CVE-2007-1388
- EPSS 0.55%
- Veröffentlicht 10.03.2007 19:19:00
- Zuletzt bearbeitet 16.06.2026 22:37:29
The do_ipv6_setsockopt function in net/ipv6/ipv6_sockglue.c in Linux kernel before 2.6.20, and possibly other versions, allows local users to cause a denial of service (oops) by calling setsockopt with the IPV6_RTHDR option name and possibly a zero o...
CVE-2007-1217
- EPSS 0.37%
- Veröffentlicht 02.03.2007 21:18:00
- Zuletzt bearbeitet 16.06.2026 22:37:09
Buffer overflow in the bufprint function in capiutil.c in libcapi, as used in Linux kernel 2.6.9 to 2.6.20 and isdn4k-utils, allows local users to cause a denial of service (crash) and possibly gain privileges via a crafted CAPI packet.
CVE-2006-7051
- EPSS 0.88%
- Veröffentlicht 24.02.2007 00:28:00
- Zuletzt bearbeitet 16.06.2026 22:34:17
The sys_timer_create function in posix-timers.c for Linux kernel 2.6.x allows local users to cause a denial of service (memory consumption) and possibly bypass memory limits or cause other processes to be killed by creating a large number of posix ti...
CVE-2007-0772
- EPSS 3.87%
- Veröffentlicht 20.02.2007 17:28:00
- Zuletzt bearbeitet 16.06.2026 22:36:15
The Linux kernel 2.6.13 and other versions before 2.6.20.1 allows remote attackers to cause a denial of service (oops) via a crafted NFSACL 2 ACCESS request that triggers a free of an incorrect pointer.
CVE-2007-0958
- EPSS 0.39%
- Veröffentlicht 15.02.2007 18:28:00
- Zuletzt bearbeitet 16.06.2026 22:36:38
Linux kernel 2.6.x before 2.6.20 allows local users to read unreadable binaries by using the interpreter (PT_INTERP) functionality and triggering a core dump, a variant of CVE-2004-1073.
CVE-2007-0822
- EPSS 0.41%
- Veröffentlicht 07.02.2007 20:28:00
- Zuletzt bearbeitet 16.06.2026 22:36:21
umount, when running with the Linux 2.6.15 kernel on Slackware Linux 10.2, allows local users to trigger a NULL dereference and application crash by invoking the program with a pathname for a USB pen drive that was mounted and then physically removed...
CVE-2007-0006
- EPSS 0.36%
- Veröffentlicht 06.02.2007 19:28:00
- Zuletzt bearbeitet 16.06.2026 22:34:40
The key serial number collision avoidance code in the key_alloc_serial function in Linux kernel 2.6.9 up to 2.6.20 allows local users to cause a denial of service (crash) via vectors that trigger a null dereference, as originally reported as "spinloc...
CVE-2006-5753
- EPSS 0.38%
- Veröffentlicht 30.01.2007 19:28:00
- Zuletzt bearbeitet 16.06.2026 22:31:48
Unspecified vulnerability in the listxattr system call in Linux kernel, when a "bad inode" is present, allows local users to cause a denial of service (data corruption) and possibly gain privileges via unknown vectors.
CVE-2006-5754
- EPSS 0.4%
- Veröffentlicht 30.01.2007 19:28:00
- Zuletzt bearbeitet 16.06.2026 22:31:48
The aio_setup_ring function in Linux kernel does not properly initialize a variable, which allows local users to cause a denial of service (crash) via an unspecified error path that causes an incorrect free operation.
CVE-2006-6535
- EPSS 2.62%
- Veröffentlicht 30.01.2007 19:28:00
- Zuletzt bearbeitet 16.06.2026 22:33:19
The dev_queue_xmit function in Linux kernel 2.6 can fail before calling the local_bh_disable function, which could lead to data corruption and "node lockups." NOTE: it is not clear whether this issue is exploitable.