CVE-2014-1874
- EPSS 0.6%
- Veröffentlicht 28.02.2014 06:18:54
- Zuletzt bearbeitet 29.04.2026 01:13:23
The security_context_to_sid_core function in security/selinux/ss/services.c in the Linux kernel before 3.13.4 allows local users to cause a denial of service (system crash) by leveraging the CAP_MAC_ADMIN capability to set a zero-length security cont...
CVE-2014-2038
- EPSS 0.41%
- Veröffentlicht 28.02.2014 06:18:54
- Zuletzt bearbeitet 29.04.2026 01:13:23
The nfs_can_extend_write function in fs/nfs/write.c in the Linux kernel before 3.13.3 relies on a write delegation to extend a write operation without a certain up-to-date verification, which allows local users to obtain sensitive information from ke...
CVE-2014-2039
- EPSS 0.46%
- Veröffentlicht 28.02.2014 06:18:54
- Zuletzt bearbeitet 29.04.2026 01:13:23
arch/s390/kernel/head64.S in the Linux kernel before 3.13.5 on the s390 platform does not properly handle attempted use of the linkage stack, which allows local users to cause a denial of service (system crash) by executing a crafted instruction.
CVE-2012-6638
- EPSS 3.34%
- Veröffentlicht 15.02.2014 14:57:07
- Zuletzt bearbeitet 29.04.2026 01:13:23
The tcp_rcv_state_process function in net/ipv4/tcp_input.c in the Linux kernel before 3.2.24 allows remote attackers to cause a denial of service (kernel resource consumption) via a flood of SYN+FIN TCP packets, a different vulnerability than CVE-201...
CVE-2014-0038
- EPSS 34.65%
- Veröffentlicht 06.02.2014 22:55:03
- Zuletzt bearbeitet 29.04.2026 01:13:23
The compat_sys_recvmmsg function in net/compat.c in the Linux kernel before 3.13.2, when CONFIG_X86_X32 is enabled, allows local users to gain privileges via a recvmmsg system call with a crafted timeout pointer parameter.
CVE-2014-1438
- EPSS 0.65%
- Veröffentlicht 18.01.2014 22:55:03
- Zuletzt bearbeitet 29.04.2026 01:13:23
The restore_fpu_checking function in arch/x86/include/asm/fpu-internal.h in the Linux kernel before 3.12.8 on the AMD K7 and K8 platforms does not clear pending exceptions before proceeding to an EMMS instruction, which allows local users to cause a ...
CVE-2014-1444
- EPSS 0.34%
- Veröffentlicht 18.01.2014 22:55:03
- Zuletzt bearbeitet 29.04.2026 01:13:23
The fst_get_iface function in drivers/net/wan/farsync.c in the Linux kernel before 3.11.7 does not properly initialize a certain data structure, which allows local users to obtain sensitive information from kernel memory by leveraging the CAP_NET_ADM...
CVE-2014-1445
- EPSS 0.41%
- Veröffentlicht 18.01.2014 22:55:03
- Zuletzt bearbeitet 29.04.2026 01:13:23
The wanxl_ioctl function in drivers/net/wan/wanxl.c in the Linux kernel before 3.11.7 does not properly initialize a certain data structure, which allows local users to obtain sensitive information from kernel memory via an ioctl call.
CVE-2014-1446
- EPSS 0.65%
- Veröffentlicht 18.01.2014 22:55:03
- Zuletzt bearbeitet 29.04.2026 01:13:23
The yam_ioctl function in drivers/net/hamradio/yam.c in the Linux kernel before 3.12.8 does not initialize a certain structure member, which allows local users to obtain sensitive information from kernel memory by leveraging the CAP_NET_ADMIN capabil...
CVE-2013-7281
- EPSS 0.48%
- Veröffentlicht 08.01.2014 16:55:07
- Zuletzt bearbeitet 29.04.2026 01:13:23
The dgram_recvmsg function in net/ieee802154/dgram.c in the Linux kernel before 3.12.4 updates a certain length value without ensuring that an associated data structure has been initialized, which allows local users to obtain sensitive information fr...