Kernel
by Linux
Source repositories
CVEs (15,808)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2005-0977 | 0.00 | — | 0.00 | May 2, 2005 | The shmem_nopage function in shmem.c for the tmpfs driver in Linux kernel 2.6 does not properly verify the address argument, which allows local users to cause a denial of service (kernel crash) via an invalid address. | |||
| CVE-2005-1041 | 0.00 | — | 0.00 | May 2, 2005 | The fib_seq_start function in fib_hash.c in Linux kernel allows local users to cause a denial of service (system crash) via /proc/net/route. | |||
| CVE-2005-0137 | 0.00 | — | 0.00 | May 2, 2005 | Linux kernel 2.6 on Itanium (ia64) architectures allows local users to cause a denial of service via a "missing Itanium syscall table entry." | |||
| CVE-2005-1368 | 0.00 | — | 0.00 | May 2, 2005 | The key_user_lookup function in security/keys/key.c in Linux kernel 2.6.10 to 2.6.11.8 may allow attackers to cause a denial of service (oops) via SMP. | |||
| CVE-2005-0449 | 0.00 | — | 0.05 | May 2, 2005 | The netfilter/iptables module in Linux before 2.6.8.1 allows remote attackers to cause a denial of service (kernel crash) or bypass firewall rules via crafted packets, which are not properly handled by the skb_checksum_help function. | |||
| CVE-2005-0530 | 0.00 | — | 0.00 | May 2, 2005 | Signedness error in the copy_from_read_buf function in n_tty.c for Linux kernel 2.6.10 and 2.6.11rc1 allows local users to read kernel memory via a negative argument. | |||
| CVE-2005-0003 | 0.00 | — | 0.01 | Apr 14, 2005 | The 64 bit ELF support in Linux kernel 2.6 before 2.6.10, on 64-bit architectures, does not properly check for overlapping VMA (virtual memory address) allocations, which allows local users to cause a denial of service (system crash) or execute arbitrary code via a crafted ELF… | |||
| CVE-2005-0124 | 0.00 | — | 0.01 | Apr 14, 2005 | The coda_pioctl function in the coda functionality (pioctl.c) for Linux kernel 2.6.9 and 2.4.x before 2.4.29 may allow local users to cause a denial of service (crash) or execute arbitrary code via negative vi.in_size or vi.out_size values, which may trigger a buffer overflow. | |||
| CVE-2004-0812 | 0.00 | — | 0.00 | Apr 14, 2005 | Unknown vulnerability in the Linux kernel before 2.4.23, on the AMD AMD64 and Intel EM64T architectures, associated with "setting up TSS limits," allows local users to cause a denial of service (crash) and possibly execute arbitrary code. | |||
| CVE-2004-1237 | 0.00 | — | 0.00 | Apr 14, 2005 | Unknown vulnerability in the system call filtering code in the audit subsystem for Red Hat Enterprise Linux 3 allows local users to cause a denial of service (system crash) via unknown vectors. | |||
| CVE-2005-0749 | 0.00 | — | 0.00 | Apr 1, 2005 | The load_elf_library in the Linux kernel before 2.6.11.6 allows local users to cause a denial of service (kernel crash) via a crafted ELF library or executable, which causes a free of an invalid pointer. | |||
| CVE-2005-0767 | 0.00 | — | 0.00 | Mar 15, 2005 | Race condition in the Radeon DRI driver for Linux kernel 2.6.8.1 allows local users with DRI privileges to execute arbitrary code as root. | |||
| CVE-2005-0384 | 0.00 | — | 0.04 | Mar 15, 2005 | Unknown vulnerability in the PPP driver for the Linux kernel 2.6.8.1 allows remote attackers to cause a denial of service (kernel crash) via a pppd client. | |||
| CVE-2005-0504 | 0.00 | — | 0.01 | Mar 14, 2005 | Buffer overflow in the MoxaDriverIoctl function for the moxa serial driver (moxa.c) in Linux 2.2.x, 2.4.x, and 2.6.x before 2.6.22 allows local users to execute arbitrary code via a certain modified length value. | |||
| CVE-2005-0178 | 0.00 | — | 0.00 | Mar 7, 2005 | Race condition in the setsid function in Linux before 2.6.8.1 allows local users to cause a denial of service (crash) and possibly access portions of kernel memory, related to TTY changes, locking, and semaphores. | |||
| CVE-2005-0180 | 0.00 | — | 0.01 | Mar 7, 2005 | Multiple integer signedness errors in the sg_scsi_ioctl function in scsi_ioctl.c for Linux 2.6.x allow local users to read or modify kernel memory via negative integers in arguments to the scsi ioctl, which bypass a maximum length check before calling the copy_from_user and… | |||
| CVE-2005-0177 | 0.00 | — | 0.02 | Mar 7, 2005 | nls_ascii.c in Linux before 2.6.8.1 uses an incorrect table size, which allows attackers to cause a denial of service (kernel crash) via a buffer overflow. | |||
| CVE-2005-0179 | 0.00 | — | 0.00 | Mar 7, 2005 | Linux kernel 2.4.x and 2.6.x allows local users to cause a denial of service (CPU and memory consumption) and bypass RLIM_MEMLOCK limits via the mlockall call. | |||
| CVE-2004-0986 | 0.00 | — | 0.02 | Mar 1, 2005 | Iptables before 1.2.11, under certain conditions, does not properly load the required modules at system startup, which causes the firewall rules to fail to load and protect the system from remote attackers. | |||
| CVE-2005-0937 | 0.00 | — | 0.00 | Feb 22, 2005 | Some futex functions in futex.c for Linux kernel 2.6.x perform get_user calls while holding the mmap_sem semaphore, which could allow local users to cause a deadlock condition in do_page_fault by triggering get_user faults while another thread is executing mmap or other… |
- CVE-2005-0977May 2, 2005risk 0.00cvss —epss 0.00
The shmem_nopage function in shmem.c for the tmpfs driver in Linux kernel 2.6 does not properly verify the address argument, which allows local users to cause a denial of service (kernel crash) via an invalid address.
- CVE-2005-1041May 2, 2005risk 0.00cvss —epss 0.00
The fib_seq_start function in fib_hash.c in Linux kernel allows local users to cause a denial of service (system crash) via /proc/net/route.
- CVE-2005-0137May 2, 2005risk 0.00cvss —epss 0.00
Linux kernel 2.6 on Itanium (ia64) architectures allows local users to cause a denial of service via a "missing Itanium syscall table entry."
- CVE-2005-1368May 2, 2005risk 0.00cvss —epss 0.00
The key_user_lookup function in security/keys/key.c in Linux kernel 2.6.10 to 2.6.11.8 may allow attackers to cause a denial of service (oops) via SMP.
- CVE-2005-0449May 2, 2005risk 0.00cvss —epss 0.05
The netfilter/iptables module in Linux before 2.6.8.1 allows remote attackers to cause a denial of service (kernel crash) or bypass firewall rules via crafted packets, which are not properly handled by the skb_checksum_help function.
- CVE-2005-0530May 2, 2005risk 0.00cvss —epss 0.00
Signedness error in the copy_from_read_buf function in n_tty.c for Linux kernel 2.6.10 and 2.6.11rc1 allows local users to read kernel memory via a negative argument.
- CVE-2005-0003Apr 14, 2005risk 0.00cvss —epss 0.01
The 64 bit ELF support in Linux kernel 2.6 before 2.6.10, on 64-bit architectures, does not properly check for overlapping VMA (virtual memory address) allocations, which allows local users to cause a denial of service (system crash) or execute arbitrary code via a crafted ELF…
- CVE-2005-0124Apr 14, 2005risk 0.00cvss —epss 0.01
The coda_pioctl function in the coda functionality (pioctl.c) for Linux kernel 2.6.9 and 2.4.x before 2.4.29 may allow local users to cause a denial of service (crash) or execute arbitrary code via negative vi.in_size or vi.out_size values, which may trigger a buffer overflow.
- CVE-2004-0812Apr 14, 2005risk 0.00cvss —epss 0.00
Unknown vulnerability in the Linux kernel before 2.4.23, on the AMD AMD64 and Intel EM64T architectures, associated with "setting up TSS limits," allows local users to cause a denial of service (crash) and possibly execute arbitrary code.
- CVE-2004-1237Apr 14, 2005risk 0.00cvss —epss 0.00
Unknown vulnerability in the system call filtering code in the audit subsystem for Red Hat Enterprise Linux 3 allows local users to cause a denial of service (system crash) via unknown vectors.
- CVE-2005-0749Apr 1, 2005risk 0.00cvss —epss 0.00
The load_elf_library in the Linux kernel before 2.6.11.6 allows local users to cause a denial of service (kernel crash) via a crafted ELF library or executable, which causes a free of an invalid pointer.
- CVE-2005-0767Mar 15, 2005risk 0.00cvss —epss 0.00
Race condition in the Radeon DRI driver for Linux kernel 2.6.8.1 allows local users with DRI privileges to execute arbitrary code as root.
- CVE-2005-0384Mar 15, 2005risk 0.00cvss —epss 0.04
Unknown vulnerability in the PPP driver for the Linux kernel 2.6.8.1 allows remote attackers to cause a denial of service (kernel crash) via a pppd client.
- CVE-2005-0504Mar 14, 2005risk 0.00cvss —epss 0.01
Buffer overflow in the MoxaDriverIoctl function for the moxa serial driver (moxa.c) in Linux 2.2.x, 2.4.x, and 2.6.x before 2.6.22 allows local users to execute arbitrary code via a certain modified length value.
- CVE-2005-0178Mar 7, 2005risk 0.00cvss —epss 0.00
Race condition in the setsid function in Linux before 2.6.8.1 allows local users to cause a denial of service (crash) and possibly access portions of kernel memory, related to TTY changes, locking, and semaphores.
- CVE-2005-0180Mar 7, 2005risk 0.00cvss —epss 0.01
Multiple integer signedness errors in the sg_scsi_ioctl function in scsi_ioctl.c for Linux 2.6.x allow local users to read or modify kernel memory via negative integers in arguments to the scsi ioctl, which bypass a maximum length check before calling the copy_from_user and…
- CVE-2005-0177Mar 7, 2005risk 0.00cvss —epss 0.02
nls_ascii.c in Linux before 2.6.8.1 uses an incorrect table size, which allows attackers to cause a denial of service (kernel crash) via a buffer overflow.
- CVE-2005-0179Mar 7, 2005risk 0.00cvss —epss 0.00
Linux kernel 2.4.x and 2.6.x allows local users to cause a denial of service (CPU and memory consumption) and bypass RLIM_MEMLOCK limits via the mlockall call.
- CVE-2004-0986Mar 1, 2005risk 0.00cvss —epss 0.02
Iptables before 1.2.11, under certain conditions, does not properly load the required modules at system startup, which causes the firewall rules to fail to load and protect the system from remote attackers.
- CVE-2005-0937Feb 22, 2005risk 0.00cvss —epss 0.00
Some futex functions in futex.c for Linux kernel 2.6.x perform get_user calls while holding the mmap_sem semaphore, which could allow local users to cause a deadlock condition in do_page_fault by triggering get_user faults while another thread is executing mmap or other…
Page 784 of 791