Linux

Linux Kernel

12164 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2018-1000199

  • EPSS 0.17%
  • Published 24.05.2018 13:29:01
  • Last modified 21.11.2024 03:39:55

The Linux Kernel version 3.18 contains a dangerous feature vulnerability in modify_user_hw_breakpoint() that can result in crash and possibly memory corruption. This attack appear to be exploitable via local code execution and the ability to use ptra...

5.9

CVE-2018-1108

  • EPSS 0.1%
  • Published 21.05.2018 21:29:00
  • Last modified 21.11.2024 03:59:11

kernel drivers before version 4.17-rc1 are vulnerable to a weakness in the Linux kernel's implementation of random seed data. Programs, early in the boot sequence, could use the data allocated for the seed before it was sufficiently generated.

7.1

CVE-2017-18270

  • EPSS 0.02%
  • Published 18.05.2018 16:29:00
  • Last modified 21.11.2024 03:19:44

In the Linux kernel before 4.13.5, a local user could create keyrings for other users via keyctl commands, setting unwanted defaults or causing a denial of service.

5.5

CVE-2018-11232

  • EPSS 0.11%
  • Published 18.05.2018 04:29:00
  • Last modified 21.11.2024 03:42:57

The etm_setup_aux function in drivers/hwtracing/coresight/coresight-etm-perf.c in the Linux kernel before 4.10.2 allows attackers to cause a denial of service (panic) because a parameter is incorrectly used as a local variable.

7.8

CVE-2018-1087

  • EPSS 0.04%
  • Published 15.05.2018 16:29:00
  • Last modified 21.11.2024 03:59:09

kernel KVM before versions kernel 4.16, kernel 4.16-rc7, kernel 4.17-rc1, kernel 4.17-rc2 and kernel 4.17-rc3 is vulnerable to a flaw in the way the Linux kernel's KVM hypervisor handled exceptions delivered after a stack switch operation via Mov SS ...

5.5

CVE-2018-1118

  • EPSS 0.11%
  • Published 10.05.2018 22:29:00
  • Last modified 21.11.2024 03:59:13

Linux kernel vhost since version 4.8 does not properly initialize memory in messages passed between virtual guests and the host operating system in the vhost/vhost.c:vhost_new_msg() function. This can allow local privileged users to read some kernel ...

5.5

CVE-2018-1130

  • EPSS 0.03%
  • Published 10.05.2018 13:29:00
  • Last modified 21.11.2024 03:59:15

Linux kernel before version 4.16-rc7 is vulnerable to a null pointer dereference in dccp_write_xmit() function in net/dccp/output.c in that allows a local user to cause a denial of service by a number of certain crafted system calls.

5.5

CVE-2018-10940

  • EPSS 0.08%
  • Published 09.05.2018 17:29:00
  • Last modified 21.11.2024 03:42:21

The cdrom_ioctl_media_changed function in drivers/cdrom/cdrom.c in the Linux kernel before 4.16.6 allows local attackers to use a incorrect bounds check in the CDROM driver CDROM_MEDIA_CHANGED ioctl to read out kernel memory.

7.8

CVE-2018-10675

  • EPSS 0.04%
  • Published 02.05.2018 18:29:00
  • Last modified 21.11.2024 03:41:49

The do_get_mempolicy function in mm/mempolicy.c in the Linux kernel before 4.12.9 allows local users to cause a denial of service (use-after-free) or possibly have unspecified other impact via crafted system calls.

5.5

CVE-2018-10322

Exploit
  • EPSS 0.05%
  • Published 24.04.2018 06:29:00
  • Last modified 21.11.2024 03:41:13

The xfs_dinode_verify function in fs/xfs/libxfs/xfs_inode_buf.c in the Linux kernel through 4.16.3 allows local users to cause a denial of service (xfs_ilock_attr_map_shared invalid pointer dereference) via a crafted xfs image.