Novell

Suse Linux Enterprise Desktop

83 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.9

CVE-2016-2185

Exploit
  • EPSS 0.04%
  • Published 02.05.2016 10:59:28
  • Last modified 12.04.2025 10:46:40

The ati_remote2_probe function in drivers/input/misc/ati_remote2.c in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) via a crafted endpoints value in a USB ...

7.8

CVE-2016-3672

  • EPSS 0.02%
  • Published 27.04.2016 17:59:27
  • Last modified 12.04.2025 10:46:40

The arch_pick_mmap_layout function in arch/x86/mm/mmap.c in the Linux kernel through 4.5.2 does not properly randomize the legacy base address, which makes it easier for local users to defeat the intended restrictions on the ADDR_NO_RANDOMIZE flag, a...

5.5

CVE-2016-3156

  • EPSS 0.03%
  • Published 27.04.2016 17:59:26
  • Last modified 12.04.2025 10:46:40

The IPv4 implementation in the Linux kernel before 4.5.2 mishandles destruction of device objects, which allows guest OS users to cause a denial of service (host OS networking outage) by arranging for a large number of IP addresses.

4.9

CVE-2016-3139

  • EPSS 0.16%
  • Published 27.04.2016 17:59:24
  • Last modified 12.04.2025 10:46:40

The wacom_probe function in drivers/input/tablet/wacom_sys.c in the Linux kernel before 3.17 allows physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) via a crafted endpoints value in a USB device ...

8.4

CVE-2016-3134

  • EPSS 0.07%
  • Published 27.04.2016 17:59:22
  • Last modified 12.04.2025 10:46:40

The netfilter subsystem in the Linux kernel through 4.5.2 does not validate certain offset fields, which allows local users to gain privileges or cause a denial of service (heap memory corruption) via an IPT_SO_SET_REPLACE setsockopt call.

6.2

CVE-2016-2847

  • EPSS 0.07%
  • Published 27.04.2016 17:59:21
  • Last modified 12.04.2025 10:46:40

fs/pipe.c in the Linux kernel before 4.5 does not limit the amount of unread data in pipes, which allows local users to cause a denial of service (memory consumption) by creating many pipes with non-default sizes.

4.9

CVE-2016-2184

  • EPSS 0.2%
  • Published 27.04.2016 17:59:09
  • Last modified 12.04.2025 10:46:40

The create_fixed_stream_quirk function in sound/usb/quirks.c in the snd-usb-audio driver in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of service (NULL pointer dereference or double free, and system crash) v...

5.5

CVE-2015-8845

  • EPSS 0.07%
  • Published 27.04.2016 17:59:05
  • Last modified 12.04.2025 10:46:40

The tm_reclaim_thread function in arch/powerpc/kernel/process.c in the Linux kernel before 4.4.1 on powerpc platforms does not ensure that TM suspend mode exists before proceeding with a tm_reclaim call, which allows local users to cause a denial of ...

7.2

CVE-2015-8816

  • EPSS 0.08%
  • Published 27.04.2016 17:59:03
  • Last modified 12.04.2025 10:46:40

The hub_activate function in drivers/usb/core/hub.c in the Linux kernel before 4.3.5 does not properly maintain a hub-interface data structure, which allows physically proximate attackers to cause a denial of service (invalid memory access and system...

7.5

CVE-2015-2743

  • EPSS 1.29%
  • Published 06.07.2015 02:01:11
  • Last modified 12.04.2025 10:46:40

PDF.js in Mozilla Firefox before 39.0 and Firefox ESR 31.x before 31.8 and 38.x before 38.1 enables excessive privileges for internal Workers, which might allow remote attackers to execute arbitrary code by leveraging a Same Origin Policy bypass.