- EPSS 0.5%
- Veröffentlicht 28.12.2015 11:59:05
- Zuletzt bearbeitet 06.05.2026 22:30:45
fs/btrfs/inode.c in the Linux kernel before 4.3.3 mishandles compressed inline extents, which allows local users to obtain sensitive pre-truncation information from a file via a clone action.
CVE-2015-7990
- EPSS 0.35%
- Veröffentlicht 28.12.2015 11:59:04
- Zuletzt bearbeitet 06.05.2026 22:30:45
Race condition in the rds_sendmsg function in net/rds/sendmsg.c in the Linux kernel before 4.3.3 allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact by using a socket t...
CVE-2015-7885
- EPSS 0.44%
- Veröffentlicht 28.12.2015 11:59:03
- Zuletzt bearbeitet 06.05.2026 22:30:45
The dgnc_mgmt_ioctl function in drivers/staging/dgnc/dgnc_mgmt.c in the Linux kernel through 4.3.3 does not initialize a certain structure member, which allows local users to obtain sensitive information from kernel memory via a crafted application.
CVE-2015-7884
- EPSS 0.44%
- Veröffentlicht 28.12.2015 11:59:02
- Zuletzt bearbeitet 06.05.2026 22:30:45
The vivid_fb_ioctl function in drivers/media/platform/vivid/vivid-osd.c in the Linux kernel through 4.3.3 does not initialize a certain structure member, which allows local users to obtain sensitive information from kernel memory via a crafted applic...
CVE-2015-7509
- EPSS 0.41%
- Veröffentlicht 28.12.2015 11:59:01
- Zuletzt bearbeitet 06.05.2026 22:30:45
fs/ext4/namei.c in the Linux kernel before 3.7 allows physically proximate attackers to cause a denial of service (system crash) via a crafted no-journal filesystem, a related issue to CVE-2013-2015.
CVE-2013-7446
- EPSS 0.63%
- Veröffentlicht 28.12.2015 11:59:00
- Zuletzt bearbeitet 06.05.2026 22:30:45
Use-after-free vulnerability in net/unix/af_unix.c in the Linux kernel before 4.3.3 allows local users to bypass intended AF_UNIX socket permissions or cause a denial of service (panic) via crafted epoll_ctl calls.
- EPSS 3.69%
- Veröffentlicht 16.11.2015 21:59:01
- Zuletzt bearbeitet 06.05.2026 22:30:45
net/ipv6/addrconf.c in the IPv6 stack in the Linux kernel before 4.0 does not validate attempted changes to the MTU value, which allows context-dependent attackers to cause a denial of service (packet loss) via a value that is (1) smaller than the mi...
CVE-2015-8104
- EPSS 2.5%
- Veröffentlicht 16.11.2015 11:59:12
- Zuletzt bearbeitet 06.05.2026 22:30:45
The KVM subsystem in the Linux kernel through 4.2.6, and Xen 4.3.x through 4.6.x, allows guest OS users to cause a denial of service (host OS panic or hang) by triggering many #DB (aka Debug) exceptions, related to svm.c.
CVE-2015-7872
- EPSS 0.51%
- Veröffentlicht 16.11.2015 11:59:10
- Zuletzt bearbeitet 06.05.2026 22:30:45
The key_gc_unused_keys function in security/keys/gc.c in the Linux kernel through 4.2.6 allows local users to cause a denial of service (OOPS) via crafted keyctl commands.
CVE-2015-7312
- EPSS 0.39%
- Veröffentlicht 16.11.2015 11:59:09
- Zuletzt bearbeitet 06.05.2026 22:30:45
Multiple race conditions in the Advanced Union Filesystem (aufs) aufs3-mmap.patch and aufs4-mmap.patch patches for the Linux kernel 3.x and 4.x allow local users to cause a denial of service (use-after-free and BUG) or possibly gain privileges via a ...