CVE-2014-4656
- EPSS 0.5%
- Veröffentlicht 03.07.2014 04:22:15
- Zuletzt bearbeitet 06.05.2026 22:30:45
Multiple integer overflows in sound/core/control.c in the ALSA control implementation in the Linux kernel before 3.15.2 allow local users to cause a denial of service by leveraging /dev/snd/controlCX access, related to (1) index values in the snd_ctl...
CVE-2014-4171
- EPSS 0.44%
- Veröffentlicht 23.06.2014 11:21:20
- Zuletzt bearbeitet 06.05.2026 22:30:45
mm/shmem.c in the Linux kernel through 3.15.1 does not properly implement the interaction between range notification and hole punching, which allows local users to cause a denial of service (i_mutex hold) by using the mmap system call to access a hol...
CVE-2014-4508
- EPSS 0.41%
- Veröffentlicht 23.06.2014 11:21:20
- Zuletzt bearbeitet 06.05.2026 22:30:45
arch/x86/kernel/entry_32.S in the Linux kernel through 3.15.1 on 32-bit x86 platforms, when syscall auditing is enabled and the sep CPU feature flag is set, allows local users to cause a denial of service (OOPS and system crash) via an invalid syscal...
CVE-2014-4027
- EPSS 0.65%
- Veröffentlicht 23.06.2014 11:21:18
- Zuletzt bearbeitet 06.05.2026 22:30:45
The rd_build_device_space function in drivers/target/target_core_rd.c in the Linux kernel before 3.14 does not properly initialize a certain data structure, which allows local users to obtain sensitive information from ramdisk_mcp memory by leveragin...
CVE-2014-1739
- EPSS 1.12%
- Veröffentlicht 23.06.2014 11:21:17
- Zuletzt bearbeitet 06.05.2026 22:30:45
The media_device_enum_entities function in drivers/media/media-device.c in the Linux kernel before 3.14.6 does not initialize a certain data structure, which allows local users to obtain sensitive information from kernel memory by leveraging /dev/med...
- EPSS 1.19%
- Veröffentlicht 19.06.2014 15:55:06
- Zuletzt bearbeitet 06.05.2026 22:30:45
The OpenStack Nova (python-nova) package 1:2013.2.3-0 before 1:2013.2.3-0ubuntu1.2 and 1:2014.1-0 before 1:2014.1-0ubuntu1.2 and Openstack Cinder (python-cinder) package 1:2013.2.3-0 before 1:2013.2.3-0ubuntu1.1 and 1:2014.1-0 before 1:2014.1-0ubuntu...
CVE-2014-3153
- EPSS 37.23%
- Veröffentlicht 07.06.2014 14:55:27
- Zuletzt bearbeitet 21.04.2026 17:47:00
The futex_requeue function in kernel/futex.c in the Linux kernel through 3.14.5 does not ensure that calls have two different futex addresses, which allows local users to gain privileges via a crafted FUTEX_REQUEUE command that facilitates unsafe wai...
CVE-2013-6433
- EPSS 3.32%
- Veröffentlicht 02.06.2014 15:55:10
- Zuletzt bearbeitet 06.05.2026 22:30:45
The default configuration in the Red Hat openstack-neutron package before 2013.2.3-7 does not properly set a configuration file for rootwrap, which allows remote attackers to gain privileges via a crafted configuration file.
- EPSS 2.15%
- Veröffentlicht 01.06.2014 04:29:34
- Zuletzt bearbeitet 06.05.2026 22:30:45
sosreport in Red Hat sos 1.7 and earlier on Red Hat Enterprise Linux (RHEL) 5 produces an archive with an fstab file potentially containing cleartext passwords, and lacks a warning about reviewing this archive to detect included passwords, which migh...
CVE-2012-6648
- EPSS 0.38%
- Veröffentlicht 22.05.2014 23:55:03
- Zuletzt bearbeitet 06.05.2026 22:30:45
gdm/guest-session-cleanup.sh in gdm-guest-session 0.24 and earlier, as used in Ubuntu Linux 10.04 LTS, 10.10, and 11.04, allows local users to delete arbitrary files via a space in the name of a file in /tmp. NOTE: this identifier was SPLIT from CVE-...