CVE-2018-12929
- EPSS 0.4%
- Veröffentlicht 28.06.2018 14:29:00
- Zuletzt bearbeitet 21.11.2024 03:46:08
ntfs_read_locked_inode in the ntfs.ko filesystem driver in the Linux kernel 4.15.0 allows attackers to trigger a use-after-free read and possibly cause a denial of service (kernel oops or panic) via a crafted ntfs filesystem.
CVE-2018-12930
- EPSS 0.43%
- Veröffentlicht 28.06.2018 14:29:00
- Zuletzt bearbeitet 21.11.2024 03:46:08
ntfs_end_buffer_async_read in the ntfs.ko filesystem driver in the Linux kernel 4.15.0 allows attackers to trigger a stack-based out-of-bounds write and cause a denial of service (kernel oops or panic) or possibly have unspecified other impact via a ...
CVE-2018-12931
- EPSS 0.43%
- Veröffentlicht 28.06.2018 14:29:00
- Zuletzt bearbeitet 21.11.2024 03:46:08
ntfs_attr_find in the ntfs.ko filesystem driver in the Linux kernel 4.15.0 allows attackers to trigger a stack-based out-of-bounds write and cause a denial of service (kernel oops or panic) or possibly have unspecified other impact via a crafted ntfs...
CVE-2016-10723
- EPSS 0.38%
- Veröffentlicht 21.06.2018 13:29:00
- Zuletzt bearbeitet 21.11.2024 02:44:35
An issue was discovered in the Linux kernel through 4.17.2. Since the page allocator does not yield CPU resources to the owner of the oom_lock mutex, a local unprivileged user can trivially lock up the system forever by wasting CPU resources from the...
CVE-2018-1121
- EPSS 4.19%
- Veröffentlicht 13.06.2018 20:29:00
- Zuletzt bearbeitet 21.11.2024 03:59:13
procps-ng, procps is vulnerable to a process hiding through race condition. Since the kernel's proc_pid_readdir() returns PID entries in ascending numeric order, a process occupying a high PID can use inotify events to determine when the process list...
CVE-2018-7273
- EPSS 1.79%
- Veröffentlicht 21.02.2018 00:29:00
- Zuletzt bearbeitet 21.11.2024 04:11:55
In the Linux kernel through 4.15.4, the floppy driver reveals the addresses of kernel functions and global variables using printk calls within the function show_floppy in drivers/block/floppy.c. An attacker can read this information from dmesg and us...
CVE-2017-13165
- EPSS 0.14%
- Veröffentlicht 06.12.2017 14:29:01
- Zuletzt bearbeitet 28.05.2026 19:16:24
An elevation of privilege vulnerability in the kernel file system. Product: Android. Versions: Android kernel. Android ID A-31269937.
CVE-2017-13693
- EPSS 0.44%
- Veröffentlicht 25.08.2017 08:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
The acpi_ds_create_operands() function in drivers/acpi/acpica/dsutils.c in the Linux kernel through 4.12.9 does not flush the operand cache and causes a kernel stack dump, which allows local users to obtain sensitive information from kernel memory an...
CVE-2017-13694
- EPSS 0.41%
- Veröffentlicht 25.08.2017 08:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
The acpi_ps_complete_final_op() function in drivers/acpi/acpica/psobject.c in the Linux kernel through 4.12.9 does not flush the node and node_ext caches and causes a kernel stack dump, which allows local users to obtain sensitive information from ke...
CVE-2017-9986
- EPSS 0.36%
- Veröffentlicht 28.06.2017 06:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
The intr function in sound/oss/msnd_pinnacle.c in the Linux kernel through 4.11.7 allows local users to cause a denial of service (over-boundary access) or possibly have unspecified other impact by changing the value of a message queue head pointer b...