min_addr protection via a crafted executable file that calls the do_brk function.

  • CVE-2007-6417Dec 18, 2007
    risk 0.00cvss epss 0.00

    The shmem_getpage function (mm/shmem.c) in Linux kernel 2.6.11 through 2.6.23 does not properly clear allocated memory in some rare circumstances related to tmpfs, which might allow local users to read sensitive kernel data or cause a denial of service (crash).

  • CVE-2007-6151Dec 15, 2007
    risk 0.00cvss epss 0.01

    The isdn_ioctl function in isdn_common.c in Linux kernel 2.6.23 allows local users to cause a denial of service via a crafted ioctl struct in which iocts is not null terminated, which triggers a buffer overflow.

  • CVE-2007-6206Dec 4, 2007
    risk 0.00cvss epss 0.00

    The do_coredump function in fs/exec.c in Linux kernel 2.4.x and 2.6.x up to 2.6.24-rc3, and possibly other versions, does not change the UID of a core dump file if it exists before a root process creates a core dump in the same location, which might allow local users to obtain…

  • CVE-2007-6063Nov 21, 2007
    risk 0.00cvss epss 0.00

    Buffer overflow in the isdn_net_setcfg function in isdn_net.c in Linux kernel 2.6.23 allows local users to have an unknown impact via a crafted argument to the isdn_ioctl function.

  • CVE-2007-5500Nov 20, 2007
    risk 0.00cvss epss 0.00

    The wait_task_stopped function in the Linux kernel before 2.6.23.8 checks a TASK_TRACED bit instead of an exit_state value, which allows local users to cause a denial of service (machine crash) via unspecified vectors. NOTE: some of these details are obtained from third party…

  • CVE-2007-5501Nov 15, 2007
    risk 0.00cvss epss 0.04

    The tcp_sacktag_write_queue function in net/ipv4/tcp_input.c in Linux kernel 2.6.21 through 2.6.23.7, and 2.6.24-rc through 2.6.24-rc2, allows remote attackers to cause a denial of service (crash) via crafted ACK responses that trigger a NULL pointer dereference.

  • CVE-2007-5904Nov 9, 2007
    risk 0.00cvss epss 0.02

    Multiple buffer overflows in CIFS VFS in Linux kernel 2.6.23 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via long SMB responses that trigger the overflows in the SendReceive function.

  • CVE-2007-4997Nov 6, 2007
    risk 0.00cvss epss 0.03

    Integer underflow in the ieee80211_rx function in net/ieee80211/ieee80211_rx.c in the Linux kernel 2.6.x before 2.6.23 allows remote attackers to cause a denial of service (crash) via a crafted SKB length value in a runt IEEE 802.11 frame when the IEEE80211_STYPE_QOS_DATA flag…

  • CVE-2007-3850Oct 23, 2007
    risk 0.00cvss epss 0.00

    The eHCA driver in Linux kernel 2.6 before 2.6.22, when running on PowerPC, does not properly map userspace resources, which allows local users to read portions of physical address space.

Page 750 of 768