CVE search results

11 – 20 of 220 results

Detailed view

Sort by:

CVE-2008-0009

High priority

Not affected

The vmsplice_to_user function in fs/splice.c in the Linux kernel 2.6.22 through 2.6.24 does not validate a certain userspace pointer before dereference, which might allow local users to access arbitrary kernel memory locations.

5 affected packages

linux, linux-source-2.6.15, linux-source-2.6.17, linux-source-2.6.20, linux-source-2.6.22

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
linux	—	—	—	—	—
linux-source-2.6.15	—	—	—	—	—
linux-source-2.6.17	—	—	—	—	—
linux-source-2.6.20	—	—	—	—	—
linux-source-2.6.22	—	—	—	—	—

CVE-2008-0007

Low priority

Some fixes available 3 of 4

Linux kernel before 2.6.22.17, when using certain drivers that register a fault handler that does not perform range checks, allows local users to access kernel memory via an out-of-range offset.

5 affected packages

linux, linux-source-2.6.15, linux-source-2.6.17, linux-source-2.6.20, linux-source-2.6.22

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
linux	—	—	—	—	—
linux-source-2.6.15	—	—	—	—	—
linux-source-2.6.17	—	—	—	—	—
linux-source-2.6.20	—	—	—	—	—
linux-source-2.6.22	—	—	—	—	—

CVE-2007-6694

Low priority

Some fixes available 4 of 5

The chrp_show_cpuinfo function (chrp/setup.c) in Linux kernel 2.4.21 through 2.6.18-53, when running on PowerPC, might allow local users to cause a denial of service (crash) via unknown vectors that cause the of_get_property...

5 affected packages

linux, linux-source-2.6.15, linux-source-2.6.17, linux-source-2.6.20, linux-source-2.6.22

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
linux	—	—	—	—	—
linux-source-2.6.15	—	—	—	—	—
linux-source-2.6.17	—	—	—	—	—
linux-source-2.6.20	—	—	—	—	—
linux-source-2.6.22	—	—	—	—	—

CVE-2008-0352

Low priority

Not affected

The Linux kernel 2.6.20 through 2.6.21.1 allows remote attackers to cause a denial of service (panic) via a certain IPv6 packet, possibly involving the Jumbo Payload hop-by-hop option (jumbogram).

5 affected packages

linux, linux-source-2.6.15, linux-source-2.6.17, linux-source-2.6.20, linux-source-2.6.22

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
linux	—	—	—	—	—
linux-source-2.6.15	—	—	—	—	—
linux-source-2.6.17	—	—	—	—	—
linux-source-2.6.20	—	—	—	—	—
linux-source-2.6.22	—	—	—	—	—

CVE-2008-0001

Low priority

Fixed

VFS in the Linux kernel before 2.6.22.16, and 2.6.23.x before 2.6.23.14, performs tests of access mode by using the flag variable instead of the acc_mode variable, which might allow local users to bypass intended permissions and...

5 affected packages

linux, linux-source-2.6.15, linux-source-2.6.17, linux-source-2.6.20, linux-source-2.6.22

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
linux	—	—	—	—	—
linux-source-2.6.15	—	—	—	—	—
linux-source-2.6.17	—	—	—	—	—
linux-source-2.6.20	—	—	—	—	—
linux-source-2.6.22	—	—	—	—	—

CVE-2007-4567

Medium priority

Fixed

The ipv6_hop_jumbo function in net/ipv6/exthdrs.c in the Linux kernel before 2.6.22 does not properly validate the hop-by-hop IPv6 extended header, which allows remote attackers to cause a denial of service (NULL pointer...

4 affected packages

linux-source-2.6.15, linux-source-2.6.17, linux-source-2.6.20, linux-source-2.6.22

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
linux-source-2.6.15	—	—	—	—	—
linux-source-2.6.17	—	—	—	—	—
linux-source-2.6.20	—	—	—	—	—
linux-source-2.6.22	—	—	—	—	—

CVE-2007-5966

Medium priority

Fixed

Integer overflow in the hrtimer_start function in kernel/hrtimer.c in the Linux kernel before 2.6.23.10 allows local users to execute arbitrary code or cause a denial of service (panic) via a large relative timeout value. NOTE:...

5 affected packages

linux, linux-source-2.6.15, linux-source-2.6.17, linux-source-2.6.20, linux-source-2.6.22

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
linux	—	—	—	—	—
linux-source-2.6.15	—	—	—	—	—
linux-source-2.6.17	—	—	—	—	—
linux-source-2.6.20	—	—	—	—	—
linux-source-2.6.22	—	—	—	—	—

CVE-2007-6434

Medium priority

Not affected

Linux kernel 2.6.23 allows local users to create low pages in virtual userspace memory and bypass mmap_min_addr protection via a crafted executable file that calls the do_brk function.

5 affected packages

linux, linux-source-2.6.15, linux-source-2.6.17, linux-source-2.6.20, linux-source-2.6.22

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
linux	—	—	—	—	—
linux-source-2.6.15	—	—	—	—	—
linux-source-2.6.17	—	—	—	—	—
linux-source-2.6.20	—	—	—	—	—
linux-source-2.6.22	—	—	—	—	—

CVE-2007-6417

Low priority

Fixed

The shmem_getpage function (mm/shmem.c) in Linux kernel 2.6.11 through 2.6.23 does not properly clear allocated memory in some rare circumstances related to tmpfs, which might allow local users to read sensitive kernel data or...

5 affected packages

linux, linux-source-2.6.15, linux-source-2.6.17, linux-source-2.6.20, linux-source-2.6.22

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
linux	—	—	—	—	—
linux-source-2.6.15	—	—	—	—	—
linux-source-2.6.17	—	—	—	—	—
linux-source-2.6.20	—	—	—	—	—
linux-source-2.6.22	—	—	—	—	—

CVE-2007-6151

Unknown priority

Fixed

The isdn_ioctl function in isdn_common.c in Linux kernel 2.6.23 allows local users to cause a denial of service via a crafted ioctl struct in which iocts is not null terminated, which triggers a buffer overflow.

5 affected packages

linux, linux-source-2.6.15, linux-source-2.6.17, linux-source-2.6.20, linux-source-2.6.22

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
linux	—	—	—	—	—
linux-source-2.6.15	—	—	—	—	—
linux-source-2.6.17	—	—	—	—	—
linux-source-2.6.20	—	—	—	—	—
linux-source-2.6.22	—	—	—	—	—

Export to JSON

Results by page:

Search CVE reports