Search CVE reports
41 – 50 of 220 results
CVE-2007-4849
Low priorityJFFS2, as used on One Laptop Per Child (OLPC) build 542 and possibly other Linux systems, when POSIX ACL support is enabled, does not properly store permissions during (1) inode creation or (2) ACL setting, which might allow local...
5 affected packages
linux, linux-source-2.6.15, linux-source-2.6.17, linux-source-2.6.20, linux-source-2.6.22
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux | — | — | — | — | — |
| linux-source-2.6.15 | — | — | — | — | — |
| linux-source-2.6.17 | — | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — | — |
| linux-source-2.6.22 | — | — | — | — | — |
CVE-2006-1863
Unknown priorityDirectory traversal vulnerability in CIFS in Linux 2.6.16 and earlier allows local users to escape chroot restrictions for an SMB-mounted filesystem via "..\\" sequences, a similar vulnerability to CVE-2006-1864.
2 affected packages
linux-source-2.6.15, linux-source-2.6.17
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux-source-2.6.15 | — | — | — | — | — |
| linux-source-2.6.17 | — | — | — | — | — |
CVE-2007-3848
Unknown priorityLinux kernel 2.4.35 and other versions allows local users to send arbitrary signals to a child process that is running at higher privileges by causing a setuid-root parent process to die, which delivers an...
4 affected packages
linux-source-2.6.15, linux-source-2.6.17, linux-source-2.6.20, linux-source-2.6.22
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux-source-2.6.15 | — | — | — | — | — |
| linux-source-2.6.17 | — | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — | — |
| linux-source-2.6.22 | — | — | — | — | — |
CVE-2007-4308
Unknown priorityThe (1) aac_cfg_open and (2) aac_compat_ioctl functions in the SCSI layer ioctl path in aacraid in the Linux kernel before 2.6.23-rc2 do not check permissions for ioctls, which might allow local users to cause a denial of service...
3 affected packages
linux-source-2.6.15, linux-source-2.6.17, linux-source-2.6.20
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux-source-2.6.15 | — | — | — | — | — |
| linux-source-2.6.17 | — | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — | — |
CVE-2007-3851
Unknown priorityThe drm/i915 component in the Linux kernel before 2.6.22.2, when used with i965G and later chipsets, allows local users with access to an X11 session and Direct Rendering Manager (DRM) to write to arbitrary memory locations and...
3 affected packages
linux-source-2.6.17, linux-source-2.6.20, linux-source-2.6.22
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux-source-2.6.17 | — | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — | — |
| linux-source-2.6.22 | — | — | — | — | — |
CVE-2007-3105
Unknown priorityStack-based buffer overflow in the random number generator (RNG) implementation in the Linux kernel before 2.6.22 might allow local root users to cause a denial of service or gain privileges by setting the default wakeup threshold...
4 affected packages
linux-source-2.6.15, linux-source-2.6.17, linux-source-2.6.20, linux-source-2.6.22
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux-source-2.6.15 | — | — | — | — | — |
| linux-source-2.6.17 | — | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — | — |
| linux-source-2.6.22 | — | — | — | — | — |
CVE-2007-3719
Low priorityThe process scheduler in the Linux kernel 2.6.16 gives preference to "interactive" processes that perform voluntary sleeps, which allows local users to cause a denial of service (CPU consumption), as described in "Secretly...
5 affected packages
linux, linux-source-2.6.15, linux-source-2.6.17, linux-source-2.6.20, linux-source-2.6.22
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux | — | — | — | — | — |
| linux-source-2.6.15 | — | — | — | — | — |
| linux-source-2.6.17 | — | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — | — |
| linux-source-2.6.22 | — | — | — | — | — |
CVE-2007-3107
Low prioritySome fixes available 3 of 4
The signal handling in the Linux kernel before 2.6.22, including 2.6.2, when running on PowerPC systems using HTX, allows local users to cause a denial of service via unspecified vectors involving floating point corruption and...
5 affected packages
linux, linux-source-2.6.15, linux-source-2.6.17, linux-source-2.6.20, linux-source-2.6.22
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux | — | — | — | — | — |
| linux-source-2.6.15 | — | — | — | — | — |
| linux-source-2.6.17 | — | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — | — |
| linux-source-2.6.22 | — | — | — | — | — |
CVE-2007-3513
Unknown priorityThe lcd_write function in drivers/usb/misc/usblcd.c in the Linux kernel before 2.6.22-rc7 does not limit the amount of memory used by a caller, which allows local users to cause a denial of service (memory consumption).
3 affected packages
linux-source-2.6.15, linux-source-2.6.17, linux-source-2.6.20
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux-source-2.6.15 | — | — | — | — | — |
| linux-source-2.6.17 | — | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — | — |
CVE-2007-3104
Unknown priorityThe sysfs_readdir function in the Linux kernel 2.6, as used in Red Hat Enterprise Linux (RHEL) 4.5 and other distributions, allows users to cause a denial of service (kernel OOPS) by dereferencing a null pointer to an inode in a dentry.
3 affected packages
linux-source-2.6.15, linux-source-2.6.17, linux-source-2.6.20
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux-source-2.6.15 | — | — | — | — | — |
| linux-source-2.6.17 | — | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — | — |