Novell

Suse Linux Enterprise Real Time Extension

33 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2016-3156

  • EPSS 0.03%
  • Published 27.04.2016 17:59:26
  • Last modified 12.04.2025 10:46:40

The IPv4 implementation in the Linux kernel before 4.5.2 mishandles destruction of device objects, which allows guest OS users to cause a denial of service (host OS networking outage) by arranging for a large number of IP addresses.

4.9

CVE-2016-3139

  • EPSS 0.16%
  • Published 27.04.2016 17:59:24
  • Last modified 12.04.2025 10:46:40

The wacom_probe function in drivers/input/tablet/wacom_sys.c in the Linux kernel before 3.17 allows physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) via a crafted endpoints value in a USB device ...

8.4

CVE-2016-3134

  • EPSS 0.07%
  • Published 27.04.2016 17:59:22
  • Last modified 12.04.2025 10:46:40

The netfilter subsystem in the Linux kernel through 4.5.2 does not validate certain offset fields, which allows local users to gain privileges or cause a denial of service (heap memory corruption) via an IPT_SO_SET_REPLACE setsockopt call.

6.2

CVE-2016-2847

  • EPSS 0.07%
  • Published 27.04.2016 17:59:21
  • Last modified 12.04.2025 10:46:40

fs/pipe.c in the Linux kernel before 4.5 does not limit the amount of unread data in pipes, which allows local users to cause a denial of service (memory consumption) by creating many pipes with non-default sizes.

4.9

CVE-2016-2384

  • EPSS 8.98%
  • Published 27.04.2016 17:59:11
  • Last modified 12.04.2025 10:46:40

Double free vulnerability in the snd_usbmidi_create function in sound/usb/midi.c in the Linux kernel before 4.5 allows physically proximate attackers to cause a denial of service (panic) or possibly have unspecified other impact via vectors involving...

4.9

CVE-2016-2184

  • EPSS 0.2%
  • Published 27.04.2016 17:59:09
  • Last modified 12.04.2025 10:46:40

The create_fixed_stream_quirk function in sound/usb/quirks.c in the snd-usb-audio driver in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of service (NULL pointer dereference or double free, and system crash) v...

7.2

CVE-2015-8816

  • EPSS 0.08%
  • Published 27.04.2016 17:59:03
  • Last modified 12.04.2025 10:46:40

The hub_activate function in drivers/usb/core/hub.c in the Linux kernel before 4.3.5 does not properly maintain a hub-interface data structure, which allows physically proximate attackers to cause a denial of service (invalid memory access and system...

10

CVE-2015-8812

  • EPSS 3.2%
  • Published 27.04.2016 17:59:02
  • Last modified 12.04.2025 10:46:40

drivers/infiniband/hw/cxgb3/iwch_cm.c in the Linux kernel before 4.5 does not properly identify error conditions, which allows remote attackers to execute arbitrary code or cause a denial of service (use-after-free) via crafted packets.

6.2

CVE-2015-1339

  • EPSS 0.03%
  • Published 27.04.2016 17:59:00
  • Last modified 12.04.2025 10:46:40

Memory leak in the cuse_channel_release function in fs/fuse/cuse.c in the Linux kernel before 4.4 allows local users to cause a denial of service (memory consumption) or possibly have unspecified other impact by opening /dev/cuse many times.

8.2

CVE-2015-8550

  • EPSS 15.96%
  • Published 14.04.2016 14:59:04
  • Last modified 12.04.2025 10:46:40

Xen, when used on a system providing PV backends, allows local guest OS administrators to cause a denial of service (host OS crash) or gain privileges by writing to memory shared between the frontend and backend, aka a double fetch vulnerability.