CVE-2010-3477
- EPSS 0.4%
- Veröffentlicht 21.09.2010 20:00:02
- Zuletzt bearbeitet 16.06.2026 23:22:51
The tcf_act_police_dump function in net/sched/act_police.c in the actions implementation in the network queueing functionality in the Linux kernel before 2.6.36-rc4 does not properly initialize certain structure members, which allows local users to o...
CVE-2010-3067
- EPSS 0.43%
- Veröffentlicht 21.09.2010 18:00:05
- Zuletzt bearbeitet 16.06.2026 23:22:03
Integer overflow in the do_io_submit function in fs/aio.c in the Linux kernel before 2.6.36-rc4-next-20100915 allows local users to cause a denial of service or possibly have unspecified other impact via crafted use of the io_submit system call.
CVE-2010-2959
- EPSS 3.78%
- Veröffentlicht 08.09.2010 20:00:03
- Zuletzt bearbeitet 16.06.2026 23:21:50
Integer overflow in net/can/bcm.c in the Controller Area Network (CAN) implementation in the Linux kernel before 2.6.27.53, 2.6.32.x before 2.6.32.21, 2.6.34.x before 2.6.34.6, and 2.6.35.x before 2.6.35.4 allows attackers to execute arbitrary code o...
CVE-2009-4895
- EPSS 0.26%
- Veröffentlicht 08.09.2010 20:00:02
- Zuletzt bearbeitet 16.06.2026 23:14:33
Race condition in the tty_fasync function in drivers/char/tty_io.c in the Linux kernel before 2.6.32.6 allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via unknown v...
CVE-2010-2798
- EPSS 0.41%
- Veröffentlicht 08.09.2010 20:00:02
- Zuletzt bearbeitet 16.06.2026 23:21:31
The gfs2_dirent_find_space function in fs/gfs2/dir.c in the Linux kernel before 2.6.35 uses an incorrect size value in calculations associated with sentinel directory entries, which allows local users to cause a denial of service (NULL pointer derefe...
CVE-2010-2803
- EPSS 0.47%
- Veröffentlicht 08.09.2010 20:00:02
- Zuletzt bearbeitet 16.06.2026 23:21:32
The drm_ioctl function in drivers/gpu/drm/drm_drv.c in the Direct Rendering Manager (DRM) subsystem in the Linux kernel before 2.6.27.53, 2.6.32.x before 2.6.32.21, 2.6.34.x before 2.6.34.6, and 2.6.35.x before 2.6.35.4 allows local users to obtain p...
CVE-2010-2226
- EPSS 0.43%
- Veröffentlicht 03.09.2010 20:00:03
- Zuletzt bearbeitet 16.06.2026 23:20:20
The xfs_swapext function in fs/xfs/xfs_dfrag.c in the Linux kernel before 2.6.35 does not properly check the file descriptors passed to the SWAPEXT ioctl, which allows local users to leverage write access and obtain read access by swapping one file i...
CVE-2010-2531
- EPSS 5%
- Veröffentlicht 20.08.2010 22:00:01
- Zuletzt bearbeitet 16.06.2026 23:20:55
The var_export function in PHP 5.2 before 5.2.14 and 5.3 before 5.3.3 flushes the output buffer to the user when certain fatal errors occur, even if display_errors is off, which allows remote attackers to obtain sensitive information by causing the a...
CVE-2010-2498
- EPSS 5.64%
- Veröffentlicht 19.08.2010 18:00:04
- Zuletzt bearbeitet 16.06.2026 23:20:52
The psh_glyph_find_strong_points function in pshinter/pshalgo.c in FreeType before 2.4.0 does not properly implement hinting masks, which allows remote attackers to cause a denial of service (heap memory corruption and application crash) or possibly ...
CVE-2010-2499
- EPSS 6.19%
- Veröffentlicht 19.08.2010 18:00:04
- Zuletzt bearbeitet 16.06.2026 23:20:52
Buffer overflow in the Mac_Read_POST_Resource function in base/ftobjs.c in FreeType before 2.4.0 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted LaserWriter PS font file with a...