Linux

Linux Kernel

14023 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.3

CVE-2015-0569

Exploit
  • EPSS 0.45%
  • Veröffentlicht 09.05.2016 10:59:00
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Heap-based buffer overflow in the private wireless extensions IOCTL implementation in wlan_hdd_wext.c in the WLAN (aka Wi-Fi) driver for the Linux kernel 3.x and 4.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices ...

7.8

CVE-2016-2062

  • EPSS 0.06%
  • Veröffentlicht 05.05.2016 21:59:08
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The adreno_perfcounter_query_group function in drivers/gpu/msm/adreno_perfcounter.c in the Adreno GPU driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, uses an inco...

7

CVE-2016-2059

  • EPSS 0.04%
  • Veröffentlicht 05.05.2016 21:59:07
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The msm_ipc_router_bind_control_port function in net/ipc_router/ipc_router_core.c in the IPC router kernel module for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, does no...

4.9

CVE-2016-3951

  • EPSS 0.04%
  • Veröffentlicht 02.05.2016 10:59:41
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Double free vulnerability in drivers/net/usb/cdc_ncm.c in the Linux kernel before 4.5 allows physically proximate attackers to cause a denial of service (system crash) or possibly have unspecified other impact by inserting a USB device with an invali...

4.9

CVE-2016-3689

  • EPSS 0.09%
  • Veröffentlicht 02.05.2016 10:59:40
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The ims_pcu_parse_cdc_data function in drivers/input/misc/ims-pcu.c in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of service (system crash) via a USB device without both a master and a slave interface.

4.9

CVE-2016-3140

  • EPSS 0.16%
  • Veröffentlicht 02.05.2016 10:59:39
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The digi_port_init function in drivers/usb/serial/digi_acceleport.c in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) via a crafted endpoints value in a USB...

4.9

CVE-2016-3138

  • EPSS 0.02%
  • Veröffentlicht 02.05.2016 10:59:37
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The acm_probe function in drivers/usb/class/cdc-acm.c in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) via a USB device without both a control and a data e...

4.9

CVE-2016-3137

  • EPSS 0.02%
  • Veröffentlicht 02.05.2016 10:59:36
  • Zuletzt bearbeitet 12.04.2025 10:46:40

drivers/usb/serial/cypress_m8.c in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) via a USB device without both an interrupt-in and an interrupt-out endpoin...

4.9

CVE-2016-3136

  • EPSS 0.2%
  • Veröffentlicht 02.05.2016 10:59:35
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The mct_u232_msr_to_state function in drivers/usb/serial/mct_u232.c in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) via a crafted USB device without two i...

7.8

CVE-2016-2854

Exploit
  • EPSS 0.35%
  • Veröffentlicht 02.05.2016 10:59:34
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The aufs module for the Linux kernel 3.x and 4.x does not properly maintain POSIX ACL xattr data, which allows local users to gain privileges by leveraging a group-writable setgid directory.