VYPR

Vendor CVEs

Linux

All CVEs

15,975 total · sorted by risk
  • CVE-2018-5814HigJun 12, 2018
    risk 0.00cvss 7.0epss 0.00

    In the Linux Kernel before version 4.16.11, 4.14.43, 4.9.102, and 4.4.133, multiple race condition errors when handling probe, disconnect, and rebind operations can be exploited to trigger a use-after-free condition or a NULL pointer dereference by sending multiple USB over IP…

  • CVE-2018-5803MedJun 12, 2018
    risk 0.00cvss 5.5epss 0.01

    In the Linux Kernel before version 4.15.8, 4.14.25, 4.9.87, 4.4.121, 4.1.51, and 3.2.102, an error in the "_sctp_make_chunk()" function (net/sctp/sm_make_chunk.c) when handling SCTP packets length can be exploited to cause a kernel crash.

  • CVE-2018-1000200MedJun 5, 2018
    risk 0.00cvss 5.5epss 0.00

    The Linux Kernel versions 4.14, 4.15, and 4.16 has a null pointer dereference which can result in an out of memory (OOM) killing of large mlocked processes. The issue arises from an oom killed process's final thread calling exit_mmap(), which calls munlock_vma_pages_all() for…

  • CVE-2018-11506HigMay 28, 2018
    risk 0.00cvss 7.8epss 0.00

    The sr_do_ioctl function in drivers/scsi/sr_ioctl.c in the Linux kernel through 4.16.12 allows local users to cause a denial of service (stack-based buffer overflow) or possibly have unspecified other impact because sense buffers have different sizes at the CDROM layer and the…

  • CVE-2017-18270HigMay 18, 2018
    risk 0.00cvss 7.1epss 0.00

    In the Linux kernel before 4.13.5, a local user could create keyrings for other users via keyctl commands, setting unwanted defaults or causing a denial of service.

  • CVE-2018-1130MedMay 10, 2018
    risk 0.00cvss 5.5epss 0.01

    Linux kernel before version 4.16-rc7 is vulnerable to a null pointer dereference in dccp_write_xmit() function in net/dccp/output.c in that allows a local user to cause a denial of service by a number of certain crafted system calls.

  • CVE-2018-10675HigMay 2, 2018
    risk 0.00cvss 7.8epss 0.00

    The do_get_mempolicy function in mm/mempolicy.c in the Linux kernel before 4.12.9 allows local users to cause a denial of service (use-after-free) or possibly have unspecified other impact via crafted system calls.

  • CVE-2017-18261MedApr 19, 2018
    risk 0.00cvss 5.5epss 0.00

    The arch_timer_reg_read_stable macro in arch/arm64/include/asm/arch_timer.h in the Linux kernel before 4.13 allows local users to cause a denial of service (infinite recursion) by writing to a file under /sys/kernel/debug in certain circumstances, as demonstrated by a scenario…

  • CVE-2018-10124MedApr 16, 2018
    risk 0.00cvss 5.5epss 0.01

    The kill_something_info function in kernel/signal.c in the Linux kernel before 4.13, when an unspecified architecture and compiler is used, might allow local users to cause a denial of service via an INT_MIN argument.

  • CVE-2018-10087MedApr 13, 2018
    risk 0.00cvss 5.5epss 0.00

    The kernel_wait4 function in kernel/exit.c in the Linux kernel before 4.13, when an unspecified architecture and compiler is used, might allow local users to cause a denial of service by triggering an attempted use of the -INT_MIN value.

  • CVE-2018-10074MedApr 12, 2018
    risk 0.00cvss 5.5epss 0.00

    The hi3660_stub_clk_probe function in drivers/clk/hisilicon/clk-hi3660-stub.c in the Linux kernel before 4.16 allows local users to cause a denial of service (NULL pointer dereference) by triggering a failure of resource retrieval.

  • CVE-2018-10021MedApr 11, 2018
    risk 0.00cvss 5.5epss 0.00

    drivers/scsi/libsas/sas_scsi_host.c in the Linux kernel before 4.16 allows local users to cause a denial of service (ata qc leak) by triggering certain failure conditions. NOTE: a third party disputes the relevance of this report because the failure can only occur for physically…

  • CVE-2017-18257MedApr 4, 2018
    risk 0.00cvss 5.5epss 0.00

    The __get_data_block function in fs/f2fs/data.c in the Linux kernel before 4.11 allows local users to cause a denial of service (integer overflow and loop) via crafted use of the open and fallocate system calls with an FS_IOC_FIEMAP ioctl.

  • CVE-2018-1095MedApr 2, 2018
    risk 0.00cvss 5.5epss 0.01

    The ext4_xattr_check_entries function in fs/ext4/xattr.c in the Linux kernel through 4.15.15 does not properly validate xattr sizes, which causes misinterpretation of a size as an error code, and consequently allows attackers to cause a denial of service (get_acl NULL pointer…

  • CVE-2018-1094MedApr 2, 2018
    risk 0.00cvss 5.5epss 0.02

    The ext4_fill_super function in fs/ext4/super.c in the Linux kernel through 4.15.15 does not always initialize the crc32c checksum driver, which allows attackers to cause a denial of service (ext4_xattr_inode_hash NULL pointer dereference and system crash) via a crafted ext4…

  • CVE-2018-1093MedApr 2, 2018
    risk 0.00cvss 5.5epss 0.02

    The ext4_valid_block_bitmap function in fs/ext4/balloc.c in the Linux kernel through 4.15.15 allows attackers to cause a denial of service (out-of-bounds read and system crash) via a crafted ext4 image because balloc.c and ialloc.c do not validate bitmap block numbers.

  • CVE-2018-1092MedApr 2, 2018
    risk 0.00cvss 5.5epss 0.02

    The ext4_iget function in fs/ext4/inode.c in the Linux kernel through 4.15.15 mishandles the case of a root directory with a zero i_links_count, which allows attackers to cause a denial of service (ext4_process_freed_data NULL pointer dereference and OOPS) via a crafted ext4…

  • CVE-2017-18255HigMar 31, 2018
    risk 0.00cvss 7.8epss 0.00

    The perf_cpu_time_max_percent_handler function in kernel/events/core.c in the Linux kernel before 4.11 allows local users to cause a denial of service (integer overflow) or possibly have unspecified other impact via a large value, as demonstrated by an incorrect sample-rate…

  • CVE-2018-7566HigMar 30, 2018
    risk 0.00cvss 7.8epss 0.01

    The Linux kernel 4.15 has a Buffer Overflow via an SNDRV_SEQ_IOCTL_SET_CLIENT_POOL ioctl write operation to /dev/snd/seq by a local user.

  • CVE-2018-1091MedMar 27, 2018
    risk 0.00cvss 5.5epss 0.00

    In the flush_tmregs_to_thread function in arch/powerpc/kernel/ptrace.c in the Linux kernel before 4.13.5, a guest kernel crash can be triggered from unprivileged userspace during a core dump on a POWER host due to a missing processor feature check and an erroneous use of…

  • CVE-2017-18249HigMar 26, 2018
    risk 0.00cvss 7.0epss 0.00

    The add_free_nid function in fs/f2fs/node.c in the Linux kernel before 4.12 does not properly track an allocated nid, which allows local users to cause a denial of service (race condition) or possibly have unspecified other impact via concurrent threads.

  • CVE-2017-18241MedMar 21, 2018
    risk 0.00cvss 5.5epss 0.00

    fs/f2fs/segment.c in the Linux kernel before 4.13 allows local users to cause a denial of service (NULL pointer dereference and panic) by using a noflush_merge option that triggers a NULL value for a flush_cmd_control data structure.

  • CVE-2018-1068MedMar 16, 2018
    risk 0.00cvss 6.7epss 0.00

    A flaw was found in the Linux 4.x kernel's implementation of 32-bit syscall interface for bridging. This allowed a privileged user to arbitrarily write to a limited range of kernel memory.

  • CVE-2017-18232MedMar 15, 2018
    risk 0.00cvss 5.5epss 0.00

    The Serial Attached SCSI (SAS) implementation in the Linux kernel through 4.15.9 mishandles a mutex within libsas, which allows local users to cause a denial of service (deadlock) by triggering certain error-handling code.

  • CVE-2017-18224MedMar 12, 2018
    risk 0.00cvss 4.7epss 0.00

    In the Linux kernel before 4.15, fs/ocfs2/aops.c omits use of a semaphore and consequently has a race condition for access to the extent tree during read operations in DIRECT mode, which allows local users to cause a denial of service (BUG) by modifying a certain e_cpos field.

  • CVE-2018-7995MedMar 9, 2018
    risk 0.00cvss 4.7epss 0.00

    Race condition in the store_int_with_restart() function in arch/x86/kernel/cpu/mcheck/mce.c in the Linux kernel through 4.15.7 allows local users to cause a denial of service (panic) by leveraging root access to write to the check_interval file in a…

  • CVE-2018-7757MedMar 8, 2018
    risk 0.00cvss 5.5epss 0.01

    Memory leak in the sas_smp_get_phy_events function in drivers/scsi/libsas/sas_expander.c in the Linux kernel through 4.15.7 allows local users to cause a denial of service (memory consumption) via many read accesses to files in the /sys/class/sas_phy directory, as demonstrated…

  • CVE-2017-18222HigMar 8, 2018
    risk 0.00cvss 7.8epss 0.00

    In the Linux kernel before 4.12, Hisilicon Network Subsystem (HNS) does not consider the ETH_SS_PRIV_FLAGS case when retrieving sset_count data, which allows local users to cause a denial of service (buffer overflow and memory corruption) or possibly have unspecified other…

  • CVE-2017-18221MedMar 7, 2018
    risk 0.00cvss 5.5epss 0.01

    The __munlock_pagevec function in mm/mlock.c in the Linux kernel before 4.11.4 allows local users to cause a denial of service (NR_MLOCK accounting corruption) via crafted use of mlockall and munlockall system calls.

  • CVE-2017-18218HigMar 5, 2018
    risk 0.00cvss 7.8epss 0.00

    In drivers/net/ethernet/hisilicon/hns/hns_enet.c in the Linux kernel before 4.13, local users can cause a denial of service (use-after-free and BUG) or possibly have unspecified other impact by leveraging differences in skb handling between hns_nic_net_xmit_hw and…

  • CVE-2017-18216MedMar 5, 2018
    risk 0.00cvss 5.5epss 0.01

    In fs/ocfs2/cluster/nodemanager.c in the Linux kernel before 4.15, local users can cause a denial of service (NULL pointer dereference and BUG) because a required mutex is not used.

  • CVE-2018-1066MedMar 2, 2018
    risk 0.00cvss 6.5epss 0.04

    The Linux kernel before version 4.11 is vulnerable to a NULL pointer dereference in fs/cifs/cifsencrypt.c:setup_ntlmv2_rsp() that allows an attacker controlling a CIFS server to kernel panic a client that has this server mounted, because an empty TargetInfo field in an NTLMSSP…

  • CVE-2018-1065MedMar 2, 2018
    risk 0.00cvss 4.7epss 0.00

    The netfilter subsystem in the Linux kernel through 4.15.7 mishandles the case of a rule blob that contains a jump but lacks a user-defined chain, which allows local users to cause a denial of service (NULL pointer dereference) by leveraging the CAP_NET_RAW or CAP_NET_ADMIN…

  • CVE-2017-18208MedMar 1, 2018
    risk 0.00cvss 5.5epss 0.01

    The madvise_willneed function in mm/madvise.c in the Linux kernel before 4.14.4 allows local users to cause a denial of service (infinite loop) by triggering use of MADVISE_WILLNEED for a DAX mapping.

  • CVE-2017-18204MedFeb 27, 2018
    risk 0.00cvss 5.5epss 0.00

    The ocfs2_setattr function in fs/ocfs2/file.c in the Linux kernel before 4.14.2 allows local users to cause a denial of service (deadlock) via DIO requests.

  • CVE-2017-18203MedFeb 27, 2018
    risk 0.00cvss 4.7epss 0.00

    The dm_get_from_kobject function in drivers/md/dm.c in the Linux kernel before 4.14.3 allow local users to cause a denial of service (BUG) by leveraging a race condition with __dm_destroy during creation and removal of DM devices.

  • CVE-2017-18202HigFeb 27, 2018
    risk 0.00cvss 7.0epss 0.00

    The __oom_reap_task_mm function in mm/oom_kill.c in the Linux kernel before 4.14.4 mishandles gather operations, which allows attackers to cause a denial of service (TLB entry leak or use-after-free) or possibly have unspecified other impact by triggering a copy_to_user call…

  • CVE-2018-7492MedFeb 26, 2018
    risk 0.00cvss 5.5epss 0.01

    A NULL pointer dereference was found in the net/rds/rdma.c __rds_rdma_map() function in the Linux kernel before 4.14.7 allowing local attackers to cause a system panic and a denial-of-service, related to RDS_GET_MR and RDS_GET_MR_FOR_DEST.

  • CVE-2017-18200MedFeb 26, 2018
    risk 0.00cvss 5.5epss 0.00

    The f2fs implementation in the Linux kernel before 4.14 mishandles reference counts associated with f2fs_wait_discard_bios calls, which allows local users to cause a denial of service (BUG), as demonstrated by fstrim.

  • CVE-2018-7480HigFeb 25, 2018
    risk 0.00cvss 7.8epss 0.00

    The blkcg_init_queue function in block/blk-cgroup.c in the Linux kernel before 4.11 allows local users to cause a denial of service (double free) or possibly have unspecified other impact by triggering a creation failure.

  • CVE-2017-18193MedFeb 22, 2018
    risk 0.00cvss 5.5epss 0.00

    fs/f2fs/extent_cache.c in the Linux kernel before 4.13 mishandles extent trees, which allows local users to cause a denial of service (BUG) via an application with multiple threads.

  • CVE-2018-6927HigFeb 12, 2018
    risk 0.00cvss 7.8epss 0.01

    The futex_requeue function in kernel/futex.c in the Linux kernel before 4.14.15 might allow attackers to cause a denial of service (integer overflow) or possibly have unspecified other impact by triggering a negative wake or requeue value.

  • CVE-2017-18174CriFeb 11, 2018
    risk 0.00cvss 9.8epss 0.03

    In the Linux kernel before 4.7, the amd_gpio_remove function in drivers/pinctrl/pinctrl-amd.c calls the pinctrl_unregister function, leading to a double free.

  • CVE-2017-16914MedJan 31, 2018
    risk 0.00cvss 5.9epss 0.04

    The "stub_send_ret_submit()" function (drivers/usb/usbip/stub_tx.c) in the Linux Kernel before version 4.14.8, 4.9.71, 4.1.49, and 4.4.107 allows attackers to cause a denial of service (NULL pointer dereference) via a specially crafted USB over IP packet.

  • CVE-2017-16913MedJan 31, 2018
    risk 0.00cvss 5.9epss 0.04

    The "stub_recv_cmd_submit()" function (drivers/usb/usbip/stub_rx.c) in the Linux Kernel before version 4.14.8, 4.9.71, and 4.4.114 when handling CMD_SUBMIT packets allows attackers to cause a denial of service (arbitrary memory allocation) via a specially crafted USB over IP…

  • CVE-2017-16912MedJan 31, 2018
    risk 0.00cvss 5.9epss 0.04

    The "get_pipe()" function (drivers/usb/usbip/stub_rx.c) in the Linux Kernel before version 4.14.8, 4.9.71, and 4.4.114 allows attackers to cause a denial of service (out-of-bounds read) via a specially crafted USB over IP packet.

  • CVE-2017-16911MedJan 31, 2018
    risk 0.00cvss 4.7epss 0.00

    The vhci_hcd driver in the Linux Kernel before version 4.14.8 and 4.4.114 allows allows local attackers to disclose kernel memory addresses. Successful exploitation requires that a USB device is attached over IP.

  • CVE-2018-6412HigJan 31, 2018
    risk 0.00cvss 7.5epss 0.02

    In the function sbusfb_ioctl_helper() in drivers/video/fbdev/sbuslib.c in the Linux kernel through 4.15, an integer signedness error allows arbitrary information leakage for the FBIOPUTCMAP_SPARC and FBIOGETCMAP_SPARC commands.

  • CVE-2017-18079HigJan 29, 2018
    risk 0.00cvss 7.8epss 0.00

    drivers/input/serio/i8042.c in the Linux kernel before 4.12.4 allows attackers to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact because the port->exists value can change after it is validated.

  • CVE-2017-18075HigJan 24, 2018
    risk 0.00cvss 7.8epss 0.00

    crypto/pcrypt.c in the Linux kernel before 4.14.13 mishandles freeing instances, allowing a local user able to access the AF_ALG-based AEAD interface (CONFIG_CRYPTO_USER_API_AEAD) and pcrypt (CONFIG_CRYPTO_PCRYPT) to cause a denial of service (kfree of an incorrect pointer) or…

Page 297 of 320