Linux

Linux Kernel

16156 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.38%
  • Veröffentlicht 04.10.2007 23:17:00
  • Zuletzt bearbeitet 16.06.2026 22:43:27

The (1) hugetlb_vmtruncate_list and (2) hugetlb_vmtruncate functions in fs/hugetlbfs/inode.c in the Linux kernel before 2.6.19-rc4 perform certain prio_tree calculations using HPAGE_SIZE instead of PAGE_SIZE units, which allows local users to cause a...

  • EPSS 0.35%
  • Veröffentlicht 26.09.2007 21:17:00
  • Zuletzt bearbeitet 16.06.2026 22:45:25

The disconnect method in the Philips USB Webcam (pwc) driver in Linux kernel 2.6.x before 2.6.22.6 "relies on user space to close the device," which allows user-assisted local attackers to cause a denial of service (USB subsystem hang and CPU consump...

  • EPSS 0.76%
  • Veröffentlicht 26.09.2007 10:17:00
  • Zuletzt bearbeitet 16.06.2026 22:44:21

The snd_mem_proc_read function in sound/core/memalloc.c in the Advanced Linux Sound Architecture (ALSA) in the Linux kernel before 2.6.22.8 does not return the correct write size, which allows local users to obtain sensitive information (kernel memor...

  • EPSS 0.37%
  • Veröffentlicht 26.09.2007 10:17:00
  • Zuletzt bearbeitet 16.06.2026 22:45:25

The ATM module in the Linux kernel before 2.4.35.3, when CLIP support is enabled, allows local users to cause a denial of service (kernel panic) by reading /proc/net/atm/arp before the CLIP module has been loaded.

  • EPSS 0.82%
  • Veröffentlicht 24.09.2007 22:17:00
  • Zuletzt bearbeitet 16.06.2026 22:44:21

The IA32 system call emulation functionality in Linux kernel 2.4.x and 2.6.x before 2.6.22.7, when running on the x86_64 architecture, does not zero extend the eax register after the 32bit entry path to ptrace is used, which might allow local users t...

  • EPSS 0.25%
  • Veröffentlicht 18.09.2007 19:17:00
  • Zuletzt bearbeitet 16.06.2026 22:36:43

Race condition in the tee (sys_tee) system call in the Linux kernel 2.6.17 through 2.6.17.6 might allow local users to cause a denial of service (system crash), obtain sensitive information (kernel memory contents), or gain privileges via unspecified...

Exploit
  • EPSS 0.51%
  • Veröffentlicht 17.09.2007 17:17:00
  • Zuletzt bearbeitet 16.06.2026 22:42:36

The Linux kernel 2.6.20 and 2.6.21 does not properly handle an invalid LDT segment selector in %cs (the xcs field) during ptrace single-step operations, which allows local users to cause a denial of service (NULL dereference and OOPS) via certain cod...

  • EPSS 0.38%
  • Veröffentlicht 14.09.2007 01:17:00
  • Zuletzt bearbeitet 16.06.2026 22:42:38

The CIFS filesystem in the Linux kernel before 2.6.22, when Unix extension support is enabled, does not honor the umask of a process, which allows local users to gain privileges.

  • EPSS 0.36%
  • Veröffentlicht 14.08.2007 17:17:00
  • Zuletzt bearbeitet 16.06.2026 22:42:53

Linux kernel 2.4.35 and other versions allows local users to send arbitrary signals to a child process that is running at higher privileges by causing a setuid-root parent process to die, which delivers an attacker-controlled parent process death sig...

  • EPSS 1.73%
  • Veröffentlicht 13.08.2007 21:17:00
  • Zuletzt bearbeitet 16.06.2026 22:43:47

The xfer_secondary_pool function in drivers/char/random.c in the Linux kernel 2.4 before 2.4.35 performs reseed operations on only the first few bytes of a buffer, which might make it easier for attackers to predict the output of the random number ge...