CVE-2017-9605
- EPSS 0.11%
- Veröffentlicht 13.06.2017 19:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
The vmw_gb_surface_define_ioctl function (accessible via DRM_IOCTL_VMW_GB_SURFACE_CREATE) in drivers/gpu/drm/vmwgfx/vmwgfx_surface.c in the Linux kernel through 4.11.4 defines a backup_handle variable but does not give it an initial value. If one att...
CVE-2017-7346
- EPSS 0.1%
- Veröffentlicht 30.03.2017 23:59:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
The vmw_gb_surface_define_ioctl function in drivers/gpu/drm/vmwgfx/vmwgfx_surface.c in the Linux kernel through 4.10.7 does not validate certain levels data, which allows local users to cause a denial of service (system hang) via a crafted ioctl call...
CVE-2015-8553
- EPSS 0.27%
- Veröffentlicht 13.04.2016 15:59:07
- Zuletzt bearbeitet 06.05.2026 22:30:45
Xen allows guest OS users to obtain sensitive information from uninitialized locations in host OS kernel memory by not enabling memory and I/O decoding control bits. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-0777.