Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kernel selinux vulnerabilities and exploits
(subscribe to this query)
3.6
CVSSv2
CVE-2020-10751
A flaw was found in the Linux kernels SELinux LSM hook implementation before version 5.7, where it incorrectly assumed that an skb would only contain a single netlink message. The hook would incorrectly only validate the first netlink message in the skb and allow or deny the rest...
Kernel Selinux
Redhat Enterprise Linux Server 7.0
Redhat Enterprise Linux Server 8.0
5.8
CVSSv2
CVE-2011-3151
The Ubuntu SELinux initscript before version 1:0.10 used touch to create a lockfile in a world-writable directory. If the OS kernel does not have symlink protections then an attacker can cause a zero byte file to be allocated on any writable filesystem.
Canonical Selinux
6.9
CVSSv2
CVE-2009-1897
The tun_chr_poll function in drivers/net/tun.c in the tun subsystem in the Linux kernel 2.6.30 and 2.6.30.1, when the -fno-delete-null-pointer-checks gcc option is omitted, allows local users to gain privileges via vectors involving a NULL pointer dereference and an mmap of /dev/...
Linux Linux Kernel 2.6.30
Linux Linux Kernel 2.6.30.1
2 EDB exploits
7.1
CVSSv2
CVE-2009-1360
The __inet6_check_established function in net/ipv6/inet6_hashtables.c in the Linux kernel prior to 2.6.29, when Network Namespace Support (aka NET_NS) is enabled, allows remote malicious users to cause a denial of service (NULL pointer dereference and system crash) via vectors in...
Linux Linux Kernel 2.6.27.12
Linux Linux Kernel 2.6.20.6
Linux Linux Kernel 2.6.28
Linux Linux Kernel 2.6.25.4
Linux Linux Kernel 2.6.25.11
Linux Linux Kernel 2.6.20.9
Linux Linux Kernel 2.6.26
Linux Linux Kernel 2.6.18
Linux Linux Kernel 2.6.11
Linux Linux Kernel 2.6.25.9
Linux Linux Kernel 2.6.23.4
Linux Linux Kernel 2.6.22.15
Linux Linux Kernel 2.6.16.16
Linux Linux Kernel 2.6.18.7
Linux Linux Kernel 2.6.17.12
Linux Linux Kernel 2.6.16.39
Linux Linux Kernel 2.6.27.3
Linux Linux Kernel 2.6.21
Linux Linux Kernel 2.6.16.9
Linux Linux Kernel
Linux Linux Kernel 2.6.17.9
Linux Linux Kernel 2.6.11.2
4.9
CVSSv2
CVE-2009-1336
fs/nfs/client.c in the Linux kernel prior to 2.6.23 does not properly initialize a certain structure member that stores the maximum NFS filename length, which allows local users to cause a denial of service (OOPS) via a long filename, related to the encode_lookup function.
Linux Linux Kernel 2.6.20.6
Linux Linux Kernel 2.6.20.9
Linux Linux Kernel 2.6.18
Linux Linux Kernel 2.6.11
Linux Linux Kernel 2.6.22.15
Linux Linux Kernel 2.6.16.16
Linux Linux Kernel 2.6.18.7
Linux Linux Kernel 2.6.17.12
Linux Linux Kernel 2.6.16.39
Linux Linux Kernel 2.6.21
Linux Linux Kernel 2.6.16.9
Linux Linux Kernel 2.6.17.9
Linux Linux Kernel 2.6.11.2
Linux Linux Kernel 2.6.15.3
Linux Linux Kernel 2.6.11.10
Linux Linux Kernel 2.6.1
Linux Linux Kernel 2.6.16.43
Linux Linux Kernel 2.6.16.6
Linux Linux Kernel 2.6.16.8
Linux Linux Kernel 2.6.20.13
Linux Linux Kernel 2.6.22.4
Linux Linux Kernel 2.6.14.7
7.8
CVSSv2
CVE-2005-4886
The selinux_parse_skb_ipv6 function in security/selinux/hooks.c in the Linux kernel prior to 2.6.12-rc4 allows remote malicious users to cause a denial of service (OOPS) via vectors associated with an incorrect call to the ipv6_skip_exthdr function.
Linux Linux Kernel 2.6.4
Linux Linux Kernel 2.6.11
Linux Linux Kernel 2.6.12
Linux Linux Kernel 2.6.11.2
Linux Linux Kernel 2.6.5
Linux Linux Kernel 2.6.11.10
Linux Linux Kernel 2.6.10
Linux Linux Kernel 2.6.1
Linux Linux Kernel 2.6.7
Linux Linux Kernel 2.6.3
Linux Linux Kernel 2.6.11.8
Linux Linux Kernel 2.6.11.6
Linux Linux Kernel 2.6.11.11
Linux Linux Kernel 2.6.0
Linux Linux Kernel 2.6.9
Linux Linux Kernel 2.6.11.5
Linux Linux Kernel
Linux Linux Kernel 2.6.2
Linux Linux Kernel 2.6.6
Linux Linux Kernel 2.6.8
Linux Linux Kernel 2.6.11.9
Linux Linux Kernel 2.6.11.3
4.4
CVSSv2
CVE-2009-1184
The selinux_ip_postroute_iptables_compat function in security/selinux/hooks.c in the SELinux subsystem in the Linux kernel prior to 2.6.27.22, and 2.6.28.x prior to 2.6.28.10, when compat_net is enabled, omits calls to avc_has_perm for the (1) node and (2) port, which allows loca...
Linux Linux Kernel 2.6.27.12
Linux Linux Kernel 2.6.20.6
Linux Linux Kernel 2.6.25.4
Linux Linux Kernel 2.6.25.11
Linux Linux Kernel 2.6.28
Linux Linux Kernel 2.6.20.9
Linux Linux Kernel 2.6.26
Linux Linux Kernel 2.6.18
Linux Linux Kernel 2.6.11
Linux Linux Kernel 2.6.25.9
Linux Linux Kernel 2.6.23.4
Linux Linux Kernel 2.6.22.15
Linux Linux Kernel 2.6.16.16
Linux Linux Kernel 2.6.18.7
Linux Linux Kernel 2.6.17.12
Linux Linux Kernel 2.6.16.39
Linux Linux Kernel 2.6.27.3
Linux Linux Kernel 2.6.21
Linux Linux Kernel 2.6.16.9
Linux Linux Kernel 2.6.17.9
Linux Linux Kernel 2.6.11.2
Linux Linux Kernel 2.6.27.1
1.2
CVSSv2
CVE-2004-1069
Race condition in SELinux 2.6.x up to and including 2.6.9 allows local users to cause a denial of service (kernel crash) via SOCK_SEQPACKET unix domain sockets, which are not properly handled in the sock_dgram_sendmsg function.
Linux Linux Kernel 2.6.0
Linux Linux Kernel 2.6.1
Linux Linux Kernel 2.6.6
Linux Linux Kernel 2.6.7
Linux Linux Kernel 2.6 Test9 Cvs
Ubuntu Ubuntu Linux 4.1
Linux Linux Kernel 2.6.5
Linux Linux Kernel 2.6.8
Linux Linux Kernel 2.6.9
Linux Linux Kernel 2.6.3
Linux Linux Kernel 2.6.4
Linux Linux Kernel 2.6.10
Linux Linux Kernel 2.6.2
4.9
CVSSv2
CVE-2006-1055
The fill_write_buffer function in sysfs/file.c in Linux kernel 2.6.12 up to versions prior to 2.6.17-rc1 does not zero terminate a buffer when a length of PAGE_SIZE or more is requested, which might allow local users to cause a denial of service (crash) by causing an out-of-bound...
Linux Linux Kernel 2.6.12
Linux Linux Kernel 2.6.14
Linux Linux Kernel 2.6.15.3
Linux Linux Kernel 2.6.16
Linux Linux Kernel 2.6.13
Linux Linux Kernel 2.6.15
Linux Linux Kernel 2.6.13.3
Linux Linux Kernel 2.6.14.4
Linux Linux Kernel 2.6.14.3
Linux Linux Kernel 2.6.15.1
Linux Linux Kernel 2.6.14.5
Linux Linux Kernel 2.6.13.2
Linux Linux Kernel 2.6.17
Linux Linux Kernel 2.6.14.1
Linux Linux Kernel 2.6.12.5
Linux Linux Kernel 2.6.12.1
Linux Linux Kernel 2.6.13.4
Linux Linux Kernel 2.6.12.2
Linux Linux Kernel 2.6.15.2
Linux Linux Kernel 2.6.12.4
Linux Linux Kernel 2.6.12.3
Linux Linux Kernel 2.6.15.4
4.9
CVSSv2
CVE-2006-6056
Linux kernel 2.6.x up to 2.6.18 and possibly other versions, when SELinux hooks are enabled, allows local users to cause a denial of service (crash) via a malformed file stream that triggers a NULL pointer dereference in the superblock_doinit function, as demonstrated using an HF...
Linux Linux Kernel 2.6.11.11
Linux Linux Kernel 2.6.11.12
Linux Linux Kernel 2.6.11.8
Linux Linux Kernel 2.6.11.9
Linux Linux Kernel 2.6.13
Linux Linux Kernel 2.6.13.1
Linux Linux Kernel 2.6.14.2
Linux Linux Kernel 2.6.14.3
Linux Linux Kernel 2.6.15.2
Linux Linux Kernel 2.6.15.3
Linux Linux Kernel 2.6.16.11
Linux Linux Kernel 2.6.16.12
Linux Linux Kernel 2.6.16.19
Linux Linux Kernel 2.6.16.2
Linux Linux Kernel 2.6.16.26
Linux Linux Kernel 2.6.16.27
Linux Linux Kernel 2.6.16.4
Linux Linux Kernel 2.6.16.5
Linux Linux Kernel 2.6.17.10
Linux Linux Kernel 2.6.17.11
Linux Linux Kernel 2.6.17.5
Linux Linux Kernel 2.6.17.6
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48700
CVE-2022-48689
CVE-2024-27956
CVE-2023-6363
SQL
NULL pointer dereference
CVE-2023-41830
CVE-2015-2051
arbitrary
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »