CVE-2004-2536
- EPSS 2.34%
- Veröffentlicht 31.12.2004 05:00:00
- Zuletzt bearbeitet 16.06.2026 22:09:50
The exit_thread function (process.c) in Linux kernel 2.6 through 2.6.5 does not invalidate the per-TSS io_bitmap pointers if a process obtains IO access permissions from the ioperm function but does not drop those permissions when it exits, which all...
CVE-2004-2607
- EPSS 0.46%
- Veröffentlicht 31.12.2004 05:00:00
- Zuletzt bearbeitet 16.06.2026 22:09:58
A numeric casting discrepancy in sdla_xfer in Linux kernel 2.6.x up to 2.6.5 and 2.4 up to 2.4.29-rc1 allows local users to read portions of kernel memory via a large len argument, which is received as an int but cast to a short, which prevents a rea...
CVE-2004-2660
- EPSS 0.39%
- Veröffentlicht 31.12.2004 05:00:00
- Zuletzt bearbeitet 16.06.2026 22:10:04
Memory leak in direct-io.c in Linux kernel 2.6.x before 2.6.10 allows local users to cause a denial of service (memory consumption) via certain O_DIRECT (direct IO) write requests.
CVE-2004-2731
- EPSS 0.56%
- Veröffentlicht 31.12.2004 05:00:00
- Zuletzt bearbeitet 16.06.2026 22:10:14
Multiple integer overflows in Sbus PROM driver (drivers/sbus/char/openprom.c) for the Linux kernel 2.4.x up to 2.4.27, 2.6.x up to 2.6.7, and possibly later versions, allow local users to execute arbitrary code by specifying (1) a small buffer size t...
CVE-2004-0685
- EPSS 0.48%
- Veröffentlicht 23.12.2004 05:00:00
- Zuletzt bearbeitet 16.06.2026 22:06:09
Certain USB drivers in the Linux 2.4 kernel use the copy_to_user function on uninitialized structures, which could allow local users to obtain sensitive information by reading memory that was not cleared from previous usage.
CVE-2004-0814
- EPSS 0.69%
- Veröffentlicht 23.12.2004 05:00:00
- Zuletzt bearbeitet 16.06.2026 22:06:26
Multiple race conditions in the terminal layer in Linux 2.4.x, and 2.6.x before 2.6.9, allow (1) local users to obtain portions of kernel data via a TIOCSETD ioctl call to a terminal interface that is being accessed by another thread, or (2) remote a...
CVE-2004-0816
- EPSS 11.51%
- Veröffentlicht 23.12.2004 05:00:00
- Zuletzt bearbeitet 16.06.2026 22:06:26
Integer underflow in the firewall logging rules for iptables in Linux before 2.6.8 allows remote attackers to cause a denial of service (application crash) via a malformed IP packet.
CVE-2004-1333
- EPSS 0.96%
- Veröffentlicht 15.12.2004 05:00:00
- Zuletzt bearbeitet 16.06.2026 22:07:29
Integer overflow in the vc_resize function in the Linux kernel 2.4 and 2.6 before 2.6.10 allows local users to cause a denial of service (kernel crash) via a short new screen value, which leads to a buffer overflow.
CVE-2004-1335
- EPSS 1.04%
- Veröffentlicht 15.12.2004 05:00:00
- Zuletzt bearbeitet 16.06.2026 22:07:29
Memory leak in the ip_options_get function in the Linux kernel before 2.6.10 allows local users to cause a denial of service (memory consumption) by repeatedly calling the ip_cmsg_send function.
CVE-2004-0496
- EPSS 0.39%
- Veröffentlicht 06.12.2004 05:00:00
- Zuletzt bearbeitet 16.06.2026 22:05:45
Multiple unknown vulnerabilities in Linux kernel 2.6 allow local users to gain privileges or access kernel memory, a different set of vulnerabilities than those identified in CVE-2004-0495, as found by the Sparse source code checking tool.