Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

ncpfs ncpfs vulnerabilities and exploits

(subscribe to this query)
4.3
CVSSv2
CVE-2018-1108
kernel drivers before version 4.17-rc1 are vulnerable to a weakness in the Linux kernel's implementation of random seed data. Programs, early in the boot sequence, could use the data allocated for the seed before it was sufficiently generated.
Linux Linux KernelCanonical Ubuntu Linux 16.04Canonical Ubuntu Linux 18.04Debian Debian Linux 9.0
4.9
CVSSv2
CVE-2018-10323
The xfs_bmap_extents_to_btree function in fs/xfs/libxfs/xfs_bmap.c in the Linux kernel up to and including 4.16.3 allows local users to cause a denial of service (xfs_bmapi_write NULL pointer dereference) via a crafted xfs image.
Linux Linux KernelCanonical Ubuntu Linux 14.04Canonical Ubuntu Linux 16.04Canonical Ubuntu Linux 18.04Debian Debian Linux 9.0
7.2
CVSSv2
CVE-2018-8781
The udl_fb_mmap function in drivers/gpu/drm/udl/udl_fb.c at the Linux kernel version 3.4 and up to and including 4.15 has an integer-overflow vulnerability allowing local users with access to the udldrmfb driver to obtain full read and write permissions on kernel physical pages, ...
Linux Linux KernelCanonical Ubuntu Linux 16.04Canonical Ubuntu Linux 14.04Canonical Ubuntu Linux 12.04Canonical Ubuntu Linux 17.10Debian Debian Linux 8.0Debian Debian Linux 7.0Debian Debian Linux 9.0Redhat Enterprise Linux Desktop 7.0Redhat Enterprise Linux Workstation 7.0Redhat Enterprise Linux Server 7.0
6.9
CVSSv2
CVE-2015-9016
In blk_mq_tag_to_rq in blk-mq.c in the upstream kernel, there is a possible use after free due to a race condition when a request has been previously freed by blk_mq_complete_request. This could lead to local escalation of privilege. Product: Android. Versions: Android kernel. An...
Google Android -
4.9
CVSSv2
CVE-2017-18257
The __get_data_block function in fs/f2fs/data.c in the Linux kernel prior to 4.11 allows local users to cause a denial of service (integer overflow and loop) via crafted use of the open and fallocate system calls with an FS_IOC_FIEMAP ioctl.
Linux Linux KernelDebian Debian Linux 9.0
7.1
CVSSv2
CVE-2018-1093
The ext4_valid_block_bitmap function in fs/ext4/balloc.c in the Linux kernel up to and including 4.15.15 allows malicious users to cause a denial of service (out-of-bounds read and system crash) via a crafted ext4 image because balloc.c and ialloc.c do not validate bitmap block n...
Linux Linux Kernel
4.9
CVSSv2
CVE-2017-18241
fs/f2fs/segment.c in the Linux kernel prior to 4.13 allows local users to cause a denial of service (NULL pointer dereference and panic) by using a noflush_merge option that triggers a NULL value for a flush_cmd_control data structure.
Linux Linux KernelDebian Debian Linux 9.0Debian Debian Linux 8.0Canonical Ubuntu Linux 14.04Canonical Ubuntu Linux 16.04
7.2
CVSSv2
CVE-2018-8822
Incorrect buffer length handling in the ncp_read_kernel function in fs/ncpfs/ncplib_kernel.c in the Linux kernel up to and including 4.15.11, and in drivers/staging/ncpfs/ncplib_kernel.c in the Linux kernel 4.16-rc up to and including 4.16-rc6, could be exploited by malicious NCP...
Linux Linux Kernel 4.16Linux Linux KernelCanonical Ubuntu Linux 16.04Canonical Ubuntu Linux 14.04Canonical Ubuntu Linux 12.04Canonical Ubuntu Linux 17.10Debian Debian Linux 8.0Debian Debian Linux 7.0Debian Debian Linux 9.0
4.9
CVSSv2
CVE-2018-8087
Memory leak in the hwsim_new_radio_nl function in drivers/net/wireless/mac80211_hwsim.c in the Linux kernel up to and including 4.15.9 allows local users to cause a denial of service (memory consumption) by triggering an out-of-array error case.
Linux Linux KernelDebian Debian Linux 9.0Canonical Ubuntu Linux 14.04Canonical Ubuntu Linux 16.04Canonical Ubuntu Linux 17.10Canonical Ubuntu Linux 18.04
1.9
CVSSv2
CVE-2017-18224
In the Linux kernel prior to 4.15, fs/ocfs2/aops.c omits use of a semaphore and consequently has a race condition for access to the extent tree during read operations in DIRECT mode, which allows local users to cause a denial of service (BUG) by modifying a certain e_cpos field.
Linux Linux Kernel
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310CVE-2024-21683CVE-2024-22187chromedeserializationXPath injectionCVE-2024-27842denial of serviceCVE-2024-24851googleCVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook