VYPR

Kernel

by Linux

Source repositories

CVEs (15,353)

  • CVE-2005-0179Mar 7, 2005
    risk 0.00cvss epss 0.00

    Linux kernel 2.4.x and 2.6.x allows local users to cause a denial of service (CPU and memory consumption) and bypass RLIM_MEMLOCK limits via the mlockall call.

  • CVE-2005-0177Mar 7, 2005
    risk 0.00cvss epss 0.02

    nls_ascii.c in Linux before 2.6.8.1 uses an incorrect table size, which allows attackers to cause a denial of service (kernel crash) via a buffer overflow.

  • CVE-2005-0180Mar 7, 2005
    risk 0.00cvss epss 0.01

    Multiple integer signedness errors in the sg_scsi_ioctl function in scsi_ioctl.c for Linux 2.6.x allow local users to read or modify kernel memory via negative integers in arguments to the scsi ioctl, which bypass a maximum length check before calling the copy_from_user and…

  • CVE-2004-0986Mar 1, 2005
    risk 0.00cvss epss 0.02

    Iptables before 1.2.11, under certain conditions, does not properly load the required modules at system startup, which causes the firewall rules to fail to load and protect the system from remote attackers.

  • CVE-2005-0937Feb 22, 2005
    risk 0.00cvss epss 0.00

    Some futex functions in futex.c for Linux kernel 2.6.x perform get_user calls while holding the mmap_sem semaphore, which could allow local users to cause a deadlock condition in do_page_fault by triggering get_user faults while another thread is executing mmap or other…

  • CVE-2005-0176Feb 15, 2005
    risk 0.00cvss epss 0.02

    The shmctl function in Linux 2.6.9 and earlier allows local users to unlock the memory of other processes, which could cause sensitive memory to be swapped to disk, which could allow it to be read by other users once it has been released.

  • CVE-2004-0887Jan 27, 2005
    risk 0.00cvss epss 0.00

    SUSE Linux Enterprise Server 9 on the S/390 platform does not properly handle a certain privileged instruction, which allows local users to gain root privileges.

  • CVE-2004-1057Jan 21, 2005
    risk 0.00cvss epss 0.00

    Multiple drivers in Linux kernel 2.4.19 and earlier do not properly mark memory with the VM_IO flag, which causes incorrect reference counts and may lead to a denial of service (kernel panic) when accessing freed kernel pages.

  • CVE-2004-0883Jan 10, 2005
    risk 0.00cvss epss 0.04

    Multiple vulnerabilities in the samba filesystem (smbfs) in Linux kernel 2.4 and 2.6 allow remote samba servers to cause a denial of service (crash) or gain sensitive information from kernel memory via a samba server (1) returning more data than requested to the smb_proc_read…

  • CVE-2004-1069Jan 10, 2005
    risk 0.00cvss epss 0.00

    Race condition in SELinux 2.6.x through 2.6.9 allows local users to cause a denial of service (kernel crash) via SOCK_SEQPACKET unix domain sockets, which are not properly handled in the sock_dgram_sendmsg function.

  • CVE-2004-1070Jan 10, 2005
    risk 0.00cvss epss 0.01

    The load_elf_binary function in the binfmt_elf loader (binfmt_elf.c) in Linux kernel 2.4.x up to 2.4.27, and 2.6.x up to 2.6.8, does not properly check return values from calls to the kernel_read function, which may allow local users to modify sensitive memory in a setuid…

  • CVE-2004-1151Jan 10, 2005
    risk 0.00cvss epss 0.00

    Multiple buffer overflows in the (1) sys32_ni_syscall and (2) sys32_vm86_warning functions in sys_ia32.c for Linux 2.6.x may allow local attackers to modify kernel memory and gain privileges.

  • CVE-2004-1068Jan 10, 2005
    risk 0.00cvss epss 0.00

    A "missing serialization" error in the unix_dgram_recvmsg function in Linux 2.4.27 and earlier, and 2.6.x up to 2.6.9, allows local users to gain privileges via a race condition.

  • CVE-2004-1056Jan 10, 2005
    risk 0.00cvss epss 0.03

    Direct Rendering Manager (DRM) driver in Linux kernel 2.6 does not properly check the DMA lock, which could allow remote attackers or local users to cause a denial of service (X Server crash) and possibly modify the video output.

  • CVE-2004-1071Jan 10, 2005
    risk 0.00cvss epss 0.01

    The binfmt_elf loader (binfmt_elf.c) in Linux kernel 2.4.x up to 2.4.27, and 2.6.x up to 2.6.8, does not properly handle a failed call to the mmap function, which causes an incorrect mapped image and may allow local users to execute arbitrary code.

  • CVE-2004-1072Jan 10, 2005
    risk 0.00cvss epss 0.01

    The binfmt_elf loader (binfmt_elf.c) in Linux kernel 2.4.x up to 2.4.27, and 2.6.x up to 2.6.8, may create an interpreter name string that is not NULL terminated, which could cause strings longer than PATH_MAX to be used, leading to buffer overflows that allow local users to…

  • CVE-2004-1058Jan 10, 2005
    risk 0.00cvss epss 0.00

    Race condition in Linux kernel 2.6 allows local users to read the environment variables of another process that is still spawning via /proc/.../cmdline.

  • CVE-2004-0949Jan 10, 2005
    risk 0.00cvss epss 0.03

    The smb_recv_trans2 function call in the samba filesystem (smbfs) in Linux kernel 2.4 and 2.6 does not properly handle the re-assembly of fragmented packets correctly, which could allow remote samba servers to (1) read arbitrary kernel information or (2) raise a counter value to…

  • CVE-2004-1234Dec 31, 2004
    risk 0.00cvss epss 0.01

    load_elf_binary in Linux before 2.4.26 allows local users to cause a denial of service (system crash) via an ELF binary in which the interpreter is NULL.

  • CVE-2004-0138Dec 31, 2004
    risk 0.00cvss epss 0.00

    The ELF loader in Linux kernel 2.4 before 2.4.25 allows local users to cause a denial of service (crash) via a crafted ELF file with an interpreter with an invalid arch (architecture), which triggers a BUG() when an invalid VMA is unmapped.

Page 762 of 768