Linux

Linux Kernel

12164 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.1

CVE-2017-16914

  • EPSS 11.31%
  • Published 31.01.2018 22:29:00
  • Last modified 21.11.2024 03:17:14

The "stub_send_ret_submit()" function (drivers/usb/usbip/stub_tx.c) in the Linux Kernel before version 4.14.8, 4.9.71, 4.1.49, and 4.4.107 allows attackers to cause a denial of service (NULL pointer dereference) via a specially crafted USB over IP pa...

7.5

CVE-2018-6412

  • EPSS 0.24%
  • Published 31.01.2018 07:29:00
  • Last modified 21.11.2024 04:10:39

In the function sbusfb_ioctl_helper() in drivers/video/fbdev/sbuslib.c in the Linux kernel through 4.15, an integer signedness error allows arbitrary information leakage for the FBIOPUTCMAP_SPARC and FBIOGETCMAP_SPARC commands.

7.8

CVE-2017-18079

  • EPSS 0.08%
  • Published 29.01.2018 05:29:00
  • Last modified 21.11.2024 03:19:19

drivers/input/serio/i8042.c in the Linux kernel before 4.12.4 allows attackers to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact because the port->exists value can change after it is va...

5.5

CVE-2018-5750

  • EPSS 0.04%
  • Published 26.01.2018 19:29:00
  • Last modified 21.11.2024 04:09:18

The acpi_smbus_hc_add function in drivers/acpi/sbshc.c in the Linux kernel through 4.14.15 allows local users to obtain sensitive address information by reading dmesg data from an SBS HC printk call.

7.8

CVE-2017-18075

  • EPSS 0.08%
  • Published 24.01.2018 10:29:00
  • Last modified 21.11.2024 03:19:18

crypto/pcrypt.c in the Linux kernel before 4.14.13 mishandles freeing instances, allowing a local user able to access the AF_ALG-based AEAD interface (CONFIG_CRYPTO_USER_API_AEAD) and pcrypt (CONFIG_CRYPTO_PCRYPT) to cause a denial of service (kfree ...

7.1

CVE-2018-1000004

Exploit
  • EPSS 3.62%
  • Published 16.01.2018 20:29:00
  • Last modified 21.11.2024 03:39:24

In the Linux kernel 4.12, 3.10, 2.6 and possibly earlier versions a race condition vulnerability exists in the sound system, this can lead to a deadlock and denial of service condition.

10

CVE-2018-5703

  • EPSS 0.49%
  • Published 16.01.2018 09:29:00
  • Last modified 21.11.2024 04:09:12

The tcp_v6_syn_recv_sock function in net/ipv6/tcp_ipv6.c in the Linux kernel through 4.14.11 allows attackers to cause a denial of service (slab out-of-bounds write) or possibly have unspecified other impact via vectors involving TLS.

9.3

CVE-2017-15126

  • EPSS 1.15%
  • Published 14.01.2018 06:29:00
  • Last modified 21.11.2024 03:14:07

A use-after-free flaw was found in fs/userfaultfd.c in the Linux kernel before 4.13.6. The issue is related to the handling of fork failure when dealing with event messages. Failure to fork correctly can lead to a situation where a fork event will be...

5.5

CVE-2017-15127

  • EPSS 0.04%
  • Published 14.01.2018 06:29:00
  • Last modified 21.11.2024 03:14:07

A flaw was found in the hugetlb_mcopy_atomic_pte function in mm/hugetlb.c in the Linux kernel before 4.13. A superfluous implicit page unlock for VM_SHARED hugetlbfs mapping could trigger a local denial of service (BUG).

5.5

CVE-2017-15128

  • EPSS 0.05%
  • Published 14.01.2018 06:29:00
  • Last modified 21.11.2024 03:14:07

A flaw was found in the hugetlb_mcopy_atomic_pte function in mm/hugetlb.c in the Linux kernel before 4.13.12. A lack of size check could cause a denial of service (BUG).