VYPR

Kernel

by Linux

Source repositories

CVEs (15,353)

  • CVE-2006-5754Jan 30, 2007
    risk 0.00cvss epss 0.00

    The aio_setup_ring function in Linux kernel does not properly initialize a variable, which allows local users to cause a denial of service (crash) via an unspecified error path that causes an incorrect free operation.

  • CVE-2006-5753Jan 30, 2007
    risk 0.00cvss epss 0.00

    Unspecified vulnerability in the listxattr system call in Linux kernel, when a "bad inode" is present, allows local users to cause a denial of service (data corruption) and possibly gain privileges via unknown vectors.

  • CVE-2006-6921Jan 12, 2007
    risk 0.00cvss epss 0.00

    Unspecified versions of the Linux kernel allow local users to cause a denial of service (unrecoverable zombie process) via a program with certain instructions that prevent init from properly reaping a child whose parent has died.

  • CVE-2006-5755Dec 31, 2006
    risk 0.00cvss epss 0.00

    Linux kernel before 2.6.18, when running on x86_64 systems, does not properly save or restore EFLAGS during a context switch, which allows local users to cause a denial of service (crash) by causing SYSENTER to set an NT flag, which can trigger a crash on the IRET of the next…

  • CVE-2006-5749Dec 31, 2006
    risk 0.00cvss epss 0.00

    The isdn_ppp_ccp_reset_alloc_state function in drivers/isdn/isdn_ppp.c in the Linux 2.4 kernel before 2.4.34-rc4 does not call the init_timer function for the ISDN PPP CCP reset state timer, which has unknown attack vectors and results in a system crash.

  • CVE-2006-4814Dec 20, 2006
    risk 0.00cvss epss 0.01

    The mincore function in the Linux kernel before 2.4.33.6 does not properly lock access to user space, which has unspecified impact and attack vectors, possibly related to a deadlock.

  • CVE-2006-6106Dec 19, 2006
    risk 0.00cvss epss 0.06

    Multiple buffer overflows in the cmtp_recv_interopmsg function in the Bluetooth driver (net/bluetooth/cmtp/capi.c) in the Linux kernel 2.4.22 up to 2.4.33.4 and 2.6.2 before 2.6.18.6, and 2.6.19.x, allow remote attackers to cause a denial of service (crash) and possibly execute…

  • CVE-2006-6304Dec 14, 2006
    risk 0.00cvss epss 0.02

    The do_coredump function in fs/exec.c in the Linux kernel 2.6.19 sets the flag variable to O_EXCL but does not use it, which allows context-dependent attackers to modify arbitrary files via a rewrite attack during a core dump.

  • CVE-2006-5871Dec 11, 2006
    risk 0.00cvss epss 0.00

    smbfs in Linux kernel 2.6.8 and other versions, and 2.4.x before 2.4.34, when UNIX extensions are enabled, ignores certain mount options, which could cause clients to use server-specified uid, gid and mode settings.

  • CVE-2006-6333Dec 6, 2006
    risk 0.00cvss epss 0.03

    The tr_rx function in ibmtr.c for Linux kernel 2.6.19 assigns the wrong flag to the ip_summed field, which allows remote attackers to cause a denial of service (memory corruption) via crafted packets that cause the kernel to interpret another field as an offset.

  • CVE-2006-5751Dec 2, 2006
    risk 0.00cvss epss 0.00

    Integer overflow in the get_fdb_entries function in net/bridge/br_ioctl.c in the Linux kernel before 2.6.18.4 allows local users to execute arbitrary code via a large maxnum value in an ioctl request.

  • CVE-2006-6128Nov 27, 2006
    risk 0.00cvss epss 0.00

    The ReiserFS functionality in Linux kernel 2.6.18, and possibly other versions, allows local users to cause a denial of service via a malformed ReiserFS file system that triggers memory corruption when a sync is performed.

  • CVE-2006-6054Nov 22, 2006
    risk 0.00cvss epss 0.00

    The ext2 file system code in Linux kernel 2.6.x allows local users to cause a denial of service (crash) via an ext2 stream with malformed data structures that triggers an error in the ext2_check_page due to a length that is smaller than the minimum.

  • CVE-2006-6060Nov 22, 2006
    risk 0.00cvss epss 0.00

    The NTFS filesystem code in Linux kernel 2.6.x up to 2.6.18, and possibly other versions, allows local users to cause a denial of service (CPU consumption) via a malformed NTFS file stream that triggers an infinite loop in the __find_get_block_slow function.

  • CVE-2006-6058Nov 22, 2006
    risk 0.00cvss epss 0.00

    The minix filesystem code in Linux kernel 2.6.x before 2.6.24, including 2.6.18, allows local users to cause a denial of service (hang) via a malformed minix file stream that triggers an infinite loop in the minix_bmap function. NOTE: this issue might be due to an integer…

  • CVE-2006-6053Nov 22, 2006
    risk 0.00cvss epss 0.01

    The ext3fs_dirhash function in Linux kernel 2.6.x allows local users to cause a denial of service (crash) via an ext3 stream with malformed data structures.

  • CVE-2006-6056Nov 22, 2006
    risk 0.00cvss epss 0.01

    Linux kernel 2.6.x up to 2.6.18 and possibly other versions, when SELinux hooks are enabled, allows local users to cause a denial of service (crash) via a malformed file stream that triggers a NULL pointer dereference in the superblock_doinit function, as demonstrated using an…

  • CVE-2006-6057Nov 22, 2006
    risk 0.00cvss epss 0.00

    The Linux kernel 2.6.x up to 2.6.18, and possibly other versions, on Fedora Core 6 and possibly other operating systems, allows local users to cause a denial of service (crash) via a malformed gfs2 file stream that triggers a NULL pointer dereference in the init_journal function.

  • CVE-2006-5823Nov 9, 2006
    risk 0.00cvss epss 0.00

    The zlib_inflate function in Linux kernel 2.6.x allows local users to cause a denial of service (crash) via a malformed filesystem that uses zlib compression that triggers memory corruption, as demonstrated using cramfs.

  • CVE-2006-4572Nov 7, 2006
    risk 0.00cvss epss 0.04

    ip6_tables in netfilter in the Linux kernel before 2.6.16.31 allows remote attackers to (1) bypass a rule that disallows a protocol, via a packet with the protocol header not located immediately after the fragment header, aka "ip6_tables protocol bypass bug;" and (2) bypass a…

Page 753 of 768