VYPR

Vendor CVEs

Linux

All CVEs

15,609 total · sorted by risk
  • CVE-2004-0587Aug 6, 2004
    risk 0.00cvss epss 0.00

    Insecure permissions for the /proc/scsi/qla2300/HbaApiNode file in Linux allows local users to cause a denial of service.

  • CVE-2004-0535Aug 6, 2004
    risk 0.00cvss epss 0.00

    The e1000 driver for Linux kernel 2.4.26 and earlier does not properly initialize memory before using it, which allows local users to read portions of kernel memory. NOTE: this issue was originally incorrectly reported as a "buffer overflow" by some sources.

  • CVE-2004-0495Aug 6, 2004
    risk 0.00cvss epss 0.00

    Multiple unknown vulnerabilities in Linux kernel 2.4 and 2.6 allow local users to gain privileges or access kernel memory, as found by the Sparse source code checking tool.

  • CVE-2004-0596Aug 6, 2004
    risk 0.00cvss epss 0.00

    The Equalizer Load-balancer for serial network interfaces (eql.c) in Linux kernel 2.6.x up to 2.6.7 allows local users to cause a denial of service via a non-existent device name that triggers a null dereference.

  • CVE-2004-0447Aug 6, 2004
    risk 0.00cvss epss 0.00

    Unknown vulnerability in Linux before 2.4.26 for IA64 allows local users to cause a denial of service, with unknown impact. NOTE: due to a typo, this issue was accidentally assigned CVE-2004-0477. This is the proper candidate to use for the Linux local DoS.

  • CVE-2004-0427Jul 7, 2004
    risk 0.00cvss epss 0.00

    The do_fork function in Linux 2.4.x before 2.4.26, and 2.6.x before 2.6.6, does not properly decrement the mm_count counter when an error occurs after the mm_struct for a child process has been activated, which triggers a memory leak that allows local users to cause a denial of…

  • CVE-2004-0133Jun 1, 2004
    risk 0.00cvss epss 0.00

    The XFS file system code in Linux 2.4.x has an information leak in which in-memory data is written to the device for the XFS file system, which allows local users to obtain sensitive information by reading the raw device.

  • CVE-2004-0177Jun 1, 2004
    risk 0.00cvss epss 0.03

    The ext3 code in Linux 2.4.x before 2.4.26 does not properly initialize journal descriptor blocks, which causes an information leak in which in-memory data is written to the device for the ext3 file system, which allows privileged users to obtain portions of kernel memory by…

  • CVE-2004-0181Jun 1, 2004
    risk 0.00cvss epss 0.00

    The JFS file system code in Linux 2.4.x has an information leak in which in-memory data is written to the device for the JFS file system, which allows local users to obtain sensitive information by reading the raw device.

  • CVE-2004-0178Jun 1, 2004
    risk 0.00cvss epss 0.00

    The OSS code for the Sound Blaster (sb16) driver in Linux 2.4.x before 2.4.26, when operating in 16 bit mode, does not properly handle certain sample sizes, which allows local users to cause a denial of service (crash) via a sample with an odd number of bytes.

  • CVE-2004-0109Jun 1, 2004
    risk 0.00cvss epss 0.01

    Buffer overflow in the ISO9660 file system component for Linux kernel 2.4.x, 2.5.x and 2.6.x, allows local users with physical access to overflow kernel memory and execute arbitrary code via a malformed CD containing a long symbolic link entry.

  • CVE-2003-1040Apr 15, 2004
    risk 0.00cvss epss 0.00

    kmod in the Linux kernel does not set its uid, suid, gid, or sgid to 0, which allows local users to cause a denial of service (crash) by sending certain signals to kmod.

  • CVE-2004-0075Mar 15, 2004
    risk 0.00cvss epss 0.00

    The Vicam USB driver in Linux before 2.4.25 does not use the copy_from_user function when copying data from userspace to kernel space, which crosses security boundaries and allows local users to cause a denial of service.

  • CVE-2004-0003Mar 3, 2004
    risk 0.00cvss epss 0.00

    Unknown vulnerability in Linux kernel before 2.4.22 allows local users to gain privileges, related to "R128 DRI limits checking."

  • CVE-2002-1574Mar 3, 2004
    risk 0.00cvss epss 0.00

    Buffer overflow in the ixj telephony card driver in Linux before 2.4.20 has unknown impact and attack vectors.

  • CVE-2004-0010Mar 3, 2004
    risk 0.00cvss epss 0.00

    Stack-based buffer overflow in the ncp_lookup function for ncpfs in Linux kernel 2.4.x allows local users to gain privileges.

  • CVE-2004-2136Feb 19, 2004
    risk 0.00cvss epss 0.01

    dm-crypt on Linux kernel 2.6.x, when used on certain file systems with a block size 1024 or greater, has certain "IV computation" weaknesses that allow watermarked files to be detected without decryption.

  • CVE-2004-0058Feb 17, 2004
    risk 0.00cvss epss 0.00

    Antivir / Linux 2.0.9-9, and possibly earlier versions, allows local users to overwrite arbitrary files via a symlink attack on the .pid_antivir_$$ temporary file.

  • CVE-2004-0001Feb 17, 2004
    risk 0.00cvss epss 0.00

    Unknown vulnerability in the eflags checking in the 32-bit ptrace emulation for the Linux kernel on AMD64 systems allows local users to gain privileges.

  • CVE-2003-0984Jan 5, 2004
    risk 0.00cvss epss 0.00

    Real time clock (RTC) routines in Linux kernel 2.4.23 and earlier do not properly initialize their structures, which could leak kernel data to user space.

  • CVE-2003-0959Dec 31, 2003
    risk 0.00cvss epss 0.02

    Multiple integer overflows in the 32bit emulation for AMD64 architectures in Linux 2.4 kernel before 2.4.21 allows attackers to cause a denial of service or gain root privileges via unspecified vectors that trigger copy_from_user function calls with improper length arguments.

  • CVE-2003-1161Dec 31, 2003
    risk 0.00cvss epss 0.00

    exit.c in Linux kernel 2.6-test9-CVS, as stored on kernel.bkbits.net, was modified to contain a backdoor, which could allow local users to elevate their privileges by passing __WCLONE|__WALL to the sys_wait4 function.

  • CVE-2003-0956Dec 31, 2003
    risk 0.00cvss epss 0.00

    Multiple race conditions in the handling of O_DIRECT in Linux kernel prior to version 2.4.22 could cause stale data to be returned from the disk when handling sparse files, or cause incorrect data to be returned when a file is truncated as it is being read, which might allow…

  • CVE-2003-0986Dec 31, 2003
    risk 0.00cvss epss 0.00

    Various routines for the ppc64 architecture on Linux kernel 2.6 prior to 2.6.2 and 2.4 prior to 2.4.24 do not use the copy_from_user function when copying data from userspace to kernelspace, which crosses security boundaries and allows local users to cause a denial of service.

  • CVE-2003-0461Aug 27, 2003
    risk 0.00cvss epss 0.00

    /proc/tty/driver/serial in Linux 2.4.x reveals the exact number of characters used in serial links, which could allow local users to obtain potentially sensitive information such as the length of passwords.

  • CVE-2003-0187Aug 27, 2003
    risk 0.00cvss epss 0.02

    The connection tracking core of Netfilter for Linux 2.4.20, with CONFIG_IP_NF_CONNTRACK enabled or the ip_conntrack module loaded, allows remote attackers to cause a denial of service (resource consumption) due to an inconsistency with Linux 2.4.20's support of linked lists,…

  • CVE-2003-0464Aug 27, 2003
    risk 0.00cvss epss 0.00

    The RPC code in Linux kernel 2.4 sets the reuse flag when sockets are created, which could allow local users to bind to UDP ports that are used by privileged services such as nfsd.

  • CVE-2003-0551Aug 27, 2003
    risk 0.00cvss epss 0.02

    The STP protocol implementation in Linux 2.4.x does not properly verify certain lengths, which could allow attackers to cause a denial of service.

  • CVE-2003-0467Aug 27, 2003
    risk 0.00cvss epss 0.02

    Unknown vulnerability in ip_nat_sack_adjust of Netfilter in Linux kernels 2.4.20, and some 2.5.x, when CONFIG_IP_NF_NAT_FTP or CONFIG_IP_NF_NAT_IRC is enabled, or the ip_nat_ftp or ip_nat_irc modules are loaded, allows remote attackers to cause a denial of service (crash) in…

  • CVE-2003-0465Aug 18, 2003
    risk 0.00cvss epss 0.02

    The kernel strncpy function in Linux 2.4 and 2.5 does not %NUL pad the buffer on architectures other than x86, as opposed to the expected behavior of strncpy as implemented in libc, which could lead to information leaks.

  • CVE-2003-0476Aug 7, 2003
    risk 0.00cvss epss 0.00

    The execve system call in Linux 2.4.x records the file descriptor of the executable process in the file table of the calling process, which allows local users to gain read access to restricted file descriptors.

  • CVE-2003-0643Jul 25, 2003
    risk 0.00cvss epss 0.00

    Integer signedness error in the Linux Socket Filter implementation (filter.c) in Linux 2.4.3-pre3 to 2.4.22-pre10 allows attackers to cause a denial of service (crash).

  • CVE-2003-0418Jul 24, 2003
    risk 0.00cvss epss 0.03

    The Linux 2.0 kernel IP stack does not properly calculate the size of an ICMP citation, which causes it to include portions of unauthorized memory in ICMP error responses.

  • CVE-2003-0247Jun 16, 2003
    risk 0.00cvss epss 0.03

    Unknown vulnerability in the TTY layer of the Linux kernel 2.4 allows attackers to cause a denial of service ("kernel oops").

  • CVE-2003-0364Jun 16, 2003
    risk 0.00cvss epss 0.04

    The TCP/IP fragment reassembly handling in the Linux kernel 2.4 allows remote attackers to cause a denial of service (CPU consumption) via certain packets that cause a large number of hash table collisions.

  • CVE-2003-0248Jun 16, 2003
    risk 0.00cvss epss 0.04

    The mxcsr code in Linux kernel 2.4 allows attackers to modify CPU state registers via a malformed address.

  • CVE-2003-0246Jun 16, 2003
    risk 0.00cvss epss 0.01

    The ioperm system call in Linux kernel 2.4.20 and earlier does not properly restrict privileges, which allows local users to gain read or write access to certain I/O ports.

  • CVE-2003-0244May 27, 2003
    risk 0.00cvss epss 0.04

    The route cache implementation in Linux 2.4, and the Netfilter IP conntrack module, allows remote attackers to cause a denial of service (CPU consumption) via packets with forged source addresses that cause a large number of hash table collisions.

  • CVE-2003-0018Feb 19, 2003
    risk 0.00cvss epss 0.00

    Linux kernel 2.4.10 through 2.4.21-pre4 does not properly handle the O_DIRECT feature, which allows local attackers with write privileges to read portions of previously deleted files, or cause file system corruption.

  • CVE-2002-1963Dec 31, 2002
    risk 0.00cvss epss 0.00

    Linux kernel 2.4.1 through 2.4.19 sets root's NR_RESERVED_FILES limit to 10 files, which allows local users to cause a denial of service (resource exhaustion) by opening 10 setuid binaries.

  • CVE-2002-1571Dec 31, 2002
    risk 0.00cvss epss 0.00

    The linux 2.4 kernel before 2.4.19 assumes that the fninit instruction clears all registers, which could lead to an information leak on processors that do not clear all relevant SSE registers.

  • CVE-2002-1573Dec 31, 2002
    risk 0.00cvss epss 0.02

    Unspecified vulnerability in the pcilynx ieee1394 firewire driver (pcilynx.c) in Linux kernel before 2.4.20 has unknown impact and attack vectors, related to "wrap handling."

  • CVE-2002-1976Dec 31, 2002
    risk 0.00cvss epss 0.00

    ifconfig, when used on the Linux kernel 2.2 and later, does not report when the network interface is in promiscuous mode if it was put in promiscuous mode using PACKET_MR_PROMISC, which could allow attackers to sniff the network without detection, as demonstrated using libpcap.

  • CVE-2002-1572Dec 31, 2002
    risk 0.00cvss epss 0.02

    Signed integer overflow in the bttv_read function in the bttv driver (bttv-driver.c) in Linux kernel before 2.4.20 has unknown impact and attack vectors.

  • CVE-2002-2254Dec 31, 2002
    risk 0.00cvss epss 0.00

    The experimental IP packet queuing feature in Netfilter / IPTables in Linux kernel 2.4 up to 2.4.19 and 2.5 up to 2.5.31, when a privileged process exits and network traffic is not being queued, may allow a later process with the same Process ID (PID) to access certain network…

  • CVE-2002-1319Dec 11, 2002
    risk 0.00cvss epss 0.00

    The Linux kernel 2.4.20 and earlier, and 2.5.x, when running on x86 systems, allows local users to cause a denial of service (hang) via the emulation mode, which does not properly clear TF and NT EFLAGs.

  • CVE-2002-0849Aug 12, 2002
    risk 0.00cvss epss 0.00

    Linux-iSCSI iSCSI implementation installs the iscsi.conf file with world-readable permissions on some operating systems, including Red Hat Linux Limbo Beta #1, which could allow local users to gain privileges by reading the cleartext CHAP password.

  • CVE-2002-0510Aug 12, 2002
    risk 0.00cvss epss 0.02

    The UDP implementation in Linux 2.4.x kernels keeps the IP Identification field at 0 for all non-fragmented packets, which could allow remote attackers to determine that a target system is running Linux.

  • CVE-2002-0429Aug 12, 2002
    risk 0.00cvss epss 0.00

    The iBCS routines in arch/i386/kernel/traps.c for Linux kernels 2.4.18 and earlier on x86 systems allow local users to kill arbitrary processes via a a binary compatibility interface (lcall).

  • CVE-2002-0570Jul 3, 2002
    risk 0.00cvss epss 0.00

    The encrypted loop device in Linux kernel 2.4.10 and earlier does not authenticate the entity that is encrypting data, which allows local users to modify encrypted data without knowing the key.