Linux Kernel
by Ubuntu
Source repositories
CVEs (1,433)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2004-0001 | 0.00 | — | 0.00 | Feb 17, 2004 | Unknown vulnerability in the eflags checking in the 32-bit ptrace emulation for the Linux kernel on AMD64 systems allows local users to gain privileges. | |||
| CVE-2003-0984 | 0.00 | — | 0.00 | Jan 5, 2004 | Real time clock (RTC) routines in Linux kernel 2.4.23 and earlier do not properly initialize their structures, which could leak kernel data to user space. | |||
| CVE-2003-0699 | 0.00 | — | 0.02 | Aug 27, 2003 | The C-Media PCI sound driver in Linux before 2.4.21 does not use the get_user function to access userspace, which crosses security boundaries and may facilitate the exploitation of vulnerabilities, a different vulnerability than CVE-2003-0700. | |||
| CVE-2003-0552 | 0.00 | — | 0.03 | Aug 27, 2003 | Linux 2.4.x allows remote attackers to spoof the bridge Forwarding table via forged packets whose source addresses are the same as the target. | |||
| CVE-2003-0465 | 0.00 | — | 0.02 | Aug 18, 2003 | The kernel strncpy function in Linux 2.4 and 2.5 does not %NUL pad the buffer on architectures other than x86, as opposed to the expected behavior of strncpy as implemented in libc, which could lead to information leaks. | |||
| CVE-2003-0643 | 0.00 | — | 0.00 | Jul 25, 2003 | Integer signedness error in the Linux Socket Filter implementation (filter.c) in Linux 2.4.3-pre3 to 2.4.22-pre10 allows attackers to cause a denial of service (crash). | |||
| CVE-2003-0418 | 0.00 | — | 0.03 | Jul 24, 2003 | The Linux 2.0 kernel IP stack does not properly calculate the size of an ICMP citation, which causes it to include portions of unauthorized memory in ICMP error responses. | |||
| CVE-2002-1572 | 0.00 | — | 0.02 | Dec 31, 2002 | Signed integer overflow in the bttv_read function in the bttv driver (bttv-driver.c) in Linux kernel before 2.4.20 has unknown impact and attack vectors. | |||
| CVE-2002-1573 | 0.00 | — | 0.02 | Dec 31, 2002 | Unspecified vulnerability in the pcilynx ieee1394 firewire driver (pcilynx.c) in Linux kernel before 2.4.20 has unknown impact and attack vectors, related to "wrap handling." | |||
| CVE-2002-1319 | 0.00 | — | 0.00 | Dec 11, 2002 | The Linux kernel 2.4.20 and earlier, and 2.5.x, when running on x86 systems, allows local users to cause a denial of service (hang) via the emulation mode, which does not properly clear TF and NT EFLAGs. | |||
| CVE-2002-0429 | 0.00 | — | 0.00 | Aug 12, 2002 | The iBCS routines in arch/i386/kernel/traps.c for Linux kernels 2.4.18 and earlier on x86 systems allow local users to kill arbitrary processes via a a binary compatibility interface (lcall). | |||
| CVE-2001-0851 | 0.00 | — | 0.03 | Dec 6, 2001 | Linux kernel 2.0, 2.2 and 2.4 with syncookies enabled allows remote attackers to bypass firewall rules by brute force guessing the cookie. | |||
| CVE-1999-1341 | 0.00 | — | 0.00 | Oct 22, 1999 | Linux kernel before 2.3.18 or 2.2.13pre15, with SLIP and PPP options, allows local unprivileged users to forge IP packets via the TIOCSETD option on tty devices. |
- CVE-2004-0001Feb 17, 2004risk 0.00cvss —epss 0.00
Unknown vulnerability in the eflags checking in the 32-bit ptrace emulation for the Linux kernel on AMD64 systems allows local users to gain privileges.
- CVE-2003-0984Jan 5, 2004risk 0.00cvss —epss 0.00
Real time clock (RTC) routines in Linux kernel 2.4.23 and earlier do not properly initialize their structures, which could leak kernel data to user space.
- CVE-2003-0699Aug 27, 2003risk 0.00cvss —epss 0.02
The C-Media PCI sound driver in Linux before 2.4.21 does not use the get_user function to access userspace, which crosses security boundaries and may facilitate the exploitation of vulnerabilities, a different vulnerability than CVE-2003-0700.
- CVE-2003-0552Aug 27, 2003risk 0.00cvss —epss 0.03
Linux 2.4.x allows remote attackers to spoof the bridge Forwarding table via forged packets whose source addresses are the same as the target.
- CVE-2003-0465Aug 18, 2003risk 0.00cvss —epss 0.02
The kernel strncpy function in Linux 2.4 and 2.5 does not %NUL pad the buffer on architectures other than x86, as opposed to the expected behavior of strncpy as implemented in libc, which could lead to information leaks.
- CVE-2003-0643Jul 25, 2003risk 0.00cvss —epss 0.00
Integer signedness error in the Linux Socket Filter implementation (filter.c) in Linux 2.4.3-pre3 to 2.4.22-pre10 allows attackers to cause a denial of service (crash).
- CVE-2003-0418Jul 24, 2003risk 0.00cvss —epss 0.03
The Linux 2.0 kernel IP stack does not properly calculate the size of an ICMP citation, which causes it to include portions of unauthorized memory in ICMP error responses.
- CVE-2002-1572Dec 31, 2002risk 0.00cvss —epss 0.02
Signed integer overflow in the bttv_read function in the bttv driver (bttv-driver.c) in Linux kernel before 2.4.20 has unknown impact and attack vectors.
- CVE-2002-1573Dec 31, 2002risk 0.00cvss —epss 0.02
Unspecified vulnerability in the pcilynx ieee1394 firewire driver (pcilynx.c) in Linux kernel before 2.4.20 has unknown impact and attack vectors, related to "wrap handling."
- CVE-2002-1319Dec 11, 2002risk 0.00cvss —epss 0.00
The Linux kernel 2.4.20 and earlier, and 2.5.x, when running on x86 systems, allows local users to cause a denial of service (hang) via the emulation mode, which does not properly clear TF and NT EFLAGs.
- CVE-2002-0429Aug 12, 2002risk 0.00cvss —epss 0.00
The iBCS routines in arch/i386/kernel/traps.c for Linux kernels 2.4.18 and earlier on x86 systems allow local users to kill arbitrary processes via a a binary compatibility interface (lcall).
- CVE-2001-0851Dec 6, 2001risk 0.00cvss —epss 0.03
Linux kernel 2.0, 2.2 and 2.4 with syncookies enabled allows remote attackers to bypass firewall rules by brute force guessing the cookie.
- CVE-1999-1341Oct 22, 1999risk 0.00cvss —epss 0.00
Linux kernel before 2.3.18 or 2.2.13pre15, with SLIP and PPP options, allows local unprivileged users to forge IP packets via the TIOCSETD option on tty devices.
Page 72 of 72