Linux

Linux Kernel

16156 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
Exploit
  • EPSS 0.89%
  • Veröffentlicht 12.02.2008 21:00:00
  • Zuletzt bearbeitet 16.06.2026 22:48:45

The copy_from_user_mmap_sem function in fs/splice.c in the Linux kernel 2.6.22 through 2.6.24 does not validate a certain userspace pointer before dereference, which allow local users to read from arbitrary kernel memory locations.

  • EPSS 0.3%
  • Veröffentlicht 12.02.2008 21:00:00
  • Zuletzt bearbeitet 16.06.2026 22:49:03

Linux kernel 2.6, when using vservers, allows local users to access resources of other vservers via a symlink attack in /proc.

Exploit
  • EPSS 3.54%
  • Veröffentlicht 12.02.2008 21:00:00
  • Zuletzt bearbeitet 16.06.2026 22:49:58

The vmsplice_to_pipe function in Linux kernel 2.6.17 through 2.6.24.1 does not validate a certain userspace pointer before dereference, which allows local users to gain root privileges via crafted arguments in a vmsplice system call, a different vuln...

Exploit
  • EPSS 0.49%
  • Veröffentlicht 08.02.2008 02:00:00
  • Zuletzt bearbeitet 16.06.2026 22:48:44

Linux kernel before 2.6.22.17, when using certain drivers that register a fault handler that does not perform range checks, allows local users to access kernel memory via an out-of-range offset.

  • EPSS 0.35%
  • Veröffentlicht 31.01.2008 21:00:00
  • Zuletzt bearbeitet 16.06.2026 22:45:15

cp, when running with an option to preserve symlinks on multiple OSes, allows local, user-assisted attackers to overwrite arbitrary files via a symlink attack using crafted directories containing multiple source files that are copied to the same dest...

  • EPSS 2.59%
  • Veröffentlicht 29.01.2008 20:00:00
  • Zuletzt bearbeitet 16.06.2026 22:48:35

The chrp_show_cpuinfo function (chrp/setup.c) in Linux kernel 2.4.21 through 2.6.18-53, when running on PowerPC, might allow local users to cause a denial of service (crash) via unknown vectors that cause the of_get_property function to fail, which t...

  • EPSS 10.45%
  • Veröffentlicht 18.01.2008 00:00:00
  • Zuletzt bearbeitet 16.06.2026 22:49:26

The Linux kernel 2.6.20 through 2.6.21.1 allows remote attackers to cause a denial of service (panic) via a certain IPv6 packet, possibly involving the Jumbo Payload hop-by-hop option (jumbogram).

  • EPSS 0.39%
  • Veröffentlicht 15.01.2008 20:00:00
  • Zuletzt bearbeitet 16.06.2026 22:48:43

VFS in the Linux kernel before 2.6.22.16, and 2.6.23.x before 2.6.23.14, performs tests of access mode by using the flag variable instead of the acc_mode variable, which might allow local users to bypass intended permissions and remove directories.

  • EPSS 14.34%
  • Veröffentlicht 21.12.2007 00:46:00
  • Zuletzt bearbeitet 16.06.2026 22:44:20

The ipv6_hop_jumbo function in net/ipv6/exthdrs.c in the Linux kernel before 2.6.22 does not properly validate the hop-by-hop IPv6 extended header, which allows remote attackers to cause a denial of service (NULL pointer dereference and kernel panic)...

  • EPSS 0.48%
  • Veröffentlicht 20.12.2007 00:46:00
  • Zuletzt bearbeitet 16.06.2026 22:47:08

Integer overflow in the hrtimer_start function in kernel/hrtimer.c in the Linux kernel before 2.6.23.10 allows local users to execute arbitrary code or cause a denial of service (panic) via a large relative timeout value. NOTE: some of these details...