CVE-2015-8767
- EPSS 0.39%
- Veröffentlicht 08.02.2016 03:59:06
- Zuletzt bearbeitet 06.05.2026 22:30:45
net/sctp/sm_sideeffect.c in the Linux kernel before 4.3 does not properly manage the relationship between a lock and a socket, which allows local users to cause a denial of service (deadlock) via a crafted sctp_accept call.
- EPSS 0.4%
- Veröffentlicht 08.02.2016 03:59:05
- Zuletzt bearbeitet 06.05.2026 22:30:45
kernel/ptrace.c in the Linux kernel through 4.4.1 mishandles uid and gid mappings, which allows local users to gain privileges by establishing a user namespace, waiting for a root process to enter that namespace with an unsafe uid or gid, and then us...
- EPSS 0.52%
- Veröffentlicht 08.02.2016 03:59:04
- Zuletzt bearbeitet 06.05.2026 22:30:45
The sco_sock_bind function in net/bluetooth/sco.c in the Linux kernel before 4.3.4 does not verify an address length, which allows local users to obtain sensitive information from kernel memory and bypass the KASLR protection mechanism via a crafted ...
CVE-2015-7566
- EPSS 1.84%
- Veröffentlicht 08.02.2016 03:59:03
- Zuletzt bearbeitet 06.05.2026 22:30:45
The clie_5_attach function in drivers/usb/serial/visor.c in the Linux kernel through 4.4.1 allows physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact by ins...
CVE-2015-7550
- EPSS 0.41%
- Veröffentlicht 08.02.2016 03:59:02
- Zuletzt bearbeitet 06.05.2026 22:30:45
The keyctl_read_key function in security/keys/keyctl.c in the Linux kernel before 4.3.4 does not properly use a semaphore, which allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified ...
CVE-2015-7513
- EPSS 0.56%
- Veröffentlicht 08.02.2016 03:59:01
- Zuletzt bearbeitet 06.05.2026 22:30:45
arch/x86/kvm/x86.c in the Linux kernel before 4.4 does not reset the PIT counter values during state restoration, which allows guest OS users to cause a denial of service (divide-by-zero error and host OS crash) via a zero value, related to the kvm_v...
CVE-2013-4312
- EPSS 0.6%
- Veröffentlicht 08.02.2016 03:59:00
- Zuletzt bearbeitet 06.05.2026 22:30:45
The Linux kernel before 4.4.1 allows local users to bypass file-descriptor limits and cause a denial of service (memory consumption) by sending each descriptor over a UNIX socket before closing it, related to net/unix/af_unix.c and net/unix/garbage.c...
CVE-2015-8660
- EPSS 22.37%
- Veröffentlicht 28.12.2015 11:59:08
- Zuletzt bearbeitet 06.05.2026 22:30:45
The ovl_setattr function in fs/overlayfs/inode.c in the Linux kernel through 4.3.3 attempts to merge distinct setattr operations, which allows local users to bypass intended access restrictions and modify the attributes of arbitrary overlay files via...
CVE-2015-8569
- EPSS 0.49%
- Veröffentlicht 28.12.2015 11:59:07
- Zuletzt bearbeitet 06.05.2026 22:30:45
The (1) pptp_bind and (2) pptp_connect functions in drivers/net/ppp/pptp.c in the Linux kernel through 4.3.3 do not verify an address length, which allows local users to obtain sensitive information from kernel memory and bypass the KASLR protection ...
- EPSS 1.22%
- Veröffentlicht 28.12.2015 11:59:06
- Zuletzt bearbeitet 06.05.2026 22:30:45
The networking implementation in the Linux kernel through 4.3.3, as used in Android and other products, does not validate protocol identifiers for certain protocol families, which allows local users to cause a denial of service (NULL function pointer...