CVE-2011-2821
- EPSS 1.99%
- Veröffentlicht 29.08.2011 15:55:01
- Zuletzt bearbeitet 16.06.2026 23:32:03
Double free vulnerability in libxml2, as used in Google Chrome before 13.0.782.215, allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted XPath expression.
CVE-2011-2492
- EPSS 0.35%
- Veröffentlicht 28.07.2011 22:55:01
- Zuletzt bearbeitet 16.06.2026 23:31:26
The bluetooth subsystem in the Linux kernel before 3.0-rc4 does not properly initialize certain data structures, which allows local users to obtain potentially sensitive information from kernel memory via a crafted getsockopt system call, related to ...
CVE-2011-1093
- EPSS 3.48%
- Veröffentlicht 18.07.2011 22:55:00
- Zuletzt bearbeitet 16.06.2026 23:28:41
The dccp_rcv_state_process function in net/dccp/input.c in the Datagram Congestion Control Protocol (DCCP) implementation in the Linux kernel before 2.6.38 does not properly handle packets for a CLOSED endpoint, which allows remote attackers to cause...
CVE-2011-1745
- EPSS 0.38%
- Veröffentlicht 09.05.2011 19:55:03
- Zuletzt bearbeitet 16.06.2026 23:29:56
Integer overflow in the agp_generic_insert_memory function in drivers/char/agp/generic.c in the Linux kernel before 2.6.38.5 allows local users to gain privileges or cause a denial of service (system crash) via a crafted AGPIOC_BIND agp_ioctl ioctl c...
CVE-2011-1746
- EPSS 0.42%
- Veröffentlicht 09.05.2011 19:55:03
- Zuletzt bearbeitet 16.06.2026 23:29:56
Multiple integer overflows in the (1) agp_allocate_memory and (2) agp_create_user_memory functions in drivers/char/agp/generic.c in the Linux kernel before 2.6.38.5 allow local users to trigger buffer overflows, and consequently cause a denial of ser...
CVE-2011-2022
- EPSS 0.38%
- Veröffentlicht 09.05.2011 19:55:03
- Zuletzt bearbeitet 16.06.2026 23:30:37
The agp_generic_remove_memory function in drivers/char/agp/generic.c in the Linux kernel before 2.6.38.5 does not validate a certain start parameter, which allows local users to gain privileges or cause a denial of service (system crash) via a crafte...
CVE-2011-1593
- EPSS 0.57%
- Veröffentlicht 03.05.2011 20:55:08
- Zuletzt bearbeitet 16.06.2026 23:29:41
Multiple integer overflows in the next_pidmap function in kernel/pid.c in the Linux kernel before 2.6.38.4 allow local users to cause a denial of service (system crash) via a crafted (1) getdents or (2) readdir system call.
CVE-2011-1163
- EPSS 0.41%
- Veröffentlicht 10.04.2011 02:51:19
- Zuletzt bearbeitet 16.06.2026 23:28:50
The osf_partition function in fs/partitions/osf.c in the Linux kernel before 2.6.38 does not properly handle an invalid number of partitions, which might allow local users to obtain potentially sensitive information from kernel heap memory via vector...
CVE-2011-0695
- EPSS 1.19%
- Veröffentlicht 15.03.2011 17:55:04
- Zuletzt bearbeitet 16.06.2026 23:27:53
Race condition in the cm_work_handler function in the InfiniBand driver (drivers/infiniband/core/cma.c) in Linux kernel 2.6.x allows remote attackers to cause a denial of service (panic) by sending an InfiniBand request while other request handlers a...
CVE-2010-4649
- EPSS 0.35%
- Veröffentlicht 18.02.2011 20:00:09
- Zuletzt bearbeitet 16.06.2026 23:25:14
Integer overflow in the ib_uverbs_poll_cq function in drivers/infiniband/core/uverbs_cmd.c in the Linux kernel before 2.6.37 allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact via a large val...