504783 : Vulnerable Linux Kernel version: 2.6.26

Risk 5 : Miscellaneous

A remote attacker could execute arbitrary code, cause information disclosure, gain escalated privileges, bypass certain security restrictions, or cause a denial of service.

The Linux kernel is released under the GNU General Public License version 2 (GPLv2) and developed by contributors worldwide. The Linux kernel is used by a family of Unix-like operating systems.

sctp_assoc_update() NULL Pointer Dereference Vulnerability 08/06/14 CVE 2014-5077 Linux kernel versions 3.15.6, 3.14.13, 3.12.25, 3.10.49, 3.4.99, 3.2.61, 2.6.32.63, and earlier are prone to a vulnerability, which can be exploited to cause a DoS (Denial of Service). The vulnerability exists due to a NULL pointer dereference error in sctp_assoc_update() function in the Stream Control Transmission Protocol. sctp_association_free() Vulnerability 07/31/14 CVE 2014-4667 Linux kernel versions 3.15.1, 3.14.8, 3.12.22, 3.10.44, 3.4.94, 3.2.60, 2.6.32.63, and earlier are prone to a vulnerability, which can be exploited to cause a DoS (Denial of Service). The vulnerability exists due to a flaw in sctp_association_free() function. The vulnerability can be exploited by sending a specially crafted COOKIE_ECHO chunk in an SCTP packet. Multiple Vulnerabilities in Linux Kernel Advanced Linux Sound Architecture 07/23/14 CVE 2014-4652 CVE 2014-4653 CVE 2014-4654 CVE 2014-4655 CVE 2014-4656 Linux kernel prior to versions 3.4.95, 3.10.45, 3.14.9, and 3.15.2 are prone to multiple vulnerabilities related to the Advanced Linux Sound Architecture (ALSA). The vulnerabilities may allow a local attacker to gain access to arbitrary memory locations, dereference an already freed memory, cause a buffer overflow, resulting in a denial of service, and some unknown impact. ptrace privilege elevation 07/11/14 CVE 2014-4699 Linux kernel versions 2.6.32.63, 3.2.60, 3.4.96, 3.10.46, 3.12.24, 3.14.10, 3.15.3, and earlier do not properly validate the RIP register during a ptrace system call, which could allow a local user to elevate privileges. This vulnerability only affects Intel 64-bit versions. System call auditing denial of service 07/10/14 CVE 2014-4508 An out-of-bounds access flaw in the audit_filter_syscall() function allows local users to cause a kernel crash via specially crafted system call numerals. This vulnerability can only be exploited if the kernel is built with system-call auditing support (CONFIG_AUDITSYSCALL) and is running on an x86 platform and a CPU with SEP feature. Linux kernel versions 2.6.32.63, 3.2.60, 3.4.95, 3.10.45, 3.12.23, 3.14.9, and 3.15.2 and possibly earlier versions are affected by this vulnerability. "do_follow_link" Function Denial of Service Vulnerability 06/30/14 CVE 2014-0203 Linux Kernel version prior to 2.6.33 is prone to a vulnerability, which can be exploited to cause a DoS (Denial of Service). The vulnerability exists because the "do_follow_link" function in fs/namei.c does not properly handle the last pathname component. The vulnerability can be exploited to cause a kernel crash. Linux Kernel Inode Capabilities Privilege Escalation Vulnerability 06/20/14 CVE 2014-4014 Linux Kernel versions 3.2.60, 3.4.94, 3.10.44, 3.12.22, and 3.14.8 and prior are prone to a vulnerability, which can be exploited to gain escalated privileges. The vulnerability exists due to an error related to checking Inode capabilities. Note: successful exploitation requires a kernel built with user namespaces enabled. SCSI Initiator I/O Operations Vulnerability 06/19/14 CVE 2014-4027 Linux Kernel versions 3.2.60, 3.4.94, 3.10.44, 3.12.22, and 3.14.8 and prior are prone to a vulnerability, which can be exploited to disclose potentially sensitive information. The vulnerability exists due to an error in rd_build_device_space and rd_release_device_space functions on behalf of a SCSI initiator and can be exploited to disclose kernel memory. Linux Kernel Futex Requeue Vulnerability 06/09/14 CVE 2014-3153 Linux Kernel versions 2.6.32.62, 3.2.59, 3.4.91, 3.10.41, 3.12.21, and 3.14.5 and prior are prone to a local privilege-escalation vulnerability. The vulnerability exists due to an error in the futex subsystem. Linux Kernel Syscall Auditing Subsystem Vulnerability 06/09/14 CVE 2014-3917 Linux Kernel versions 2.6.32.62, 3.2.59, 3.4.91, 3.10.40, 3.12.20, and 3.14.4 and prior are prone to a vulnerability, which can be exploited by an attacker to cause a DoS (Denial of Service). The vulnerability exists due to an out-of-bounds read error in the audit_filter_syscall function in the syscall auditing subsystem. Linux Kernel "n_tty_write()" Race Condition Vulnerability 05/23/14 CVE 2014-0196 Linux Kernel versions 2.6.32.61, 3.2.58, 3.4.89, 3.10.39, 3.12.18, and 3.14.3 prior are prone to a local privilege-escalation vulnerability. The vulnerability exists due to race condition error within the "n_tty_write()" function. Linux Kernel BPF Two Denial of Service Vulnerabilities 05/21/14 CVE 2014-3144 CVE 2014-3145 Linux Kernel versions 2.6.32.61, 3.2.59, 3.4.91, 3.10.40, 3.12.20, and 3.14.4 and prior are prone to two vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service). The first vulnerability exists due to an error in the skb_get_nlattr() function. The second vulnerability exists due to an error in the skb_get_nlattr_nest() function. The ipc_rcu_putref Denial of Service Vulnerability 05/13/14 CVE 2013-4483 Linux Kernel versions before 3.10 are prone to a vulnerability, , which can be exploited by malicious, local users to cause a DoS (Denial of Service). The vulnerability exists due to an error in the ipc_rcu_putref function. The aac_compat_ioctl Security Bypass Vulnerability 05/13/14 CVE 2013-6383 Linux Kernel versions before 3.11.8 are prone to a vulnerability, which can be exploited to bypass certain security restrictions. The vulnerability exists due to the aac_compat_ioctl function not requiring CAP_SYS_RAWIO capability which allows local users to bypass intended access restrictions via a crafted ioctl call. The "ping_init_sock()" and "try_to_unmap_cluster()" Denial of Service Vulnerabilities 05/05/14 CVE 2014-2851 CVE 2014-3122 Linux Kernel versions 3.2.57, 3.4.87, 3.10.37, 3.12.17, 3.13.10, and 3.14.1 are prone to a vulnerability, which can be exploited to potentially gain escalated privileges. The vulnerability exists due to an error in the "ping_init_sock()" function. Linux Kernel versions 2.6.32.61, 3.2.57, 3.4.88, 3.10.38, 3.12.18, and 3.14.2 are prone to a vulnerability, which can be exploited to cause a DoS (Denial of Service). The vulnerability exists because of an error related to "try_to_unmap_cluster()" function. Buffer Overflow and Denial of Service Vulnerabilities 05/02/14 CVE 2013-1860 CVE 2014-0055 Linux Kernel versions before 3.8.4 are prone to a vulnerability, which can be exploited to cause a heap-based buffer overflow. The vulnerability exists because of an error related to wdm_in_callback function. Linux Kernel versions 2.6.32 are prone to a vulnerability, which can be exploited to cause a DoS (Denial of Service). The vulnerability exists because of an error related to get_rx_bufs function. "rds_iw_laddr_check()" NULL Pointer Dereference Vulnerability 04/10/14 CVE 2014-2678 Linux Kernel versions 3.14, 3.13.9, 3.12.16, 3.10.36, 3.4.86, 3.2.56, and 2.6.32.61 are prone to a vulnerability, , which can be exploited by malicious, local users to cause a DoS (Denial of Service). The vulnerability exists due to a NULL pointer dereference error in the "rds_iw_laddr_check()" function. vhost-net Segmentation Memory Disclosure Vulnerability 03/31/14 CVE 2014-0131 Linux Kernel versions 2.6.32.61, 3.2.55, 3.4.83, 3.10.33, 3.12.14, and 3.13.6 and prior are prone to a vulnerability, which can be exploited by malicious people to potentially disclose sensitive information. The vulnerability exists due to an error related to segmentation of vhost-net skbs, which can be exploited to potentially disclose certain memory contents. SCTP Handshake NULL Pointer Dereference Vulnerability 03/25/14 CVE 2014-0101 Linux Kernel versions 2.6.32.61, 3.2.55, 3.4.83, 3.10.33, 3.12.14, and 3.13.6 are prone to a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). The vulnerability exists due to a NULL pointer dereference error when handling SCTP handshakes. "rds_ib_laddr_check()" NULL Pointer Dereference Vulnerability 03/25/14 CVE 2013-7339 Linux Kernel versions 2.6.32.61, 3.2.54, 3.4.76, 3.10.26, and 3.12.7 are prone to a vulnerability, which can be exploited by malicious, local users to cause a DoS (Denial of Service). The vulnerability exists due to a NULL pointer dereference error in the "rds_ib_laddr_check()" function. DCCP Packets Handling Memory Corruption Vulnerability 03/20/14 CVE 2014-2523 Linux Kernel versions 2.6.32.61, 3.2.55, 3.4.83, 3.10.33, 3.12.14, and 3.13.6 are prone to a vulnerability, which can be exploited by malicious people to potentially compromise a vulnerable system. The vulnerability exists due to an error in the "dccp_new()", "dccp_packet()", and "dccp_error()" functions. The vulnerability can be exploited to corrupt kernel stack memory via specially crafted DCCP packets. Linkage Stack Instructions Handling Denial of Service Vulnerability 03/17/14 CVE 2014-2039 Linux Kernel versions prior to 3.4.82, 3.10.32, 3.12.13, and 3.13.5 are prone to a vulnerability, which can be exploited by malicious, local users to cause a DoS (Denial of Service). The vulnerability exists due to an error when handling linkage stack instructions. Note: Successful exploitation requires the kernel to be built for the IBM System/390 architecture. Two Vulnerabilities in Linux Kernel 02/21/14 CVE 2013-0310 CVE 2014-0069 Two vulnerabilities exist in Linux Kernel: versions prior to 2.6.34.15 and prior to 2.6.32.60, which can be exploited by malicious, local users to cause a DoS (Denial of Service). The vulnerability exists due to a NULL-pointer dereference error in the "cipso_v4_validate()" function when adding the CIPSO option to a socket. versions 3.4.80, 3.10.30, 3.12.11, and 3.13.3 and prior, which can be exploited by malicious, local users to cause a DoS (Denial of Service). The vulnerability exists due to an error in the "cifs_iovec_write()" function. "ieee80211_radiotap_iterator_init()" Denial of Service Vulnerability 01/21/14 Linux Kernel versions 2.6.32.61, 2.6.34.14, 3.2.54, 3.4.75, 3.10.25, and 3.12.6 are prone to a vulnerability, which can be exploited by malicious people to cause a denial of service. The vulnerability exists due to an error in "ieee80211_radiotap_iterator_init()" function in net/wireless/radiotap.c. Note: This is a different vulnerability than CVE 2013-7027. "recvmsg()" and "recvfrom()" Information Disclosure Vulnerabilities 01/10/14 CVE 2013-7263 CVE 2013-7264 CVE 2013-7265 CVE 2013-7266 CVE 2013-7267 CVE 2013-7268 CVE 2013-7269 CVE 2013-7270 CVE 2013-7271 Linux Kernel versions prior to 3.2.54, 3.4.73, 3.10.23, and 3.12.4 are prone to multiple vulnerabilities, which can be exploited by local users to disclose potentially sensitive information. These vulnerabilities exist due to some errors related to implementations of the "recvmsg()" and "recvfrom()" functions. get_wchan() Stack Frame Unwinding Denial of Service Vulnerability 12/27/13 Linux Kernel versions prior to 3.4.75, 3.10.25, 3.12.6 are prone to a vulnerability, which can be exploited by malicious people to cause a denial of service. The vulnerability exists due to an error in the get_wchan() function when unwinding stack frames. KVM Subsystem Vulnerabilities 12/26/13 CVE 2013-4587 CVE 2013-6367 CVE 2013-6376 Multiple vulnerabilities in the KVM Subsystem of the Linux kernel could allow local users on guest virtual machines to cause a denial of service, or could allow local users to gain elevated privileges. _ptrace_may_access() Privilege Escalation Vulnerability 12/09/13 CVE 2013-2929 Linux Kernel versions 2.6.32.61, 2.6.34.14, 3.2.53, 3.4.70, 3.10.20, 3.11.9, 3.12.1, and prior are prone to a vulnerability, which can be exploited by malicious people to gain escalated privileges and cause a denial of service. The vulnerability exists due to flaw in the ptrace_may_access() function in kernel/ptrace.c. Radiotap Header Processing Denial of Service Vulnerability 12/02/13 CVE 2013-7027 Linux Kernel versions 2.6.32.61, 2.6.34.14, 3.2.53, 3.4.70, 3.10.20, 3.11.9, 3.12.1, and prior are prone to a vulnerability, which can be exploited by malicious people to cause a denial of service. The vulnerability exists due to a boundary error in ieee80211_radiotap_iterator_init() function in (net/wireless/radiotap.c). qeth_snmp_command() Privilege Escalation Vulnerability 11/29/13 CVE 2013-6381 Linux Kernel versions 2.6.32.61, 2.6.34.14, 3.2.52, 3.4.70, 3.10.20, 3.11.9, 3.12.1, and prior are prone to a vulnerability, which can be exploited to gain escalated privileges. The vulnerability is caused due to an integer overflow error in the qeth_snmp_command() function. This vulnerability can be exploited to corrupt kernel pool memory which may allow execution of arbitrary code with kernel-mode privileges. Note: Successful exploitation requires the kernel to be built with a Gigabit ethernet device support (CONFIG_QETH). IPVS Two Buffer Overflow Vulnerabilities 11/26/13 CVE 2013-4588 Linux Kernel versions before 2.6.33 are prone to stack-based buffer overflows in net/netfilter/ipvs/ip_vs_ctl.c. The application may allow execution of arbitrary code with kernel-mode privileges, when CONFIG_IP_VS is used. The vulnerabilities exist due to errors in do_ip_vs_get_ctl and do_ip_vs_set_ctl() functions in net/netfilter/ipvs/ip_vs_ctl.c. AACRAID Driver Compat IOCTL Security Bypass Vulnerability 11/15/13 Linux Kernel versions 2.6.32.61, 2.6.34.14, 3.2.52, 3.4.67, 3.10.17, 3.11.6, and prior are prone to a vulnerability, which can be exploited to bypass certain security restrictions. The vulnerability is caused due to the AACRAID driver not correctly checking the privileges for compat IOCTLs. IPV4 and IPV6 UFO Packets Handling Memory Corruption Vulnerabilities 11/08/13 CVE 2013-4470 Linux Kernel versions 2.6.32.61, 2.6.34.14, 3.2.52, 3.4.67, 3.10.17, 3.11.6, and prior are prone to multiple vulnerabilities, which can be exploited to gain escalated privileges. An error within the "ip_ufo_append_data()" when handling fragmented UDP packets can be exploited to corrupt memory. An error within the "ip6_ufo_append_data()" when handling fragmented UDP packets can be exploited to corrupt memory. HFS+ Privilege Escalation Vulnerability 10/11/12 Linux Kernel before 2.6.32.60 is prone to a vulnerability, which can be exploited by malicious, local users to potentially gain escalated privileges. "compat_put_timeval()" Argument Passing Vulnerability 10/05/12 CVE 2012-4467 Linux Kernel is prone to a vulnerability, which can be exploited by malicious, local users to disclose system information and cause a DoS (Denial of Service). The vulnerability is caused due to an error in net/socket.c when calling the "compat_put_timeval()" function, which incorrectly passes arguments resulting in kernel memory disclosure or system crash. Multiple Vulnerabilities fixed in 2.6.34.13 08/28/12 CVE 2009-4307 CVE 2011-1162 CVE 2011-4330 CVE 2012-2319 Linux Kernel before 2.6.34.13 is prone to multiple vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service), disclose potentially sensitive information, and gain escalated privileges. "madvise_remove()" Use-After-Free Vulnerability 08/24/12 CVE 2012-3511 Linux Kernel before 3.0.37, 3.2.23, and 3.4.5 is prone to a vulnerability, which can be exploited by malicious, local users to cause a DoS (Denial of Service). The vulnerability is caused due to a use-after-free error in the "madvise_remove()" function and can be exploited to dereference already freed memory. Huge Pages Memory Leak Denial of Service Vulnerability 05/28/12 Linux Kernel 2.6.32 and prior are prone to a vulnerability, which can be exploited by malicious, local users to cause a DoS (Denial of Service). The vulnerability is caused due to a memory leak within the handling of huge pages and can be exploited to exhaust available memory resulting in various processes being terminated and a kernel panic. NFSv4 Denial of Service Vulnerability 05/24/12 CVE 2012-2375 Linux Kernel 2.6.39 and prior are prone to a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). The vulnerability is caused due to an error when handling certain NFSv4 responses to ACL attribute requests and can be exploited to e.g. cause a crash by connecting to a malicious NFSv4 server. mmap_sem Denial of Service Vulnerability 05/24/12 CVE 2012-2373 Linux Kernel 2.6.39 and prior are prone to a vulnerability, which can be exploited by malicious, local users to cause a DoS (Denial of Service). The vulnerability is caused due to a race condition error when holding the mmap_sem lock for reading and can be exploited to cause a crash. "ext4_fill_flex_info()" Denial of Service Vulnerability 04/13/12 Linux Kernel 2.6.x is prone to a vulnerability, which can be exploited by malicious, local users to cause a DoS (Denial of Service). The vulnerability is caused due to an error within the "ext4_fill_flex_info()" function when mounting a file system and can be exploited to cause a division by zero. "split_huge_page()" Race Condition Denial of Service Vulnerability 03/22/12 CVE 2012-1179 Linux Kernel 2.6.x is prone to a vulnerability, which can be exploited by malicious, local users and malicious, local users in a guest virtual machine cause a DoS (Denial of Service). The vulnerability is caused due to a race condition when handling PMD table entries after a "bad pmd" occurs and can be exploited to cause a kernel crash. "/proc/<pid>/mem" Privilege Escalation Vulnerability 02/02/12 CVE 2012-0056 Linux Kernel 2.6.39 and prior are prone to a vulnerability, which can be exploited by malicious, local users to gain escalated privileges. The vulnerability is caused due to the kernel not properly restricting access to "/proc/<pid>/mem" file, which can be exploited to gain escalated privileges by e.g. writing into the memory of a privileged process. "igmp_heard_query()" Denial of Service Vulnerability 01/25/12 CVE 2012-0207 Linux Kernel 2.6.39.4 and prior are prone to a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). The vulnerability is caused due to an error within the "igmp_heard_query()" function and can be exploited to cause a kernel crash via specially crafted IGMP queries. KVM "syscall" Emulation Denial of Service Vulnerability 01/25/12 CVE 2012-0045 Linux Kernel 2.6.39.4 and prior are prone to a vulnerability, which can be exploited by malicious, local users in a guest virtual machine to cause a DoS (Denial of Service). The vulnerability is caused due to KVM not properly handling the "syscall" instruction in certain CPU modes on certain CPU models, which can be exploited to e.g. crash 32bit guest machines and potentially cause 64bit guest machines to behave incorrectly by running a specially crafted executable. DRM "drm_mode_dirtyfb_ioctl()" Integer Overflow Vulnerability 01/19/12 CVE 2012-0044 Linux Kernel 2.6.39.4 and prior are prone to a vulnerability, which can be exploited by malicious, local users to cause a DoS (Denial of Service) and potentially gain escalated privileges. The vulnerability is caused due to an integer overflow error within the "drm_mode_dirtyfb_ioctl()" function and can be exploited to cause a memory corruption by sending specially crafted IOCTLs. "xfs_acl_from_disk()" Integer Overflow Vulnerability 01/19/12 CVE 2012-0038 Linux Kernel 2.6.39.4 and prior are prone to a vulnerability, which potentially can be exploited by malicious people to compromise a vulnerable system. The vulnerability is caused due to an integer overflow within the "xfs_acl_from_disk()" function and can be exploited to corrupt kernel memory. KVM KVM_ASSIGN_PCI_DEVICE IOCTL Denial of Service Vulnerability 01/13/12 CVE 2011-4347 Linux Kernel 2.6.39.4 and prior are prone to a vulnerability, which can be exploited by malicious, local users to cause a DoS (Denial of Service). The vulnerability is caused due to KVM not properly restricting the KVM_ASSIGN_PCI_DEVICE IOCTL, which can be exploited to stop PCI devices from working by sending specially crafted IOCTLs. "SG_IO" SCSI IOCTL Privilege Escalation Vulnerability 01/04/12 CVE 2011-4127 Linux Kernel 2.6.39.4 and prior are prone to a vulnerability, which can be exploited by malicious, local users and malicious, local users in a guest virtual machine to gain escalated privileges. The vulnerability is caused due to SG_IO SCSI IOCTL commands being passed down to the block device without properly honoring access restrictions to e.g. single partitions or LVM volumes. KVM PIT Denial of Service Vulnerability 01/03/12 CVE 2011-4622 Linux Kernel 2.6.39.4 and prior are prone to a vulnerability, which can be exploited by malicious, local users in a guest virtual machine to cause a DoS (Denial of Service). The vulnerability is caused due to an error in the "create_pit_timer()" function when configuring a Programmable Interrupt Timer (PIT) and can be exploited to cause a NULL pointer dereference resulting in the crash of a host. B.A.T.M.A.N. "bat_socket_read()" Buffer Overflow Vulnerability 12/22/11 CVE 2011-4604 Linux Kernel 2.6.39.4 and prior are prone to a vulnerability, which potentially can be exploited by malicious people to compromise a vulnerable system. The vulnerability is caused due to a boundary error within the "bat_socket_read()" function, which can be exploited to cause a userspace buffer overflow by sending specially crafted packets to a vulnerable system. "journal_get_superblock()" Denial of Service Vulnerabilities 11/22/11 CVE 2011-4132 Linux Kernel 2.6.38 and prior are prone to multiple vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service). The vulnerabilities are caused due to an error within the "journal_get_superblock()" functions and can be exploited to trigger a "BUG_ON()" by e.g. mounting specially crafted ext3 images. Two Denial of Service Vulnerabilities in 2.6.x 11/22/11 CVE 2011-4110 CVE 2011-4131 Linux Kernel 2.6.x is prone to two vulnerabilities, which can be exploited by malicious, local users and malicious people to cause a DoS (Denial of Service). An error when handling certain NFSv4 responses to ACL attribute requests can be exploited to e.g. cause a crash by connecting to a malicious NFSv4 server. A NULL pointer dereference error in the "user_update()" function when updating a user-defined type negative key into an instantiated key can be exploited to cause a crash. ghash NULL Pointer Dereference Vulnerability 11/08/11 CVE 2011-4081 Linux Kernel 2.6.39.4 and prior are prone to a vulnerability, which can be exploited by malicious, local users to cause a DoS (Denial of Service). The vulnerability is caused due to a NULL pointer dereference error within the implementation of the GHASH algorithm, which can be exploited to e.g. cause a crash via a specially crafted application. XFS "xfs_readlink()" Buffer Overflow Vulnerability 11/08/11 CVE 2011-4077 Linux Kernel 2.6.39 and prior are prone to a vulnerability, which can be exploited by malicious, local users to cause a DoS (Denial of Service) and potentially gain escalated privileges. The vulnerability is caused due to a boundary error within the "xfs_readlink()" function and can be exploited to cause a buffer overflow via a specially crafted XFS image. ext4 Extent Splitting Denial of Service Vulnerability 11/08/11 CVE 2011-3638 Linux Kernel 2.6.39.4 and prior are prone to a vulnerability, which can be exploited by malicious, local users to cause a DoS (Denial of Service). An error within the implementation of the ext4 file system when splitting extents can be exploited to cause a DoS. "apparmor_setprocattr()" Denial of Service Vulnerability 10/31/11 CVE 2011-3619 Linux Kernel 2.6.39.4 and prior are prone to a vulnerability, which can be exploited by malicious, local users to cause a DoS (Denial of Service). The vulnerability is caused due to an error within the "apparmor_setprocattr()" function, which can be exploited to trigger a "BUG_ON()" if a process writes malformed data to its "/attr/current" proc file. CIFS DFS Denial of Service Vulnerability 09/21/11 CVE 2011-3363 Linux Kernel 2.6.39 and prior are prone to a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). The vulnerability is caused due to an error when mounting CIFS shares with certain DFS referrals, which can be exploited to trigger a "BUG_ON()" in a client by tricking the victim into mounting from a malicious server. CIFSFindNext Signedness Error Denial of Service Vulnerability 08/30/11 CVE 2011-3191 Linux Kernel 2.6.39 and prior are prone to a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). The vulnerability is caused due to a signedness error within the "CIFSFindNext()" function, which can be exploited to e.g. crash a client by sending specially crafted CIFS messages. Event Overflows Denial of Service Vulnerability 08/23/11 CVE 2011-2918 Linux Kernel 2.6.39.4 and prior are prone to a vulnerability, which can be exploited by malicious, local users to cause a DoS (Denial of Service). The vulnerability is caused due to an error within the handling of software event overflows, which can be exploited to cause a crash via a specially crafted application. "perf" Privilege Escalation Vulnerability 08/16/11 CVE 2011-2905 Linux Kernel 2.26.39 and prior are prone to a local privilege-escalation vulnerability. Local attackers can exploit this issue to execute arbitrary code with superuser privileges. Successful exploits will result in the complete compromise of affected computers. GRO "skb_gro_header_slow()" Denial of Service Vulnerability 08/08/11 CVE 2011-2723 Linux Kernel 2.26.39 and prior are prone to a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). The vulnerability is caused due to an error within the "skb_gro_header_slow()" function, which can be exploited to cause a crash. Xtensa "ptrace_setxregs()" Memory Disclosure Vulnerability 08/03/11 CVE 2011-2707 Linux Kernel before 2.6.35.14 is prone to a vulnerability, which can be exploited by malicious, local users to disclose potentially sensitive information. The weakness is caused due to the "ptrace_setxregs()" function not properly verifying the provided pointers, which can be exploited to disclose kernel memory. GFS2 / ext4 Denial of Service Vulnerabilities 07/21/11 CVE 2011-2689 CVE 2011-2695 Linux Kernel 2.6.39 and prior are prone to multiple vulnerabilities: The "gfs2_fallocate()" function in fs/gfs2/file.c does not properly ensure that allocated bytes are aligned, which can be exploited to cause a "BUG()". An error within the implementation of the ext4 file system when handling writes to the last block of a sparse file in extent format can be exploited to crash the kernel.

Transparent Hugepage Support Denial of Service 06/24/11 CVE 2011-2479 Linux Kernel 2.6.39.1 and prior are prone to a vulnerability, which can be exploited by malicious, local users to cause a DoS (Denial of Service). The weakness is caused due to an error within the Transparent Hugepage (THP) support when MADV_HUGEPAGE regions are configured and can be exploited to cause a kernel panic. "key_replace_session_keyring()" NULL Pointer Dereference Denial of Service Vulnerability 06/07/11 Linux Kernel before 2.6.39.1 is prone to a vulnerability, which can be exploited by malicious, local users to cause a DoS (Denial of Service). The vulnerability is caused due to an error within the "key_replace_session_keyring()" function, which can be exploited to cause a NULL pointer dereference and e.g. crash the kernel. KSM Denial of Service Vulnerability 06/07/11 CVE 2011-2183 Linux Kernel 2.6.39 and prior are prone to a vulnerability, which can be exploited by malicious, local users to cause a DoS (Denial of Service). The vulnerability is caused due to a race condition within the "scan_get_next_rmap_item()" function and can be exploited to cause a kernel crash. "ip_expire()" Denial of Service Vulnerability 05/30/11 CVE 2011-1927 Linux Kernel before 2.6.39 is prone to a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). The vulnerability is caused due to an error within the "ip_expire()" function in net/ipv4/ip_fragment.c, which can be exploited to cause a crash by e.g. sending fragmented packets to the system. Bluetooth Multiple Local Information Disclosure Vulnerabilities 05/17/11 The Linux kernel 2.6.38-rc2 and prior are prone to multiple local information-disclosure vulnerabilities. Local attackers can exploit these issues to obtain sensitive information that may lead to further attacks. Denial of Service and Privilege Escalation Vulnerabilities 05/02/11 CVE 2011-1745 CVE 2011-1746 CVE 2011-1747 The Linux kernel before 2.6.39-rc5 is prone to multiple vulnerabilities, which can be exploited by malicious, local users to cause a DoS (Denial of Service) and potentially gain escalated privileges. "bcm_release()" NULL Pointer Dereference Vulnerability 04/29/11 CVE 2011-1598 The Linux kernel 2.6.37 and prior are prone to a denial-of-service vulnerability. An attacker can exploit this issue to crash the affected computer, denying service to legitimate users. 'next_pidmap()' Local Denial of Service Vulnerability 04/29/11 CVE 2011-1593 The Linux kernel before 2.6.38.4 is prone to a local denial-of-service vulnerability. Attackers can exploit this issue to cause the kernel to crash, denying service to legitimate users. "mremap()" Denial of Service Vulnerability 04/25/11 The Linux kernel before 2.6.38.3 is prone to a local denial-of-service vulnerability. A local attacker can exploit this issue to cause a denial-of-service condition. "inotify_init1()" Denial of Service Vulnerability 04/25/11 CVE 2011-1479 Linux Kernel before 2.6.39-rc1 is prone to a vulnerability, which can be exploited by malicious, local users to cause a DoS (Denial of Service). The vulnerability is caused due to a double-free error within the implementation of the "inotify_init1()" system call, which can be exploited to e.g. cause a kernel crash. OCFS2 Sparse Writes Information Disclosure Vulnerability 04/04/11 CVE 2011-0463 Linux Kernel before 2.6.39-rc1 is prone to a vulnerability, which can be exploited by malicious, local users to disclose potentially sensitive information. The weakness is caused due to an error within the OCFS2 file system when handling sparse writes with holes spanning across page boundaries, which can be exploited to e.g. disclose the content of previously manipulated files via sparse writes. 'iriap.c' Remote Buffer Overflow Vulnerabilities 04/01/11 CVE 2011-1180 Linux Kernel 2.6.38 and prior are prone to multiple remote buffer-overflow vulnerabilities because it fails to perform adequate boundary checks on user-supplied data in the Infrared Data Association (IrDA) subsystem. An attacker can exploit these issues to execute arbitrary code with kernel-level privileges. Failed exploits will result in a denial-of-service condition. Netfilter and Econet Local Information Disclosure Vulnerabilities 04/01/11 CVE 2011-1170 CVE 2011-1171 CVE 2011-1172 Linux Kernel 2.6.38 and prior are prone to multiple local information-disclosure vulnerabilities in the netfilter framework and econet protocol implementations. Local attackers can exploit these issues to obtain sensitive information that may lead to further attacks. ROSE Multiple Vulnerabilities 03/29/11 Linux Kernel 2.6.38 and prior are prone to multiple memory-corruption vulnerabilities in the remote operations service element (ROSE) protocol implementation. Both local and remote attackers may be able to exploit these issues to execute arbitrary code with kernel-level privileges. Successful exploits will result in the complete compromise of affected computers. TPM Information Disclosure Vulnerability 03/24/11 The Linux kernel before 2.6.37-rc1 is prone to an information-disclosure vulnerability. Successful exploits may allow attackers to obtain potentially sensitive information from the stack that may aid in other attacks. "ldm_frag_add()" Buffer Overflow Vulnerability 03/22/11 CVE 2011-1017 The Linux kernel 2.6.37.2 and prior are prone to a buffer overflow vulnerability, which can be exploited by malicious people with physical access to potentially compromise a vulnerable system. The vulnerability is caused due to an error within the "ldm_frag_add()" function in fs/partitions/ldm.c. InfiniBand Request Handling Denial of Service Vulnerability 03/22/11 CVE 2011-0695 The Linux kernel 2.6.38-rc2 and prior are prone to a denial-of-service vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service). The weakness is caused due to a race condition within the InfiniBand request handling, which can be exploited to cause a kernel crash. epoll Denial of Service Vulnerability 03/16/11 CVE 2011-1083 The Linux kernel 2.6.37 and prior are prone to a denial-of-service vulnerability, which can be exploited by malicious local users to cause a DoS (Denial of Service). The vulnerability is caused due to an error within the epoll implementation, which can be exploited to cause a high CPU consumption via nested epoll structures. 'dns_key.c' NULL Pointer Dereference Denial of Service Vulnerability 03/16/11 CVE 2011-1076 The Linux kernel before 2.6.38 is prone to a denial-of-service vulnerability in the DNS component. Attackers can exploit this issue to cause the kernel to dereference an invalid memory location, resulting in a kernel denial-of-service condition. "/proc/<pid>/" Permissions Handling Weakness 03/08/11 CVE 2011-1020 The Linux kernel 2.6.37 and prior are prone to a local security-bypass vulnerability. Attackers can exploit this issue to bypass security restrictions and perform unauthorized actions. World-Writable sysfs and procfs Files Weaknesses 03/08/11 The Linux kernel is prone to a local security-bypass vulnerability. Attackers can exploit this issue to bypass security restrictions and perform unauthorized actions. 'fs/btrfs/ioctl.c' Local Privilege Escalation Vulnerability 03/04/11 The Linux kernel 2.6.37 and prior are prone to a local privilege-escalation vulnerability because of an integer-overflow error. Local attackers can exploit this issue to execute arbitrary code with kernel-level privileges. Successful exploits will result in the complete compromise of affected computers. Failed exploit attempts will cause a denial-of-service condition. I/O-Warrior USB Device Heap Buffer Overflow Vulnerability 02/11/11 CVE 2010-4656 The Linux kernel 2.6.38-rc2 and prior are prone to a heap-based buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data. Attackers can exploit this issue to execute arbitrary code with superuser privileges, facilitating the complete compromise of affected computers. "drivers/media/dvb/ttpci/av7110_ca" IOCTL Local Privilege Escalation Vulnerability 02/04/11 CVE 2011-0521 The Linux kernel before 2.6.38-rc2 is prone to a local privilege-escalation vulnerability because of an integer-overflow error. Local attackers can exploit this issue to execute arbitrary code with kernel-level privileges. Successful exploits will result in the complete compromise of affected computers. Failed exploit attempts will cause a denial-of-service condition. ETHTOOL_GRXCLSRLALL Local Information Disclosure Vulnerability 02/04/11 CVE 2010-3861 The Linux kernel before 2.6.36 is prone to a local information-disclosure vulnerability. Local attackers can exploit this issue to obtain sensitive information that may lead to further attacks. "blk_rq_map_user_iov()" Local Denial of Service 01/17/11 CVE 2010-4668 The Linux kernel before 2.6.37-rc7 is prone to a local denial-of-service vulnerability. Attackers can exploit this issue to cause the kernel to crash, denying service to legitimate users. SCTP Local Race Condition Vulnerability 01/17/11 CVE 2010-4526 The Linux kernel 2.6.11-rc2 through 2.6.33 is prone to a local race-condition vulnerability that affects the SCTP subsystem. A local attacker may exploit this issue to cause a kernel panic, denying service to legitimate users. Unix Sockets Local Denial of Service Vulnerability 12/15/10 CVE 2010-4249 The Linux kernel before 2.6.37-rc3-next-20101125 is prone to a local denial-of-service vulnerability. Attackers can exploit this issue to cause the kernel to consume a large quantity of memory. This may result in a denial-of-service condition. "hmid_ds structure" Local Information Disclosure 12/15/10 CVE 2010-4072 The Linux kernel before 2.6.37-rc1 is prone to a local information-disclosure vulnerability. Local attackers can exploit this issue to obtain sensitive information that may lead to further attacks. Econet Protocol Multiple Local Vulnerabilities 12/15/10 CVE 2010-3848 CVE 2010-3849 CVE 2010-3850 The Linux kernel 2.6.26 and prior are prone to multiple local vulnerabilities in the Econet protocol. Local attackers can exploit these issues to bypass certain security restrictions, cause denial-of-service conditions, or execute arbitrary code with kernel-level privileges. 'perf_event_mmap()' Local Denial of Service Vulnerability 11/26/10 CVE 2010-4169 The Linux kernel before 2.6.37-rc2 is prone to a local denial-of-service vulnerability. Attackers can exploit this issue to cause the kernel to crash, denying service to legitimate users. 'net/core/filter.c' Local Information Disclosure Vulnerability 11/26/10 CVE 2010-4158 The Linux kernel before 2.6.37 is prone to a local information-disclosure vulnerability. Local attackers can exploit this issue to obtain sensitive information that may lead to further attacks. Futex Macros Local Denial of Service Vulnerability 11/26/10 CVE 2010-3086 The Linux kernel before 2.6.24.4 is prone to a local denial-of-service vulnerability. Attackers can exploit this issue to cause a kernel panic, denying service to legitimate users. CAN Protocol Information Disclosure Vulnerability 11/24/10 CVE 2010-3874 The Linux kernel 2.6.36 and prior are prone to an information-disclosure vulnerability. Successful exploits may allow attackers to obtain potentially sensitive information that may aid in other attacks. 'x25_parse_facilities()' Remote Denial of Service Vulnerability 11/24/10 CVE 2010-3873 The Linux kernel before 2.6.37 is prone to a remote denial-of-service vulnerability because it fails to properly handle user-supplied input. Attackers can exploit this issue to cause heap-based memory corruption and a kernel panic, denying service to legitimate users. 'io_submit_one()' NULL Pointer Dereference Denial of Service Vulnerability 11/24/10 CVE 2010-3066 The Linux kernel 2.6.36-rc4 and prior are prone to an invalid pointer dereference denial-of-service vulnerability. An attacker can exploit this issue to crash the affected computer, denying service to legitimate users. Reliable Datagram Sockets Protocol Local Integer Overflow Vulnerability 11/12/10 CVE 2010-3865 The Linux kernel before 2.6.37 is prone to a local integer-overflow vulnerability because it fails to properly validate user-supplied input. Local attackers can exploit this issue to run arbitrary code with elevated privileges. Failed exploit attempts may crash the affected kernel, denying service to legitimate users. setup_arg_pages() Denial of Service Vulnerability 11/08/10 CVE 2010-3858 The Linux kernel 2.6.37-rc1 and prior are prone to a denial-of-service vulnerability because it fails to properly verify user-supplied data. Attackers can exploit this issue to cause the kernel to crash, denying service to legitimate users. VIDIOCSMICROCODE IOCTL Local Memory Overwrite Vulnerability 11/08/10 CVE 2010-2963 The Linux kernel 2.6.37-rc1 and prior are prone to a local security vulnerability that may allow attackers to overwrite arbitrary portions of memory. Successful exploits may allow attackers to corrupt memory, gain elevated privileges, or cause a denial-of-service condition. ALSA 'sound/core/control.c' Local Integer Overflow Vulnerability 11/02/10 CVE 2010-3442 The Linux kernel before 2.6.36-rc5-next-20100929 is prone to a local heap-based integer-overflow vulnerability because it fails to properly validate user-supplied input. Unprivileged users who have permission to open a '/dev/snd/controlC*' device can trigger this issue. Local attackers can exploit this issue to run arbitrary code with elevated privileges. 915 GEM IOCTL Local Memory Overwrite Vulnerability 11/02/10 CVE 2010-2962 The Linux Kernel 2.6.35-rc4 and prior are prone to a local security vulnerability that may allow attackers to overwrite arbitrary portions of memory. Successful exploits may allow attackers to corrupt memory, gain elevated privileges, or cause a denial-of-service condition. Other attacks are also possible. FBIOGET_VBLANK 'drivers/video/sis/sis_main.c' Information Disclosure Vulnerability 10/21/10 CVE 2010-4078 The Linux kernel before 2.6.36-rc6 is prone to an information-disclosure vulnerability. Successful exploits may allow attackers to obtain potentially sensitive information from the stack that may aid in other attacks. 'ipc/sem.c' Information Disclosure Vulnerability 10/21/10 CVE 2010-4083 The Linux kernel 2.6.36-rc6 and 2.4.37.9 and prior are prone to an information-disclosure vulnerability. Successful exploits may allow attackers to obtain potentially sensitive information from the stack that may aid in other attacks. TIOCGICOUNT 'usb/serial/mos*.c' Information Disclosure Vulnerability 10/21/10 The Linux kernel before 2.6.36-rc5 is prone to an information-disclosure vulnerability. Successful exploits may allow attackers to obtain potentially sensitive information from the stack that may aid in other attacks. SCTP HMAC Handling Memory Corruption Vulnerability 10/19/10 The Linux kernel 2.6.35.5 and prior are prone to a memory-corruption vulnerability that may allow attackers to trigger a denial-of-service condition. This issue can be triggered remotely or locally with specially crafted HMAC messages. OCFS2 Fast Symlink Memory Corruption Vulnerability 10/19/10 The Linux kernel 2.6.36-rc4 and prior are prone to a memory-corruption vulnerability that affects the OCFS2 filesystem. Local attackers with direct access to the OCFS2 disk may exploit this issue to corrupt memory. A successful exploit can result in the execution of arbitrary code with kernel-level privileges. set_ftrace_filter File Local Denial of Service Vulnerability 10/19/10 CVE 2010-3079 The Linux kernel before 2.6.35.5 is prone to a local denial-of-service vulnerability affecting file descriptors associated with the 'set_ftrace_filter' file. Attackers can exploit this issue to cause all function tracing files to stop responding, causing a denial-of-service condition. 'PKT_CTRL_CMD_STATUS' Invalid Pointer Dereference Denial of Service Vulnerability 10/07/10 CVE 2010-3437 The Linux kernel before 2.6.36-rc6 is prone to an invalid pointer dereference denial-of-service vulnerability. An attacker with permissions to open '/dev/pktcdvd/control' can exploit this issue to read arbitrary kernel memory or cause the kernel to crash, denying service to legitimate users. Multiple Information Disclosure Vulnerabilities fixed in 2.6.36-rc5 10/01/10 CVE 2010-3296 CVE 2010-3297 CVE 2010-3298 Linux Kernel before 2.6.36-rc5 is prone to multiple information disclosure vulnerabilities, which allow local users to obtain potentially sensitive information from kernel stack memory via a TIOCGICOUNT ioctl call, an EQL_GETMASTRCFG ioctl call, or a CHELSIO_GET_QSET_NUM ioctl call. Rose Protocol 'srose_ndigis' Heap Memory Corruption Vulnerability 09/30/10 CVE 2010-3310 Linux Kernel before 2.6.36-rc5-next-20100923 is prone to a heap-based memory-corruption vulnerability because it fails to properly verify signedness of user-supplied values. Local attackers can exploit this issue to execute arbitrary code with kernel-level privileges. Successful exploits will result in the complete compromise of affected computers. Failed exploits can result in a denial-of-service. Ptrace Local Privilege Escalation Vulnerability 09/30/10 CVE 2010-3301 The Linux kernel before 2.6.36-rc4-git2 is prone to a local privilege-escalation vulnerability. Local attackers can exploit this issue to execute arbitrary code with kernel-level privileges. Successful exploits will result in the complete compromise of affected computers. 'do_io_submit()' Integer Overflow Vulnerability 09/30/10 CVE 2010-3067 The Linux kernel before 2.6.36-rc4-next-20100915 is prone to an integer-overflow vulnerability because it fails to properly validate user-supplied input. Local attackers can exploit this issue to run arbitrary code with elevated privileges. 'video4linux' IOCTL and IP Multicast 'getsockopt' Privilege Escalation Vulnerability 09/27/10 CVE 2010-3081 The Linux kernel before 2.6.36-rc4-git2 on 64-bit platforms is prone to a privilege-escalation vulnerability. Local attackers may be able to exploit this issue to execute arbitrary code with kernel-level privileges. Successful exploits will result in the complete compromise of affected computers. snd_seq_oss_open() Multiple Local Memory Corruption Vulnerabilities 09/27/10 CVE 2010-3080 The Linux kernel before 2.6.36-rc4 is prone to multiple local memory-corruption vulnerabilities. These vulnerabilities include a double-free vulnerability and a pointer dereferencing vulnerability. An attacker can exploit these issues to execute arbitrary code with kernel-level privileges. Successful exploits will result in the complete compromise of affected computers. Failed exploit attempts may cause a denial-of-service condition. XFS_IOC_FSGETXATTR Information Disclosure Vulnerability 09/17/10 CVE 2010-3078 Linux Kernel 'XFS_IOC_FSGETXATTR' is prone to an information-disclosure vulnerability. Successful exploits may allow attackers to obtain potentially sensitive information on the stack that may aid in other attacks. SIOCGIWSSID IOCTL Local Information Disclosure Vulnerability 09/17/10 CVE 2010-2955 The Linux kernel 2.6.34 and prior are prone to a local information-disclosure vulnerability. Local attackers can exploit this issue to obtain sensitive information that may lead to further attacks. irda_bind() Object Cleanup Vulnerability 09/17/10 CVE 2010-2954 The Linux kernel before 2.6.36-rc3-next-20100901 is prone to a null-pointer dereference vulnerability. An attacker can exploit this issue to crash the affected system. keyctl_session_to_parent() Null Pointer Dereference Denial of Service Vulnerability 09/17/10 CVE 2010-2960 The Linux kernel 2.6.35.4 and earlier are prone to a NULL pointer dereference denial-of-service vulnerability. An attacker can exploit this issue to cause the kernel to crash, denying service to legitimate users. Controller Area Network Protocol Local Privilege Escalation Vulnerability 09/03/10 CVE 2010-2959 The Linux kernel before 2.6.36-rc1 is prone to a local privilege-escalation vulnerability because it fails to properly handle applications that expand stacks into adjacent memory regions. Local attackers can exploit this issue to execute arbitrary code with kernel-level privileges. Successful exploits will result in the complete compromise of affected computers. Failed exploit attempts will cause a denial-of-service condition. JFS xattr Namespace Rules Security Bypass Vulnerability 09/03/10 CVE 2010-2946 The Linux kernel before 2.6.27.51 is prone to a security-bypass vulnerability that affects the JFS filesystem. Local attackers can exploit this issue to bypass certain security restrictions and perform unauthorized actions. KVM Intel VT-x Extension NULL Pointer Denial of Service Vulnerability 09/03/10 CVE 2010-0435 The Linux kernel before 2.6.34 is prone to a denial-of-service vulnerability that affects the Kernel-based Virtual Machine (KVM). A privileged attacker on the guest operating system can exploit this issue to cause the host operating system to crash. EXT4 Multiple Local Denial of Service Vulnerabilities 08/27/10 CVE 2010-3015 The Linux kernel before 2.6.34 is prone to multiple local denial-of-service vulnerabilities because of integer-overflow errors in EXT4 filesystems. Attackers can exploit these issues to corrupt memory on an EXT4-mounted filesystem, resulting in a denial-of-service condition. Userspace Stack Growth Memory Corruption Vulnerability 08/20/10 CVE 2010-2240 The Linux Kernel 2.6.32.19, 2.6.34.4, and 2.6.35.2 fixed a vulnerability. The vulnerability is caused due to the kernel not properly limiting the growth of the stack in userspace applications, which can be exploited to e.g. overwrite other memory areas and gain escalated privileges via e.g. the X server. Btrfs Overwrite Append-Only Files Local Security Bypass Vulnerability 08/13/10 CVE 2010-2537 The Linux Kernel 2.6.34 and prior are prone to a local security-bypass vulnerability that affects the Btrfs filesystem implementation. An attacker can exploit this issue to overwrite files designated as 'append-only'. This could lead to denial-of-service conditions or aid in further attacks. CIFS DNS Lookup Cache Poisoning Vulnerability 08/13/10 CVE 2010-2524 Linux Kernel before 2.6.35-rc6 is prone to a cache-poisoning vulnerability. An attacker may leverage this issue to cause the system to mount from a malicious server by inserting spoofed lookup results. GFS2 Access Control List (ACL) Security Bypass Vulnerability 07/28/10 CVE 2010-2525 The Linux kernel before 2.6.33 is prone to a security-bypass vulnerability that affects Access Control Lists (ACLs) on the GFS2 filesystem. Local attackers can exploit this issue to bypass certain security restrictions and perform unauthorized actions. Successful exploits can result in the complete compromise of a vulnerable computer. btrfs File Permissions Security Bypass Vulnerability 07/28/10 CVE 2010-2071 The Linux kernel 2.6.34 and prior are prone to a security-bypass vulnerability. Local attackers can exploit this issue to bypass certain security restrictions and perform unauthorized actions. Donor File Security Bypass Vulnerability 07/28/10 CVE 2010-2066 The Linux kernel 2.6.34 and prior are prone to a security-bypass vulnerability. Local attackers can exploit this issue to bypass certain security restrictions and perform unauthorized actions. time/clocksource.c Denial of Service Vulnerability 07/20/10 The Linux kernel before 2.6.34-rc2 is prone to a local denial-of-service vulnerability. Attackers can exploit this issue to crash the affected application, denying service to legitimate users. pppol2tp_xmit Null Pointer Deference Denial of Service Vulnerability 07/20/10 CVE 2010-2495 The Linux kernel before 2.6.34-rc2 is prone to a local denial-of-service vulnerability caused by a NULL-pointer dereference error. An attacker may exploit this issue to cause denial-of-service conditions. ethtool 'info.rule_cnt' Local Buffer Overflow Vulnerability 07/20/10 CVE 2010-2478 The Linux kernel 2.6.29.4 and prior are prone to a local buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data. Local attackers may be able to exploit this issue to run arbitrary code with elevated privileges. Failed exploit attempts may crash the affected kernel, denying service to legitimate users. XSF 'SWAPEXT' IOCTL Local Information Disclosure Vulnerability 07/14/10 CVE 2010-2226 The Linux kernel before 2.6.34 is prone to a local information-disclosure vulnerability which affects the XSF IOCTL driver. Local attackers may use the "SWAPEXT" IOCTL to swap a write only file owned by an arbitrary user for a file owned by the attacker. Local attackers can exploit this issue to obtain sensitive information that may lead to further attacks. 'knfsd' 'current->mm' Modifier Local Denial of Service Vulnerability 06/23/10 CVE 2010-1643 The Linux kernel 2.6.34 and prior are prone to a local denial-of-service vulnerability. Attackers can exploit this issue cause the kernel to crash, resulting in a denial-of-service condition. GFS2 File Attribute Security Bypass Vulnerability 06/16/10 CVE 2010-1641 The Linux Kernel before 2.6.34-git10 is prone to a security-bypass vulnerability. Local attackers can exploit this issue to bypass certain security restrictions and perform unauthorized actions. Btrfs Cloned File Security Bypass Vulnerability 06/16/10 CVE 2010-1636 The Linux Kernel before 2.6.34 is prone to a security-bypass vulnerability that affects the Btrfs filesystem implementation. An attacker can exploit this issue to clone a file only open for writing. This may allow attackers to obtain sensitive data or launch further attacks. sctp_process_unk_param() Remote Denial of Service Vulnerability 05/26/10 CVE 2010-1173 The Linux kernel before 2.6.34 is prone to a remote denial-of-service vulnerability because it fails to properly handle user-supplied input. Attackers can exploit this issue to cause the kernel to crash, denying service to legitimate users. gfs2_quota Structure Write Local Privilege Escalation Vulnerability 05/18/10 The Linux kernel 2.6.33 and prior are prone to a local privilege-escalation vulnerability affecting the 'gfs2' file system. Local attackers may be able to exploit this issue to execute arbitrary code with kernel-level privileges. Successful exploits will result in the complete compromise of affected computers; failed attacks will result in denial-of-service conditions. find_keyring_by_name() Local Memory Corruption Vulnerability 05/18/10 CVE 2010-1437 The Linux kernel 2.6.34-rc5 and prior are prone to a local memory-corruption vulnerability. Attackers can exploit this issue to crash the affected computer, denying service to legitimate users. proc_oom_score() Local Denial of Service Vulnerability 05/12/10 CVE 2010-1488 The Linux kernel before 2.6.34-rc4 is prone to a local denial-of-service vulnerability. Attackers can exploit this issue to crash the affected computer, denying service to legitimate users. release_one_tty() Local Information Disclosure Vulnerability 05/12/10 CVE 2010-1162 The Linux kernel before 2.6.34-rc4 is prone to a local information-disclosure vulnerability. Local attackers can exploit this issue to obtain sensitive information that may lead to further attacks. VM/VFS 'invalidatepage()' Local Denial of Service Vulnerability 05/12/10 CVE 2010-1087 The Linux kernel before 2.6.33 is prone to a local denial-of-service vulnerability. Attackers can exploit this issue to cause a kernel oops, resulting in a denial-of-service condition. ReiserFS Security Bypass Vulnerability 05/06/10 CVE 2010-1146 The Linux kernel 2.6.33.2 and prior are prone to a security-bypass vulnerability. Local attackers can exploit this issue to bypass certain security restrictions and perform unauthorized actions. tipc Module Local Denial of Service Vulnerability 05/03/10 CVE 2010-1187 The Linux kernel before 2.6.34-rc2 is prone to a local denial-of-service vulnerability. Attackers can exploit this issue cause the kernel to crash, resulting in a denial-of-service condition. nameidata Null Pointer Dereference Vulnerability 05/03/10 CVE 2010-1148 The Linux kernel 2.6.33.2 and prior are prone to a null-pointer dereference vulnerability. An attacker can exploit this issue to crash the affected system. GFS/GFS2 Local Denial of Service Vulnerability 05/03/10 CVE 2010-0727 The Linux kernel before 2.6.34 is prone to a local denial-of-service vulnerability. Attackers can exploit this issue to cause the kernel to panic, resulting in a denial-of-service condition. KVM 'hvc_console.c' Local Denial of Service Vulnerability 04/13/10 The Linux kernel 2.6.33 and prior are prone to a local denial-of-service vulnerability that affects the Kernel-based Virtual Machine (KVM). Attackers can exploit this issue to crash the affected computer, denying service to legitimate users. Video Output Status Local Denial of Service Vulnerability 04/05/10 The Linux kernel before 2.6.34-rc1 is prone to a local denial-of-service vulnerability that stems from an invalid pointer dereference. Attackers can exploit this issue to crash the affected computer, denying service to legitimate users. TSB I-TLB Load Local Privilege Escalation Vulnerability 03/31/10 The Linux kernel 2.6.32 and prior are prone to a local privilege-escalation vulnerability. Local attackers can exploit this issue to execute arbitrary code with kernel-level privileges. Successful exploits will result in the complete compromise of affected computers. dvb_net_ule() Remote Denial of Service Vulnerability 03/31/10 CVE 2010-1086 The Linux kernel 2.6.33 and prior are prone to a remote denial-of-service vulnerability. Attackers can exploit this issue to cause the kernel to enter an infinite loop, resulting in a denial-of-service condition. KVM Segment Selector Loading Local Privilege Escalation Vulnerability 03/31/10 CVE 2010-0419 The Linux kernel 2.6.32 and prior are prone to a privilege-escalation vulnerability affecting the Kernel-based Virtual Machine (KVM). A guest user could exploit this issue to gain elevated privileges on the guest operating system or crash the guest. selinux_bprm_committing_creds() Security Bypass Vulnerability 03/19/10 The Linux kernel before 2.6.32.8 is prone to a security-bypass vulnerability. Local attackers can exploit this issue to bypass certain security restrictions. net/ipv6/ip6_output.c NULL Pointer Dereference Denial of Service Vulnerability 03/19/10 CVE 2010-0437 The Linux kernel before 2.6.27 is prone to a local denial-of-service vulnerability. Attackers can exploit this issue to crash the affected kernel, denying service to legitimate users. KVM 'pit_ioport_read()' Local Denial of Service Vulnerability 03/10/10 The Linux kernel 2.6.32 and prior are prone to a local denial-of-service vulnerability that affects the Kernel-based Virtual Machine (KVM). Attackers with local access to a guest operating system can exploit this issue to crash the host operating system. Successful exploits will deny service to legitimate users. "mmap()" and "mremap()" Multiple Denial of Service Vulnerabilities 02/19/10 CVE 2010-0291 The Linux kernel before 2.6.32.4 is prone to multiple denial-of-service vulnerabilities when mapping memory addresses. Local attackers may leverage these issues to crash the kernel and deny service to legitimate users. Other attacks may also be possible. Linux Kernel ipv6_hop_jumbo() Remote Denial of Service Vulnerability 02/09/10 CVE 2010-0006 The Linux kernel before 2.6.32.4, when network namespaces are enabled, is prone to a remote denial-of-service vulnerability. Attackers can exploit this issue to cause a kernel panic, denying service to legitimate users. Linux Kernel fasync_helper() Local Privilege Escalation Vulnerability 02/09/10 CVE 2009-4141 Linux kernel before 2.6.33-rc4-git1 is prone to a local privilege-escalation vulnerability. Local attackers can exploit this issue to execute arbitrary code with kernel-level privileges. Linux Kernel ebtables Security Bypass Vulnerability 01/29/10 CVE 2010-0007 The Linux kernel before 2.6.33-rc4 is prone to a security-bypass vulnerability. Local attackers can exploit this issue to bypass certain security restrictions and set or modify ebtables rules. Linux Kernel print_fatal_signal() Local Information Disclosure Vulnerability 01/29/10 CVE 2010-0003 The Linux kernel before 2.6.32.4 is prone to a local information-disclosure vulnerability. Local attackers can exploit this issue to obtain sensitive information that may lead to further attacks. Denial-of-service attacks are also possible. Linux Kernel RTL8169 NIC 'RxMaxSize' Frame Size Remote Denial of Service Vulnerability 01/21/10 CVE 2009-4537 Linux Kernel 2.6.32.3 and prior are prone to a remote denial-of-service vulnerability. An attacker can exploit this issue to deny service to legitimate users. Linux Kernel fuse_ioctl_copy_user() Local Denial of Service Vulnerability 01/19/10 CVE 2009-4410 Linux Kernel before 2.6.31 is prone to a local denial-of-service vulnerability. Attackers can exploit this issue to cause the affected kernel to panic and stop responding, denying service to legitimate users. Linux Kernel drivers/firewire/ohci.c NULL Pointer Dereference Denial of Service Vulnerability 01/11/10 CVE 2009-4138 Linux Kernel before 2.6.32-git9 is prone to a local denial-of-service vulnerability. Attackers can exploit this issue to crash the affected kernel, denying service to legitimate users. Linux Kernel Ext4 move extents ioctl Local Privilege Escalation Vulnerability 01/11/10 CVE 2009-4131 Linux Kernel before 2.6.32-git6 is prone to a local privilege-escalation vulnerability because the software fails to verify access permissions. Exploits may allow attackers to execute arbitrary code with kernel-level privileges and launch other attacks. Linux Kernel KVM handle_dr() Local Denial of Service Vulnerability 01/05/10 CVE 2009-3722 Linux Kernel before 2.6.31.1 is prone to a local denial-of-service vulnerability that affects the Kernel-based Virtual Machine (KVM) subsystem. Attackers in guest systems can exploit this issue to crash the affected host system, denying service to legitimate users. Linux Kernel ip_frag_reasm() Null Pointer Deference Remote Denial of Service Vulnerability 01/05/10 CVE 2009-1298 Linux Kernel before 2.6.31.6 is prone to a remote denial-of-service vulnerability caused by a NULL-pointer dereference error. An attacker may exploit this issue to crash the affected computer, denying service to legitimate users. Linux Kernel net/mac80211/ Multiple Remote Denial of Service Vulnerabilities 12/22/09 CVE 2009-4026 CVE 2009-4027 Linux kernel before 2.6.32-rc8 is prone to multiple remote denial-of-service vulnerabilities. An attacker can exploit these issues to cause a kernel panic, denying service to legitimate users. Linux Kernel KVM Large SMP Instruction Local Denial of Service Vulnerability 12/22/09 CVE 2009-4031 Linux kernel before 2.6.32-rc8 is prone to a local denial-of-service vulnerability that affects the Kernel-based Virtual Machine (KVM). Local attackers can exploit this issue to cause excessive scheduling latency, denying service to legitimate users. Linux Kernel drivers/char/n_tty.c NULL Pointer Dereference Denial of Service Vulnerability 12/22/09 The Linux kernel 2.6.32-rc7 and prior are prone to a local denial-of-service vulnerability. Attackers can exploit this issue to crash the affected kernel, denying service to legitimate users. Linux Kernel fuse_direct_io() Invalid Pointer Dereference Local Denial of Service Vulnerability 12/18/09 CVE 2009-4021 Linux kernel before 2.6.32-rc7 is prone to a local denial-of-service vulnerability that stems from an invalid pointer dereference. Attackers can exploit this issue to crash the affected computer, denying service to legitimate users. Linux Kernel drivers/scsi/gdth.c Local Privilege Escalation Vulnerability 12/18/09 CVE 2009-3080 Linux kernel before 2.6.32-rc8 is prone to a local privilege-escalation vulnerability that is caused by an array index error. Local attackers can exploit this issue to execute arbitrary code with kernel-level privileges. Linux Kernel fput() NULL Pointer Dereference Local Denial of Service Vulnerability 12/10/09 CVE 2009-3888 Linux kernel before 2.6.31.6 is prone to a local denial-of-service vulnerability that stems from a NULL-pointer dereference. Attackers can exploit this issue to crash the affected computer, denying service to legitimate users. Linux Kernel nfs4_proc_lock() Local Denial of Service Vulnerability 12/10/09 CVE 2009-3726 Linux kernel before 2.6.31-rc4 is prone to a local denial-of-service vulnerability. Attackers can exploit this issue to cause the kernel to panic, denying service to legitimate users. Linux Kernel pipe.c Local Privilege Escalation Vulnerability 12/02/09 CVE 2009-3547 Linux kernel before 2.4.37.7 and 2.6.32-rc6 is prone to a local privilege-escalation vulnerability that is caused by a NULL-pointer dereference. Local attackers can exploit this issue to execute arbitrary code with kernel-level privileges. Successful exploits will result in the complete compromise of affected computers. Linux Kernel unix_stream_connect() Local Denial of Service Vulnerability 11/16/09 CVE 2009-3621 The Linux kernel 2.6.31.4 and prior are prone to a local denial-of-service vulnerability. Attackers can exploit this issue to cause the affected kernel to stop responding, denying service to legitimate users. Linux Kernel net/ax25/af_ax25.c Local Denial of Service Vulnerability 11/11/09 CVE 2009-2909 The Linux kernel before 2.6.31.2 is prone to a local denial-of-service vulnerability because it fails to properly verify signedness of a user-supplied value. Attackers can exploit this issue to cause the kernel to crash, denying service to legitimate users. Linux Kernel eCryptfs Lower Dentry Null Pointer Dereference Local Denial of Service Vulnerability 11/11/09 CVE 2009-2908 The Linux kernel before 2.6.31.2 is prone to a local denial-of-service vulnerability in the eCryptfs component. Attackers can exploit this issue to corrupt memory, resulting in a denial-of-service condition. Linux Kernel KVM 'kvm_emulate_hypercall()' Local Denial of Service Vulnerability 11/03/09 CVE 2009-3290 The Linux Kernel before 2.6.31 is prone to a local denial-of-service vulnerability that affects the Kernel-based Virtual Machine (KVM). Attackers can exploit this issue to crash a guest kernel or potentially gain read or write access to guest kernel memory. Linux Kernel find_ie() Function Remote Denial of Service Vulnerability 10/28/09 CVE 2009-3280 The Linux Kernel 2.6.31-rc7 and prior are prone to a remote denial-of-service vulnerability. An attacker can exploit this issue to cause the kernel to end up in an infinite loop, denying service to legitimate users. Linux Kernel perf_counter_open() Local Buffer Overflow Vulnerability 10/28/09 CVE 2009-3234 The Linux Kernel 2.6.31-rc7 and prior are prone to a local buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data. Local attackers may be able to exploit this issue to run arbitrary code with elevated privileges. Linux Kernel AppleTalk Driver IP Over DDP Remote Denial of Service Vulnerability 10/21/09 CVE 2009-2903 The Linux Kernel before 2.6.31.4 is prone to a remote denial-of-service vulnerability. An attacker can exploit this issue to cause a memory leak, denying service to legitimate users. Linux Kernel 2.4 and 2.6 Multiple Local Information Disclosure Vulnerabilities 10/09/09 The Linux kernel is prone to multiple local information-disclosure vulnerabilities. Local attackers can exploit these issues to obtain sensitive information that may lead to further attacks. Linux Kernel Multiple Protocols Local Information Disclosure Vulnerabilities 09/18/09 The Linux kernel before 2.6.31-rc7 is prone to multiple local information-disclosure vulnerabilities. Local attackers can exploit these issues to obtain sensitive information that may lead to further attacks. Linux Kernel drivers/char/tty_ldisc.c NULL Pointer Dereference Denial of Service Vulnerability 09/18/09 CVE 2009-3043 The Linux kernel before 2.6.31-rc8 is prone to a local denial-of-service vulnerability. Attackers can exploit this issue to crash the affected kernel, denying service to legitimate users. Linux Kernel net/llc/af_llc.c Local Information Disclosure 09/10/09 CVE 2009-3001 The Linux kernel 2.6.31 -rc7 and prior are prone to a local information-disclosure vulnerability. Local attackers can exploit this issue to obtain sensitive information that may lead to further attacks. Linux Kernel binfmt_flat.c NULL Pointer Dereference Denial of Service Vulnerability 09/01/09 CVE 2009-2768 The Linux kernel 2.6.31 -rc3 and prior are prone to a local denial-of-service vulnerability. Attackers can exploit this issue to crash the affected kernel, denying service to legitimate users. Linux Kernel sock_sendpage() NULL Pointer Dereference Vulnerability 09/01/09 CVE 2009-2692 The Linux kernel is prone to a local NULL-pointer dereference vulnerability. A local attacker can exploit this issue to execute arbitrary code with superuser privileges or crash an affected kernel, denying service to legitimate users. Versions prior to the Linux kernel 2.4.37.5 and 2.6.31-rc6 are vulnerable. Linux Kernel posix-timers.c NULL Pointer Dereference Denial of Service Vulnerability 08/27/09 CVE 2009-2767 The Linux Kernel before 2.6.31-rc5-git3 is prone to a local denial-of-service vulnerability. Attackers can exploit this issue to crash the affected kernel, denying service to legitimate users. Linux Kernel fs/proc/base.c Local Information Disclosure Vulnerability 08/27/09 CVE 2009-2691 The Linux Kernel 2.6.31 -rc3 and prior are prone to a local information-disclosure vulnerability. Local attackers can exploit this issue to obtain sensitive information that may lead to further attacks. Linux Kernel clear_child_tid() Local Denial of Service Vulnerability 08/21/09 CVE 2009-2848 The Linux Kernel 2.6.31 -rc3 and prior are prone to a local denial-of-service vulnerability. Attackers can exploit this issue to corrupt memory, resulting in a denial-of-service condition. Linux Kernel eCryptfs parse_tag_11() Remote Stack Buffer Overflow Vulnerability 08/19/09 CVE 2009-2406 The Linux Kernel before 2.6.30.4 is prone to a remote stack-based buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data. This issue affects the eCryptfs filesystem. An attacker can exploit this issue to execute arbitrary code with kernel-level privileges. Linux Kernel SGI GRU Driver Off By One Vulnerability 08/13/09 CVE 2009-2584 The Linux kernel 2.6.30.2 and prior are prone to an off-by-one vulnerability that may allow attackers to trigger a denial-of-service condition. This issue affects the SGI GRU driver. Linux Kernel tun_chr_pool() NULL Pointer Dereference Vulnerability 08/13/09 CVE 2009-1897 The Linux kernel 2.6.30.1 and prior are prone to a local NULL-pointer dereference vulnerability. A local attacker can exploit this issue to execute arbitrary code with superuser privileges or crash an affected kernel, denying service to legitimate users. Linux Kernel PER_CLEAR_ON_SETID Incomplete Personality List Access Validation Weakness 08/07/09 CVE 2009-1895 The Linux kernel 2.6.30.1 and prior are prone to an unauthorized-access weakness because of an error in the definition of the PER_CLEAR_ON_SETID personalities mask, which is defined in the 'include/linux/personality.h' source file. An attacker can exploit this issue to perform unsafe operations on a vulnerable computer, which may aid in further attacks. Linux Kernel kvm_arch_vcpu_ioctl_set_sregs() Local Denial of Service Vulnerability 07/29/09 CVE 2009-2287 The Linux kernel before 2.6.30.1 is prone to a local denial-of-service vulnerability. Attackers can exploit this issue to lock kernel resources, resulting in a denial-of-service condition. Linux Kernel RTL8169 NIC Remote Denial of Service Vulnerability 07/09/09 CVE 2009-1389 The Linux kernel before 2.6.30 is prone to a remote denial-of-service vulnerability. An attacker can exploit this issue to crash the system, denying service to legitimate users. Linux Kernel splice(2) Double Lock Local Denial of Service Vulnerability 06/26/09 CVE 2009-1961 The Linux kernel before 2.6.30-rc3, 2.6.29.4, and 2.6.27.24, is prone to a local denial-of-service vulnerability. Attackers can exploit this issue to cause an affected process to hang, denying service to legitimate users. Linux Kernel e1000/e1000_main.c Remote Denial of Service Vulnerability 06/26/09 CVE 2009-1385 The Linux kernel before 2.6.30-rc8 is prone to a remote denial-of-service vulnerability. Attackers can exploit this issue via crafted packets to cause a kernel panic, denying service to legitimate users. Linux Kernel CIFS String Conversion Multiple Vulnerabilities 06/03/09 The Linux Kernel before 2.6.30-rc5 is prone to multiple vulnerabilities affecting the CIFS (Common Internet File System) implementation. Successfully exploiting these issues may allow remote attackers to execute arbitrary code with kernel-level privileges, resulting in the complete compromise of affected computers. Linux Kernel NFS MAY_EXEC Security Bypass Vulnerability 06/03/09 CVE 2009-1630 The Linux kernel before 2.6.30-rc3 is prone to a security-bypass vulnerability that affects the NFS (Network File System) implementation. An attacker can exploit this issue to perform privileged operations on a vulnerable computer. Linux Kernel ptrace_attach() Local Privilege Escalation Vulnerability 05/25/09 CVE 2009-1527 The Linux kernel before 2.6.30-rc4 is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code with superuser privileges, resulting in a complete compromise of the affected computer. Linux Kernel CAP_FS_SET Incomplete Capabilities List Access Validation Vulnerability 05/20/09 The Linux Kernel is prone to an unauthorized-access vulnerability because of an error in the definition of the CAP_FS_SET capabilities mask. This issue has been demonstrated to impact the NFS and VFS filesystems; other applications or kernel components may provide additional attack vectors. Linux Kernel drivers/char/agp/generic.c Local Information Disclosure Vulnerability 05/20/09 CVE 2009-1192 The Linux kernel before 2.6.30-rc3 is prone to a local information-disclosure vulnerability. Local attackers can exploit this issue to obtain sensitive information that may lead to further attacks. Linux Kernel inet6_hashtables.c NULL Pointer Dereference Denial of Service Vulnerability 05/14/09 CVE 2009-1360 The Linux kernel before 2.6.29 is prone to a local denial-of-service vulnerability. Attackers can exploit this issue to crash the affected kernel, denying service to legitimate users. Linux Kernel kill_something_info() Local Denial of Service Vulnerability 05/14/09 CVE 2009-1338 The Linux kernel 2.6.24 through 2.6.27.12 are prone to a local denial-of-service vulnerability. Attackers can exploit this issue to signal all processes on the affected computer, resulting in a denial-of-service condition. Linux Kernel CIFS decode_unicode_ssetup Remote Buffer Overflow Vulnerability 05/06/09 CVE 2009-1633 The Linux kernel 2.6.29.1 and prior are to a remote buffer-overflow vulnerability because the software fails to perform adequate boundary checks on user-supplied data. An attacker can exploit this issue to execute arbitrary code with kernel-level privileges. Linux Kernel ecryptfs_write_metadata_to_contents() Information Disclosure Vulnerability 04/08/09 CVE 2009-0787 The Linux kernel before 2.6.28.9 is prone to an information-disclosure vulnerability because it fails to properly initialize certain memory before using it in a user-accessible operation. Successful exploits will allow attackers to view portions of kernel memory. Linux Kernel nfsd CAP_MKNOD Security Bypass 03/24/09 CVE 2009-1072 A security bypass vulnerability exists in Linux Kernel. The vulnerability is due to an insecure design in Linux kernel when handling the NFS request, MKNOD. By sending a crafted NFS MKNOD request to a target system, a remote attacker can leverage this vulnerability to create a device on a target system. Linux Kernel /ipc/shm.c Local Denial of Service Vulnerability 03/24/09 CVE 2009-0859 The Linux kernel before 2.6.28.5 is prone to a local denial-of-service vulnerability. Attackers can exploit this issue to cause the Linux kernel to lock up, resulting in a denial-of-service condition. Linux Kernel seccomp System Call Security Bypass Vulnerability 03/17/09 CVE 2009-0835 The Linux kernel 2.6.8.6 and prior are prone to a local security-bypass vulnerability. A local attacker may be able to exploit this issue to bypass access control and make restricted system calls, which may result in an elevation of privileges. Linux Kernel Audit System audit_syscall_entry() System Call Security Bypass Vulnerability 03/17/09 CVE 2009-0834 The Linux kernel 2.6.8.6 and prior are prone to a local security-bypass vulnerability. A local attacker may be able to exploit this issue to bypass audit mechanisms imposed on system calls. This may allow malicious behavior to escape notice. Linux Kernel Cloned Process CLONE_PARENT Local Origin Validation Weakness 03/17/09 CVE 2009-0028 The Linux kernel 2.6.8.6 and prior are prone to an origin-validation weakness when dealing with signal handling. This weakness occurs when a privileged process calls attacker-supplied processes as children. Attackers may exploit this to send arbitrary signals to the privileged parent process. A local attacker may exploit this issue to kill vulnerable processes, resulting in a denial-of-service condition. Linux Kernel sock.c SO_BSDCOMPAT Option Information Disclosure Vulnerability 03/11/09 CVE 2009-0676 The Linux kernel before 2.6.28.6 is prone to an information-disclosure vulnerability because it fails to properly initialize certain memory before using it in a user-accessible operation. Successful exploits will allow attackers to view portions of kernel memory. Information harvested may be used in further attacks. Linux Kernel Kprobe Memory Corruption Vulnerability 03/03/09 CVE 2009-0605 The Linux kernel before 2.6.28.5 is prone to a memory-corruption vulnerability because of a design flaw in the Kprobe system. Local attackers could exploit this issue to cause denial-of-service conditions. Linux Kernel Console Selection Local Privilege Escalation Vulnerability 02/27/09 CVE 2009-1046 The Linux kernel before 2.6.28.4 is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code with elevated privileges or crash the affected kernel, denying service to legitimate users. Linux Kernel inotify_read() Local Denial of Service Vulnerability 02/27/09 CVE 2009-0935 The Linux kernel before 2.6.28.3 is prone to a local denial-of-service vulnerability. Attackers can exploit this issue to cause an oops condition in the Linux kernel, which may cause a denial of service. Linux Kernel make_indexed_dir() Local Denial of Service Vulnerability 02/27/09 The Linux kernel before 2.6.27.14 is prone to a local denial-of-service vulnerability because it fails to properly handle malformed filesystem images. Attackers can exploit this issue to cause the kernel to crash, denying service to legitimate users. Note that to exploit this issue, attackers must be able to mount appropriate filesystem types, which may require membership in a privileged group or root access. Linux Kernel inotify Local Privilege Escalation Vulnerability 02/24/09 CVE 2008-5182 The Linux kernel before 2.6.28-rc5 is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code with elevated privileges or crash the affected kernel, denying service to legitimate users. Linux Kernel dell_rbu Local Denial of Service Vulnerabilities 02/16/09 CVE 2009-0322 The Linux kernel before 2.6.28.2 is prone to two denial-of-service vulnerabilities. A local unprivileged attacker can exploit these issues to cause a vulnerable system to crash, resulting in denial-of-service conditions. Linux Kernel readlink Local Privilege Escalation Vulnerability 02/16/09 CVE 2009-0269 The Linux kernel before 2.6.28.1 is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code with superuser privileges or crash the affected kernel, denying service to legitimate users. Linux Kernel keyctl_join_session_keyring() Denial of Service Vulnerability 02/06/09 CVE 2009-0031 The Linux kernel before 2.6.29-rc2-git1 is prone to a denial-of-service vulnerability because it fails to manage memory in a proper manner. Attackers can exploit this issue to cause a crash by exhausting memory resources. Linux Kernel FWD-TSN Chunk Remote Buffer Overflow Vulnerability 01/12/09 CVE 2009-0065 The Linux kernel 2.6.28 and prior are prone to a remote buffer-overflow vulnerability because the software fails to perform adequate boundary checks on user-supplied data. An attacker can exploit this issue to execute arbitrary code with kernel-level privileges. Successfully exploiting this issue will result in the complete compromise of affected computers. Linux Kernel ib700wdt.c Buffer Underflow Vulnerability 01/05/09 CVE 2008-5702 The Linux kernel before 2.6.28-rc1 is prone to a buffer-underflow vulnerability because it fails to perform adequate boundary checks on user-supplied data. A local attacker can exploit this issue to execute arbitrary code with kernel-level privileges or crash the affected computer, denying service to legitimate users. Minimum Time SG_IO Denial of Service 12/26/08 CVE 2008-5700 Linux kernels prior to 2.6.27.9 do not set minimum times for SG_IO requests. This allows local users to cause a denial of service by running multiple instances of an unspecified test program. Linux Kernel ac_ioctl() Local Buffer Overflow 12/26/08 Linux Kernels prior to 2.6.28-rc1 are vulnerable to a denial of service caused by inadequate boundary checking on user supplied data. Local users may be able to exploit this to crash the system or run arbitrary code. ATM vcc Table Corruption Denial of Service 12/26/08 CVE 2008-5079 Systems running kernels 2.6.27.8 or lower are vulnerable to a denial of service when a local user makes two svc_listen calls for the same socket followed by reading a /proc/net/atm/*vc file. Despite the second call's failure to return a socket, an unassigned socket is created that causes the kernel to infinitely loop during the file read. Linux Kernel sendmsg() Local Denial of Service 12/17/08 CVE 2008-5300 The Linux Kernel 2.6.27.8 is prone to a local denial-of-service vulnerability. The vulnerability is caused due to sendmsg() not correctly blocking while the UNIX garbage collector is running. This can be exploited to cause soft lockups or trigger out of memory conditions in other applications via certain UNIX socket operations. Linux Kernel lbs_process_bss() Remote Denial of Service 12/17/08 CVE 2008-5134 Linux Kernels prior to 2.6.27.5 are prone to a remote denial-of-service vulnerability because of a buffer-overflow error in the libertas subsystem. Successful exploits will allow attackers to crash the affected computer, denying service to legitimate users. Linux Kernel drivers/media/video/tvaudio.c Memory Corruption 12/04/08 Linux kernels before 2.6.28-rc5 are prone to a memory-corruption vulnerability because of insufficient boundary checks. A successful attack may cause the affected kernel to crash, effectively denying service to legitimate users. Linux Kernel scm_destroy() Local Denial of Service 11/27/08 CVE 2008-5029 Linux kernels 2.6.27.4, 2.6.26, and earlier are prone to a local denial-of-service vulnerability. Attackers can exploit this issue to cause the kernel to crash, denying service to legitimate users. Linux Kernel ndiswrapper Remote Buffer Overflow 11/27/08 CVE 2008-4395 Linux kernel earlier than 2.6.27 are prone to a buffer overflow vulnerability. The vulnerability is caused due to a boundary error in the ndiswrapper kernel driver when processing wireless network packets. This can be exploited to cause a buffer overflow via an overly long ESSID (Extended Service Set Identifier). Linux Kernel hfsplus_block_allocate() Local Denial of Service 11/27/08 CVE 2008-4934 Linux kernels prior to 2.6.28-rc1 are prone to a local denial-of-service vulnerability. The vulnerability is caused due to the hfsplus_block_allocate() function in fs/hfsplus/bitmap.c not properly checking the return values of read_mapping_page() function before using them. This can be exploited to crash a system. Linux Kernel tvaudio.c Operations NULL Pointer Dereference 11/27/08 CVE 2008-5033 Linux kernels before 2.6.25.19, 2.6.26.7, and 2.6.27.3 are prone to a local denial-of-service vulnerability. Attackers can exploit this issue to crash the affected kernel, denying service to legitimate users. Linux Kernel hfsplus_find_cat() Local Denial of Service 11/27/08 CVE 2008-4933 Linux kernels before 2.6.28-rc1 are prone to a local denial-of-service vulnerability because it fails to properly bounds-check data before copying it to an insufficiently sized memory buffer. Attackers can exploit this issue to cause the kernel to crash, denying service to legitimate users. Linux Kernel hfs_cat_find_brec() Buffer Overflow 11/27/08 CVE 2008-5025 Linux kernels before 2.6.27.6 are prone to a DoS vulnerability. The vulnerability is caused due to a boundary error in the hfs_cat_find_brec() function and can be exploited to cause a buffer overflow via an overly large catalog name length. Linux Kernel do_splice_from() Local Security Bypass 11/14/08 CVE 2008-4554 Linux kernels released before 2.6.27 are prone to a local security-bypass vulnerability because the do_splice_from() function fails to correctly reject file descriptors when performing certain file operations. Attackers can exploit this issue to bypass restrictions on append mode when updating files to update arbitrary locations in the file. Linux Kernel proc_do_xprt() Local Buffer Overflow Vulnerability 11/13/08 CVE 2008-3911 Linux kernels 2.6.24-git13 through 2.6.26.3 are prone to a local buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data. Local attackers can exploit this issue to crash the affected kernel, denying service to legitimate users. Linux kernel SCTP Protocol Violation Remote Denial of Service 10/28/08 CVE 2008-4618 Linux kernels before 2.6.27 are prone to a remote denial-of-service vulnerability because it fails to handle SCTP protocol violations. Attackers can exploit this issue to cause a kernel panic, denying service to legitimate users. Linux Kernel nfsd Subsystem Buffer Overflow 09/26/08 CVE 2008-3915 A remote denial of service vulnerability exists in the Linux Kernel. The vulnerability is due to an implementation flaw which may result in a buffer overflow in the NFS subsystem of the Linux Kernel. By sending Access Control List NFS requests to a target host, an attacker may exploit this vulnerability to cause kernel panic, leading to a system wide denial of service condition. Linux Kernel sctp_setsockopt_auth_key() Remote Denial of Service Vulnerability 09/10/08 CVE 2008-3526 The Linux kernel is prone to a remote denial-of-service vulnerability because it fails to properly handle user-supplied input. Attackers can exploit this issue to cause a kernel panic, denying service to legitimate users. Linux Kernel DCCP Protocol Handler dccp_setsockopt_change Integer Overflow 08/26/08 CVE 2008-3276 There exists an integer overflow vulnerability in the Datagram Congestion Control Protocol stack in Linux kernel. The flaw is due to lack of data validation when parsing DCCP datagrams. An unauthenticated remote attacker may leverage this vulnerability to raise a denial of service condition on the target system. Linux Kernel Multiple Vulnerabilities fixed in 2.6.26.2 08/19/08 CVE 2008-3272 CVE 2008-3275 The vulnerabilities fixed in 2.6.26.2 allow local users to cause a denial of service or disclose potentially sensitive information. Linux Kernel uvc_driver.c Format Descriptor Parsing Buffer Overflow 08/19/08 CVE 2008-3496 The Linux kernel prior to 2.6.26.1 are prone to a buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data. Successfully exploiting this issue will result in the complete compromise of affected computers.

The sctp_assoc_update() NULL pointer dereference vulnerability was reported in http://osvdb.org/show/osvdb/109512 OSVDB 109512. sctp_association_free() vulnerability was reported in http://osvdb.org/show/osvdb/108473 OSVDB 108473. The multiple vulnerabilities in Linux Kernel Advanced Linux Sound Architecture were reported in http://osvdb.org/show/osvdb/108386 OSVDB 108386, http://osvdb.org/show/osvdb/108387 OSVDB 108387, http://osvdb.org/show/osvdb/108388 OSVDB 108388, http://osvdb.org/show/osvdb/108389 OSVDB 108389, http://osvdb.org/show/osvdb/108390 OSVDB 108390, and http://osvdb.org/show/osvdb/108451 OSVDB 108451. The ptrace privilege elevation was reported in http://osvdb.org/show/osvdb/108754 OSVDB 108754. The system call auditing denial of service was reported in http://osvdb.org/show/osvdb/108293 OSVDB 108293. The "do_follow_link" function denial of service vulnerability was reported in https://bugzilla.redhat.com/show_bug.cgi?id=1094363 Red Hat Bugzilla Bug 1094363. The Linux Kernel Inode capabilities privilege escalation vulnerability was reported in https://bugzilla.redhat.com/show_bug.cgi?id=1107966 Red Hat Bugzilla Bug 1107966. The SCSI Initiator I/O Operations Vulnerability was reported in http://www.securelist.com/en/advisories/59134 SA59134 and http://osvdb.org/show/osvdb/108001 OSVDB ID 108001. Linux Kernel Futex Requeue vulnerability was reported in http://www.securityfocus.com/bid/67906 Bugtraq ID 67906. Linux Kernel Syscall Auditing Subsystem vulnerability was reported in https://bugzilla.redhat.com/show_bug.cgi?id=1102571 Red Hat Bugzilla Bug 1102571. The Linux Kernel "n_tty_write()" race condition vulnerability was reported in https://bugzilla.novell.com/show_bug.cgi?id=875690 Red Hat Bugzilla Bug 875690. The Linux Kernel BPF two denial of service vulnerabilities were reported in https://github.com/torvalds/linux/commit/05ab8f2647e4221cbdb3856dd7d32bd5407316b3 Linux repository commit 05ab8f2. The ipc_rcu_putref denial of service vulnerability was reported in https://bugzilla.redhat.com/show_bug.cgi?id=1024854 Red Hat Bugzilla Bug 1024854. The aac_compat_ioctl security bypass vulnerability was reported in https://bugzilla.redhat.com/show_bug.cgi?id=1033530 Red Hat Bugzilla Bug 1033530. The "ping_init_sock()" and "try_to_unmap_cluster()" vulnerabilities were reported in https://bugzilla.redhat.com/show_bug.cgi?id=1086730 Red Hat Bugzilla Bug 1086730 and https://bugzilla.redhat.com/show_bug.cgi?id=1093076 Red Hat Bugzilla Bug 1093076. The buffer overflow and denial of service vulnerabilities were reported in https://bugzilla.redhat.com/show_bug.cgi?id=921970 Red Hat Bugzilla Bug 921970 and http://www.securityfocus.com/bid/66441 Bugtraq ID 66441. The "rds_iw_laddr_check()" NULL pointer dereference vulnerability was reported in http://secunia.com/advisories/57424/ Secunia Advisory SA57424. The vhost-net segmentation memory disclosure vulnerability was reported in http://secunia.com/advisories/57543/ Secunia Advisory SA57543. The SCTP handshake NULL pointer dereference vulnerability was reported in http://secunia.com/advisories/57541/ Secunia Advisory SA57541. The "rds_ib_laddr_check()" NULL pointer dereference vulnerability was reported in http://secunia.com/advisories/57284/ Secunia Advisory SA57284 and http://osvdb.org/show/osvdb/104894 OSVDB ID 104894. The DCCP packets handling memory corruption vulnerability was reported in http://secunia.com/advisories/57446/ Secunia Advisory SA57446. The Linkage Stack Instructions handling denial of service vulnerability was reported in http://secunia.com/advisories/56963 Secunia Advisory SA56963. The two vulnerabilities in Linux Kernel were reported in http://secunia.com/advisories/56854/ Secunia Advisory SA56854 and http://secunia.com/advisories/56967/ Secunia Advisory SA56967. The "ieee80211_radiotap_iterator_init()" denial of service vulnerability was reported in http://secunia.com/advisories/56282 Secunia Advisory SA56282. The "recvmsg()" and "recvfrom()" information disclosure vulnerabilities were reported in http://secunia.com/advisories/55882/ Secunia Advisory SA55882 and http://secunia.com/advisories/56036/ Secunia Advisory SA56036. The get_wchan() stack frame unwinding denial of service vulnerability was reported in http://secunia.com/advisories/56224/ Secunia Advisory SA56224. The KVM subsystem vulnerabilities were reported in http://secunia.com/advisories/56035/ Secunia Advisory SA56035 and http://secunia.com/advisories/56115/ Secunia Advisory SA56115. _ptrace_may_access() privilege escalation vulnerability was reported in http://secunia.com/advisories/55922/ Secunia Advisory SA55922 and http://osvdb.org/show/osvdb/100508 OSVDB ID 100508. The Radiotap header processing denial of service vulnerability was reported in http://secunia.com/advisories/55606/ Secunia Advisory SA55606. The qeth_snmp_command() privilege escalation vulnerability was reported in http://secunia.com/advisories/55642/ Secunia Advisory SA55642. The IPVS two buffer overflow vulnerabilities were reported in http://secunia.com/advisories/55709/ Secunia Advisory SA55709. The AACRAID Driver Compat IOCTL Security Bypass vulnerability was reported in http://secunia.com/advisories/55562/ Secunia Advisory SA55562. The IPV4 and IPV6 UFO Packets Handling Memory Corruption vulnerabilities were reported in http://secunia.com/advisories/55348/ Secunia Advisory SA55348. The HFS+ Privilege Escalation vulnerability was reported in http://secunia.com/advisories/50849/ Secunia Advisory SA50849. The "compat_put_timeval()" Argument Passing vulnerability was reported in http://secunia.com/advisories/50790/ Secunia Advisory SA50790. The multiple vulnerabilities fixed in 2.6.34.13 were reported in http://secunia.com/advisories/50340/ Secunia Advisory SA50340. The "madvise_remove()" Use-After-Free vulnerability was reported in http://secunia.com/advisories/50310/ Secunia Advisory SA50310. The Huge Pages Memory Leak Denial of Service vulnerability was reported in http://secunia.com/advisories/49191/ Secunia Advisory SA49191. The NFSv4 Denial of Service vulnerability was reported in http://secunia.com/advisories/49149/ Secunia Advisory SA49149. The mmap_sem Denial of Service vulnerability was reported in http://secunia.com/advisories/49187/ Secunia Advisory SA49187. The "ext4_fill_flex_info()" Denial of Service vulnerability was reported in http://secunia.com/advisories/48645/ Secunia Advisory SA48645. The "split_huge_page()" Race Condition Denial of Service vulnerability was reported in http://secunia.com/advisories/48404/ Secunia Advisory SA48404. The "/proc/<pid>/mem" Privilege Escalation vulnerability was reported in http://secunia.com/advisories/47378/ Secunia Advisory SA47378. The "igmp_heard_query()" Denial of Service vulnerability was reported in http://secunia.com/advisories/47472/ Secunia Advisory SA47472. The KVM "syscall" Emulation Denial of Service vulnerability was reported in http://secunia.com/advisories/47482/ Secunia Advisory SA47482. The DRM "drm_mode_dirtyfb_ioctl()" Integer Overflow vulnerability was reported in http://secunia.com/advisories/47486/ Secunia Advisory SA47486. The "xfs_acl_from_disk()" Integer Overflow vulnerability was reported in http://secunia.com/advisories/47488/ Secunia Advisory SA47488. The KVM KVM_ASSIGN_PCI_DEVICE IOCTL Denial of Service vulnerability was reported in http://secunia.com/advisories/47431/ Secunia Advisory SA47431. The "SG_IO" SCSI IOCTL Privilege Escalation vulnerability was reported in http://secunia.com/advisories/47296/ Secunia Advisory SA47296. The KVM PIT Denial of Service vulnerability was reported in http://secunia.com/advisories/47293/ Secunia Advisory SA47293. The B.A.T.M.A.N. "bat_socket_read()" Buffer Overflow vulnerability was reported in http://secunia.com/advisories/47199/ Secunia Advisory SA47199. The "journal_get_superblock()" Denial of Service vulnerabilities were reported in http://secunia.com/advisories/46802/ Secunia Advisory SA46802. The two Denial of Service vulnerabilities in 2.6.x were reported in http://secunia.com/advisories/46803/ Secunia Advisory SA46803. The ghash NULL Pointer Dereference vulnerability was reported in http://secunia.com/advisories/46584/ Secunia Advisory SA46584. The XFS "xfs_readlink()" Buffer Overflow vulnerability was reported in http://secunia.com/advisories/46591/ Secunia Advisory SA46591. The ext4 Extent Splitting Denial of Service vulnerability was reported in http://secunia.com/advisories/46489/ Secunia Advisory SA46489. The "apparmor_setprocattr()" Denial of Service vulnerability was reported in http://secunia.com/advisories/46423/ Secunia Advisory SA46423. The CIFS DFS Denial of Service vulnerability was reported in http://secunia.com/advisories/45936/ Secunia Advisory SA45936. The CIFSFindNext Signedness Error Denial of Service vulnerability was reported in http://secunia.com/advisories/45695/ Secunia Advisory SA45695. The Event Overflows Denial of Service vulnerability was reported in http://secunia.com/advisories/45533/ Secunia Advisory SA45533. The "perf" Privilege Escalation vulnerability was reported in http://secunia.com/advisories/45489/ Secunia Advisory SA45489. The GRO "skb_gro_header_slow()" Denial of Service vulnerability was reported in http://secunia.com/advisories/45420/ Secunia Advisory SA45420. The Xtensa "ptrace_setxregs()" Memory Disclosure vulnerability was reported in http://secunia.com/advisories/45267/ Secunia Advisory SA45267. The GFS2 / ext4 Denial of Service vulnerabilities were reported in http://secunia.com/advisories/45193/ Secunia Advisory SA45193. The Transparent Hugepage Support Denial of Service vulnerability was reported in http://secunia.com/advisories/44986/ Secunia Advisory SA44986. The "key_replace_session_keyring()" NULL Pointer Dereference Denial of Service vulnerability was reported in http://secunia.com/advisories/44747/ Secunia Advisory SA44747. The KSM Denial of Service vulnerability was reported in http://secunia.com/advisories/44754/ Secunia Advisory SA44754. The "ip_expire()" Denial of Service vulnerability was reported in http://secunia.com/advisories/44625/ Secunia Advisory SA44625. The Bluetooth Multiple Local Information Disclosure vulnerabilities were reported in http://secunia.com/advisories/44466/ Secunia Advisory SA44466. The Denial of Service and Privilege Escalation vulnerabilities were reported in http://secunia.com/advisories/44248/ Secunia Advisory SA44248. The "bcm_release()" NULL Pointer Dereference vulnerability was reported in http://secunia.com/advisories/44220/ Secunia Advisory SA44220. The 'next_pidmap()' Local Denial of Service vulnerability was reported in http://secunia.com/advisories/44164/ Secunia Advisory SA44164. The "mremap()" Denial of Service vulnerability was reported in http://secunia.com/advisories/44094/ Secunia Advisory SA44094. The "inotify_init1()" Denial of Service vulnerability was reported in http://secunia.com/advisories/44091/ Secunia Advisory SA44091. The OCFS2 Sparse Writes Information Disclosure vulnerability was reported in http://secunia.com/advisories/43966/ Secunia Advisory SA43966. The 'iriap.c' Remote Buffer Overflow vulnerabilities were reported in http://www.securityfocus.com/bid/46980/ Bugtraq ID 46980. The Netfilter and Econet Local Information Disclosure vulnerabilities were reported in http://www.securityfocus.com/bid/46919/ Bugtraq ID 46919. The ROSE multiple vulnerabilities were reported in http://secunia.com/advisories/43846/ Secunia Advisory SA43846. The TPM Information Disclosure vulnerability was reported in http://secunia.com/advisories/43576/ Secunia Advisory SA43576. The "ldm_frag_add()" Buffer Overflow vulnerability was reported in http://secunia.com/advisories/43738/ Secunia Advisory SA43738. The InfiniBand Request Handling Denial of Service vulnerability was reported in http://secunia.com/advisories/43693/ Secunia Advisory SA43693. The epoll Denial of Service vulnerability was reported in http://secunia.com/advisories/43522/ Secunia Advisory SA43522. The 'dns_key.c' NULL Pointer Dereference Denial of Service vulnerability was reported in http://secunia.com/advisories/43594/ Secunia Advisory SA43594. The "/proc/<pid>/" Permissions Handling weakness was reported in http://secunia.com/advisories/43496/ Secunia Advisory SA43496. The World-Writable sysfs and procfs Files weaknesses were reported in http://secunia.com/advisories/43405/ Secunia Advisory SA43405. The 'fs/btrfs/ioctl.c' Local Privilege Escalation vulnerability was reported in http://www.securityfocus.com/bid/46301/ Bugtraq ID 46301. The I/O-Warrior USB Device Heap Buffer Overflow vulnerability was reported in http://www.securityfocus.com/bid/46069/ Bugtraq ID 46069. The "drivers/media/dvb/ttpci/av7110_ca" IOCTL Local Privilege Escalation vulnerability was reported in http://www.securityfocus.com/bid/45986/ Bugtraq ID 45986. The ETHTOOL_GRXCLSRLALL Local Information Disclosure vulnerability was reported in http://www.securityfocus.com/bid/44427/ Bugtraq ID 44427. The "blk_rq_map_user_iov()" Local Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/45660/ Bugtraq ID 45660. The SCTP Local Race Condition vulnerability was reported in http://www.securityfocus.com/bid/45661/ Bugtraq ID 45661. The Unix Sockets Local Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/45037/ Bugtraq ID 45037. The "hmid_ds structure" Local Information Disclosure vulnerability was reported in http://www.securityfocus.com/bid/45054/ Bugtraq ID 45054. The Econet Protocol Multiple Local vulnerabilities were reported in http://www.securityfocus.com/bid/45072/ Bugtraq ID 45072. The 'perf_event_mmap()' Local Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/44861/ Bugtraq ID 44861. The 'net/core/filter.c' Local Information Disclosure vulnerability was reported in http://www.securityfocus.com/bid/44758/ Bugtraq ID 44758. The Futex Macros Local Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/44754/ Bugtraq ID 44754. The CAN Protocol Information Disclosure vulnerability was reported in http://www.securityfocus.com/bid/44661/ Bugtraq ID 44661. The 'x25_parse_facilities()' Remote Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/44642/ Bugtraq ID 44642. The 'io_submit_one()' NULL Pointer Dereference Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/44755/ Bugtraq ID 44755. The Reliable Datagram Sockets Protocol Local Integer Overflow vulnerability was reported in http://www.securityfocus.com/bid/44549/ Bugtraq ID 44549. The setup_arg_pages() Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/44301/ Bugtraq ID 44301. The VIDIOCSMICROCODE IOCTL Local Memory Overwrite vulnerability was reported in http://www.securityfocus.com/bid/44242/ Bugtraq ID 44242. The ALSA 'sound/core/control.c' Local Integer Overflow vulnerability was reported in http://www.securityfocus.com/bid/43787/ Bugtraq ID 43787. The 915 GEM IOCTL Local Memory Overwrite vulnerability was reported in http://www.securityfocus.com/bid/44067/ Bugtraq ID 44067. The FBIOGET_VBLANK 'drivers/video/sis/sis_main.c' Information Disclosure vulnerability was reported in http://www.securityfocus.com/bid/43810/ Bugtraq ID 43810. The 'ipc/sem.c' Information Disclosure vulnerability was reported in http://www.securityfocus.com/bid/43809/ Bugtraq ID 43809. The TIOCGICOUNT 'usb/serial/mos*.c' Information Disclosure vulnerability was reported in http://www.securityfocus.com/bid/43803/ Bugtraq ID 43803. The SCTP HMAC Handling Memory Corruption vulnerability was reported in http://www.securityfocus.com/bid/43701/ Bugtraq ID 43701. The OCFS2 Fast Symlink Memory Corruption vulnerability was reported in http://www.securityfocus.com/bid/43611/ Bugtraq ID 43611. The set_ftrace_filter File Local Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/43684/ Bugtraq ID 43684. The 'PKT_CTRL_CMD_STATUS' Invalid Pointer Dereference Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/43551/ Bugtraq ID 43551. The multiple Information Disclosure vulnerabilities fixed in 2.6.36-rc5 were reported in http://secunia.com/advisories/41440/ Secunia Advisory SA41440. The Rose Protocol 'srose_ndigis' Heap Memory Corruption vulnerability was reported in http://www.securityfocus.com/bid/43368/ Bugtraq ID 43368. The Ptrace Local Privilege Escalation vulnerability was reported in http://www.securityfocus.com/bid/43355/ Bugtraq ID 43355. The 'do_io_submit()' Integer Overflow vulnerability was reported in http://www.securityfocus.com/bid/43353/ Bugtraq ID 43353. The 'video4linux' IOCTL and IP Multicast 'getsockopt' Privilege Escalation vulnerability was reported in http://www.securityfocus.com/bid/43239/ Bugtraq ID 43239. The snd_seq_oss_open() Multiple Local Memory Corruption vulnerabilities were reported in http://www.securityfocus.com/bid/43062/ Bugtraq ID 43062. The XFS_IOC_FSGETXATTR Information Disclosure vulnerability was reported in http://www.securityfocus.com/bid/43022/ Bugtraq ID 43022. The SIOCGIWSSID IOCTL Local Information Disclosure vulnerability was reported in http://www.securityfocus.com/bid/42885/ Bugtraq ID 42885. The irda_bind() Object Cleanup vulnerability was reported in http://www.securityfocus.com/bid/42900/ Bugtraq ID 42900. The keyctl_session_to_parent() Null Pointer Dereference Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/42932/ Bugtraq ID 42932. The Controller Area Network Protocol Local Privilege Escalation vulnerability was reported in http://www.securityfocus.com/bid/42585/ Bugtraq ID 42585. The JFS xattr Namespace Rules Security Bypass vulnerability was reported in http://www.securityfocus.com/bid/42589/ Bugtraq ID 42589. The KVM Intel VT-x Extension NULL Pointer Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/42582/ Bugtraq ID 42582. The EXT4 Multiple Local Denial of Service vulnerabilities were reported in http://www.securityfocus.com/bid/42477/ Bugtraq ID 42477. The Userspace Stack Growth Memory Corruption vulnerability was reported in http://secunia.com/advisories/40965/ Secunia Advisory SA40965. The Btrfs Overwrite Append-Only Files Local Security Bypass vulnerability was reported in http://www.securityfocus.com/bid/41847/ Bugtraq ID 41847. The CIFS DNS Lookup Cache Poisoning vulnerability was reported in http://www.securityfocus.com/bid/41904/ Bugtraq ID 41904. The GFS2 Access Control List (ACL) Security Bypass vulnerability was reported in http://www.securityfocus.com/bid/41516/ Bugtraq ID 41516. The btrfs File Permissions Security Bypass vulnerability was reported in http://www.securityfocus.com/bid/41467/ Bugtraq ID 41467. The Donor File Security Bypass vulnerability was reported in http://www.securityfocus.com/bid/41466/ Bugtraq ID 41466. The time/clocksource.c Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/41079/ Bugtraq ID 41079. The pppol2tp_xmit Null Pointer Deference Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/41077/ Bugtraq ID 41077. The ethtool 'info.rule_cnt' Local Buffer Overflow vulnerability was reported in http://www.securityfocus.com/bid/41223/ Bugtraq ID 41223. The Linux Kernel XSF 'SWAPEXT' IOCTL Local Information Disclosure vulnerability was reported in http://www.securityfocus.com/bid/40920/ Bugtraq ID 40920. The 'knfsd' 'current->mm' Modifier Local Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/40377/ Bugtraq ID 40377. The GFS2 File Attribute Security Bypass vulnerability was reported in http://www.securityfocus.com/bid/40356/ Bugtraq ID 40356. The Btrfs Cloned File Security Bypass vulnerability was reported in http://www.securityfocus.com/bid/40241/ Bugtraq ID 40241. The sctp_process_unk_param() Remote Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/39794/ Bugtraq ID 39794. The gfs2_quota Structure Write Local Privilege Escalation vulnerability was reported in http://www.securityfocus.com/bid/39715/ Bugtraq ID 39715. The find_keyring_by_name() Local Memory Corruption vulnerability was reported in http://www.securityfocus.com/bid/39719/ Bugtraq ID 39719. The proc_oom_score() Local Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/39477/ Bugtraq ID 39477. The release_one_tty() Local Information Disclosure vulnerability was reported in http://www.securityfocus.com/bid/39480/ Bugtraq ID 39480. The VM/VFS 'invalidatepage()' Local Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/39569/ Bugtraq ID 39569. The ReiserFS Security Bypass vulnerability was reported in http://www.securityfocus.com/bid/39344/ Bugtraq ID 39344. The tipc Module Local Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/39120/ Bugtraq ID 39120. The nameidata Null Pointer Dereference vulnerability was reported in http://www.securityfocus.com/bid/39186/ Bugtraq ID 39186. The GFS/GFS2 Local Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/39101/ Bugtraq ID 39101. The KVM 'hvc_console.c' Local Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/38537/ Bugtraq ID 38537. The Video Output Status Local Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/38607/ Bugtraq ID 38607. The TSB I-TLB Load Local Privilege Escalation vulnerability was reported in http://www.securityfocus.com/bid/38393/ Bugtraq ID 38393. The dvb_net_ule() Remote Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/38479/ Bugtraq ID 38479. The KVM Segment Selector Loading Local Privilege Escalation vulnerability was reported in http://www.securityfocus.com/bid/38467/ Bugtraq ID 38467. The selinux_bprm_committing_creds() Security Bypass vulnerability was reported in http://www.securityfocus.com/bid/38175/ Bugtraq ID 38175. The net/ipv6/ip6_output.c NULL Pointer Dereference Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/38185/ Bugtraq ID 38185. The KVM 'pit_ioport_read()' Local Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/38038/ Bugtraq ID 38038. The "mmap()" and "mremap()" multiple Denial of Service vulnerabilities were reported in http://www.securityfocus.com/bid/37906/ Bugtraq ID 37906. The Linux Kernel ipv6_hop_jumbo() Remote Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/37810/ Bugtraq ID 37810. The Linux Kernel fasync_helper() Local Privilege Escalation vulnerability was reported in http://www.securityfocus.com/bid/37806/ Bugtraq ID 37806. The Linux Kernel ebtables Security Bypass vulnerability was reported in http://www.securityfocus.com/bid/37762/ Bugtraq ID 37762. The Linux Kernel print_fatal_signal() Local Information Disclosure vulnerability was reported in http://www.securityfocus.com/bid/37724/ Bugtraq ID 37724. The Linux Kernel RTL8169 NIC 'RxMaxSize' Frame Size Remote Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/37521/ Bugtraq ID 37521. The Linux Kernel fuse_ioctl_copy_user() Local Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/37453/ Bugtraq ID 37453. The Linux Kernel drivers/firewire/ohci.c NULL Pointer Dereference Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/37339/ Bugtraq ID 37339. The Linux Kernel Ext4 move extents ioctl Local Privilege Escalation vulnerability was reported in http://www.securityfocus.com/bid/37277/ Bugtraq ID 37277. The Linux Kernel KVM handle_dr() Local Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/37221/ Bugtraq ID 37221. The Linux Kernel ip_frag_reasm() Null Pointer Deference Remote Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/37231/ Bugtraq ID 37231. The Linux Kernel net/mac80211/ Multiple Remote Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/37170/ Bugtraq ID 37170. The Linux Kernel KVM Large SMP Instruction Local Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/37130/ Bugtraq ID 37130. The Linux Kernel drivers/char/n_tty.c NULL Pointer Dereference Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/37147/ Bugtraq ID 37147. The Linux Kernel fuse_direct_io() Invalid Pointer Dereference Local Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/37069/ Bugtraq ID 37069. The Linux Kernel drivers/scsi/gdth.c Local Privilege Escalation vulnerability was reported in http://www.securityfocus.com/bid/37068/ Bugtraq ID 37068. The Linux Kernel fput() NULL Pointer Dereference Local Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/36953/ Bugtraq ID 36953. The Linux Kernel nfs4_proc_lock() Local Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/36936/ Bugtraq ID 36936. The Linux Kernel pipe.c Local Privilege Escalation vulnerability was reported in http://www.securityfocus.com/bid/36901/ Bugtraq ID 36901. The Linux Kernel unix_stream_connect() Local Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/36723/ Bugtraq ID 36723. The Linux Kernel net/ax25/af_ax25.c Local Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/36635/ Bugtraq ID 36635. The Linux Kernel eCryptfs Lower Dentry Null Pointer Dereference Local Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/36639/ Bugtraq ID 36639. The Linux Kernel KVM 'kvm_emulate_hypercall()' Local Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/36512/ Bugtraq ID 36512. The Linux Kernel find_ie() Function Remote Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/36421/ Bugtraq ID 36421. The Linux Kernel perf_counter_open() Local Buffer Overflow vulnerability was reported in http://www.securityfocus.com/bid/36423/ Bugtraq ID 36423. The Linux Kernel AppleTalk Driver IP Over DDP Remote Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/36379/ Bugtraq ID 36379. The Linux Kernel 2.4 and 2.6 Multiple Local Information Disclosure vulnerabilities were reported in http://www.securityfocus.com/bid/36304/ Bugtraq ID 36304. The Linux Kernel Multiple Protocols Local Information Disclosure vulnerabilities were reported in http://www.securityfocus.com/bid/36176/ Bugtraq ID 36176. The Linux Kernel drivers/char/tty_ldisc.c NULL Pointer Dereference Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/36191/ Bugtraq ID 36191. The Linux Kernel net/llc/af_llc.c Local Information Disclosure vulnerability was reported in http://www.securityfocus.com/bid/36126/ Bugtraq ID 36126. The Linux Kernel binfmt_flat.c NULL Pointer Dereference Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/36037/ Bugtraq ID 36037. The Linux Kernel sock_sendpage() NULL Pointer Dereference vulnerability was reported in http://www.securityfocus.com/bid/36038/ Bugtraq ID 36038. The Linux Kernel posix-timers.c NULL Pointer Dereference Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/35976/ Bugtraq ID 35976. The Linux Kernel fs/proc/base.c Local Information Disclosure vulnerability was reported in http://www.securityfocus.com/bid/36019/ Bugtraq ID 36019. The Linux Kernel clear_child_tid() Local Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/35930/ Bugtraq ID 35930. The Linux Kernel eCryptfs parse_tag_11() Remote Stack Buffer Overflow vulnerability was reported in http://www.securityfocus.com/bid/35851/ Bugtraq ID 35851. The Linux Kernel SGI GRU Driver Off By One vulnerability was reported in http://www.securityfocus.com/bid/35753/ Bugtraq ID 35753. The Linux Kernel tun_chr_pool() NULL Pointer Dereference vulnerability was reported in http://www.securityfocus.com/bid/35724/ Bugtraq ID 35724. The Linux Kernel PER_CLEAR_ON_SETID Incomplete Personality List Access Validation Weakness was reported in http://www.securityfocus.com/bid/35647/ Bugtraq ID 35647. The Linux Kernel kvm_arch_vcpu_ioctl_set_sregs() Local Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/35529/ Bugtraq ID 35529. The Linux Kernel RTL8169 NIC Remote Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/35281/ Bugtraq ID 35281. The Linux Kernel splice(2) Double Lock Local Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/35143/ Bugtraq ID 35143. The Linux Kernel e1000/e1000_main.c Remote Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/35185/ Bugtraq ID 35185. The Linux Kernel CIFS String Conversion multiple vulnerabilities were reported in http://www.securityfocus.com/bid/34989/ Bugtraq ID 34989. The Linux Kernel NFS MAY_EXEC Security Bypass vulnerability was reported in http://www.securityfocus.com/bid/34934/ Bugtraq ID 34934. The Linux Kernel ptrace_attach() Local Privilege Escalation vulnerability was reported in http://www.securityfocus.com/bid/34799/ Bugtraq ID 34799. The Linux Kernel CAP_FS_SET Incomplete Capabilities List Access Validation vulnerability was reported in http://www.securityfocus.com/bid/34695/ Bugtraq ID 34695. The Linux Kernel drivers/char/agp/generic.c Local Information Disclosure vulnerability was reported in http://www.securityfocus.com/bid/34673/ Bugtraq ID 34673. The Linux Kernel inet6_hashtables.c NULL Pointer Dereference Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/34602/ Bugtraq ID 34602. The Linux Kernel kill_something_info() Local Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/34558/ Bugtraq ID 34558. The Linux Kernel CIFS decode_unicode_ssetup Remote Buffer Overflow vulnerability was reported in http://www.securityfocus.com/bid/34612/ Bugtraq ID 34612. The Linux Kernel ecryptfs_write_metadata_to_contents() Information Disclosure vulnerability was reported in http://www.securityfocus.com/bid/34216/ Bugtraq ID 34216. The Linux Kernel nfsd CAP_MKNOD Security Bypass vulnerability was reported in http://www.securityfocus.com/bid/34205/ Bugtraq ID 34205. The Linux Kernel /ipc/shm.c Local Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/34020/ Bugtraq ID 34020. The Linux Kernel seccomp System Call Security Bypass vulnerability was reported in http://www.securityfocus.com/bid/33948/ Bugtraq ID 33948. The Linux Kernel Audit System audit_syscall_entry() System Call Security Bypass vulnerability was reported in http://www.securityfocus.com/bid/33951/ Bugtraq ID 33951. The Linux Kernel Cloned Process CLONE_PARENT Local Origin Validation Weakness vulnerability was reported in http://www.securityfocus.com/bid/33906/ Bugtraq ID 33906. The Linux Kernel sock.c SO_BSDCOMPAT Option Information Disclosure vulnerability was reported in http://www.securityfocus.com/bid/33846/ Bugtraq ID 33846. The Linux Kernel Kprobe Memory Corruption vulnerability was reported in http://www.securityfocus.com/bid/33758/ Bugtraq ID 33758. The Linux Kernel Console Selection Local Privilege Escalation vulnerability was reported in http://www.securityfocus.com/bid/33672/ Bugtraq ID 33672. The Linux Kernel inotify_read() Local Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/33624/ Bugtraq ID 33624. The Linux Kernel make_indexed_dir() Local Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/33618/ Bugtraq ID 33618. The Linux Kernel inotify Local Privilege Escalation vulnerability was reported in http://www.securityfocus.com/bid/33503/ Bugtraq ID 33503. The Linux Kernel dell_rbu Local Denial of Service vulnerabilities were reported in http://www.securityfocus.com/bid/33428/ Bugtraq ID 33428. The Linux Kernel readlink Local Privilege Escalation vulnerability was reported in http://www.securityfocus.com/bid/33412/ Bugtraq ID 33412. The Linux Kernel keyctl_join_session_keyring() Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/33339/ Bugtraq ID 33339. The Linux Kernel FWD-TSN Chunk Remote Buffer Overflow vulnerability was reported in http://www.securityfocus.com/bid/33113/ Bugtraq ID 33113. The Linux Kernel ib700wdt.c Buffer Underflow vulnerability was reported in http://www.securityfocus.com/bid/33003/ Bugtraq ID 33003. The qdisc_run Minimum Time Delay Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/32985/ Bugtraq ID 32985. The Linux Kernel ac_ioctl() Local Buffer Overflow was reported in http://www.securityfocus.com/bid/32759/ Bugtraq ID 32759. The ATM vcc Table Corruption Denial of Service and sendmsg() Local Denial of Service vulnerabilities were reported in http://secunia.com/advisories/32913 Secunia Advisory SA32913. The Linux Kernel lbs_process_bss() Remote Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/32484/ Bugtraq ID 32484. The Linux Kernel drivers/media/video/tvaudio.c Memory Corruption vulnerability was reported in http://www.securityfocus.com/bid/32327/ Bugtraq ID 32327. The Linux Kernel scm_destroy() Local Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/32154 Bugtraq ID 32154. The Linux Kernel ndiswrapper Remote Buffer Overflow was reported in http://secunia.com/advisories/32509/ Secunia Advisory SA32509. The Linux Kernel hfsplus_block_allocate() Local Denial of Service was reported in http://secunia.com/advisories/32510/ Secunia Advisory SA32510. The Linux Kernel tvaudio.c Operations NULL Pointer Dereference vulnerability was reported in http://www.securityfocus.com/bid/32094 Bugtraq ID 32094. The Linux Kernel hfsplus_find_cat() Local Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/32093 Bugtraq ID 32093. The Linux Kernel hfs_cat_find_brec() Buffer Overflow was reported in http://secunia.com/advisories/32719/ Secunia Advisory SA32719. The Linux Kernel do_splice_from() Local Security Bypass vulnerability was reported in http://www.securityfocus.com/bid/31903 Bugtraq ID 31903. The Linux Kernel proc_do_xprt() Local Buffer Overflow vulnerability was reported in http://www.securityfocus.com/bid/31937 Bugtraq ID 31937. The Linux kernel SCTP Protocol Violation Remote Denial of Service vulnerability was reported in http://www.securityfocus.com/bid/31848 Bugtraq ID 31848. The Linux Kernel nfsd Subsystem Buffer Overflow was reported in http://www.securityfocus.com/bid/31133 Bugtraq ID 31133. The Linux Kernel sctp_setsockopt_auth_key() Remote Denial of Service was reported in http://www.securityfocus.com/bid/30847 Bugtraq ID 30847. The Linux Kernel DCCP Protocol Handler dccp_setsockopt_change Integer Overflow was reported in http://www.securityfocus.com/bid/30704 Bugtraq ID 30704. The Linux Kernel multiple vulnerabilities fixed in 2.6.26.2 were reported in http://secunia.com/advisories/31366 Secunia Advisory SA31366. The Linux Kernel uvc_driver.c Format Descriptor Parsing Buffer Overflow was reported in http://www.securityfocus.com/bid/30514 Bugtraq ID 30514.

Solution:

Install an updated kernel package from your Linux vendor, or http://www.kernel.org upgrade Linux kernel to a version higher than 2.6.32.64 for 2.6.32, 3.16.1 for 3.16.x, 3.15.10 for 3.15.x, 3.14.17 for 3.14.x, 3.12.26 for 3.12.x, 3.10.53 for 3.10.x, 3.4.103 for 3.4.x, 3.2.62 for 3.2.x, 2.6.32.63 for 2.6.32, 2.6.34.15 for 2.6.34, 3.13.10 for 3.13.x, or higher when available. Note: 3.0.x and 3.11.x reached its EOL, consider upgrading to the next major version.

References:
CVSS Information:
Low Attack Complexity, Complete Confidentiality Impact, Complete Integrity Impact, Complete Availability Impact
Credit:
Saint Coorporation : 2010-04-12
New Search
Keywords
Risk Factor
Start Date
End Date
Browse