Linux

Linux Kernel

12164 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2017-18193

  • EPSS 0.08%
  • Published 22.02.2018 15:29:00
  • Last modified 21.11.2024 03:19:31

fs/f2fs/extent_cache.c in the Linux kernel before 4.13 mishandles extent trees, which allows local users to cause a denial of service (BUG) via an application with multiple threads.

5.5

CVE-2018-7273

Exploit
  • EPSS 1.68%
  • Published 21.02.2018 00:29:00
  • Last modified 21.11.2024 04:11:55

In the Linux kernel through 4.15.4, the floppy driver reveals the addresses of kernel functions and global variables using printk calls within the function show_floppy in drivers/block/floppy.c. An attacker can read this information from dmesg and us...

7.8

CVE-2018-6927

  • EPSS 0.06%
  • Published 12.02.2018 19:29:01
  • Last modified 21.11.2024 04:11:26

The futex_requeue function in kernel/futex.c in the Linux kernel before 4.14.15 might allow attackers to cause a denial of service (integer overflow) or possibly have unspecified other impact by triggering a negative wake or requeue value.

9.8

CVE-2017-18174

  • EPSS 0.59%
  • Published 11.02.2018 18:29:00
  • Last modified 21.11.2024 03:19:29

In the Linux kernel before 4.7, the amd_gpio_remove function in drivers/pinctrl/pinctrl-amd.c calls the pinctrl_unregister function, leading to a double free.

7.7

CVE-2018-1000026

  • EPSS 0.87%
  • Published 09.02.2018 23:29:00
  • Last modified 21.11.2024 03:39:27

Linux Linux kernel version at least v4.8 onwards, probably well before contains a Insufficient input validation vulnerability in bnx2x network card driver that can result in DoS: Network card firmware assertion takes card off-line. This attack appear...

7.4

CVE-2018-1000028

  • EPSS 0.29%
  • Published 09.02.2018 23:29:00
  • Last modified 21.11.2024 03:39:27

Linux kernel version after commit bdcf0a423ea1 - 4.15-rc4+, 4.14.8+, 4.9.76+, 4.4.111+ contains a Incorrect Access Control vulnerability in NFS server (nfsd) that can result in remote users reading or writing files they should not be able to via NFS....

5.5

CVE-2014-8171

  • EPSS 0.05%
  • Published 09.02.2018 22:29:00
  • Last modified 21.11.2024 02:18:42

The memory resource controller (aka memcg) in the Linux kernel allows local users to cause a denial of service (deadlock) by spawning new processes within a memory-constrained cgroup.

4.7

CVE-2017-16911

  • EPSS 0.06%
  • Published 31.01.2018 22:29:00
  • Last modified 21.11.2024 03:17:13

The vhci_hcd driver in the Linux Kernel before version 4.14.8 and 4.4.114 allows allows local attackers to disclose kernel memory addresses. Successful exploitation requires that a USB device is attached over IP.

7.1

CVE-2017-16912

  • EPSS 8.62%
  • Published 31.01.2018 22:29:00
  • Last modified 21.11.2024 03:17:13

The "get_pipe()" function (drivers/usb/usbip/stub_rx.c) in the Linux Kernel before version 4.14.8, 4.9.71, and 4.4.114 allows attackers to cause a denial of service (out-of-bounds read) via a specially crafted USB over IP packet.

7.1

CVE-2017-16913

  • EPSS 11.08%
  • Published 31.01.2018 22:29:00
  • Last modified 21.11.2024 03:17:14

The "stub_recv_cmd_submit()" function (drivers/usb/usbip/stub_rx.c) in the Linux Kernel before version 4.14.8, 4.9.71, and 4.4.114 when handling CMD_SUBMIT packets allows attackers to cause a denial of service (arbitrary memory allocation) via a spec...