Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

ralf spenneberg vulnerabilities and exploits

(subscribe to this query)
7.1
CVSSv3
CVE-2017-18270
In the Linux kernel prior to 4.13.5, a local user could create keyrings for other users via keyctl commands, setting unwanted defaults or causing a denial of service.
Linux Linux Kernel
5.5
CVSSv3
CVE-2016-2085
The evm_verify_hmac function in security/integrity/evm/evm_main.c in the Linux kernel prior to 4.5 does not properly copy data, which makes it easier for local users to forge MAC values via a timing side-channel attack.
Linux Linux Kernel
4.6
CVSSv3
CVE-2016-3689
The ims_pcu_parse_cdc_data function in drivers/input/misc/ims-pcu.c in the Linux kernel prior to 4.5.1 allows physically proximate malicious users to cause a denial of service (system crash) via a USB device without both a master and a slave interface.
Novell Suse Linux Enterprise Module For Public Cloud 12.0Novell Suse Linux Enterprise Server 12.0Novell Suse Linux Enterprise Live Patching 12.0Novell Suse Linux Enterprise Desktop 12.0Novell Suse Linux Enterprise Real Time Extension 12.0Novell Suse Linux Enterprise Workstation Extension 12.0Novell Suse Linux Enterprise Software Development Kit 12.0Linux Linux KernelCanonical Ubuntu Linux 14.04
4.6
CVSSv3
CVE-2016-2188
The iowarrior_probe function in drivers/usb/misc/iowarrior.c in the Linux kernel prior to 4.5.1 allows physically proximate malicious users to cause a denial of service (NULL pointer dereference and system crash) via a crafted endpoints value in a USB device descriptor.
Novell Suse Linux Enterprise Module For Public Cloud 12.0Novell Suse Linux Enterprise Server 11.0Novell Suse Linux Enterprise Server 12.0Novell Suse Linux Enterprise Live Patching 12.0Novell Suse Linux Enterprise Real Time Extension 11.0Novell Suse Linux Enterprise Desktop 12.0Novell Suse Linux Enterprise Real Time Extension 12.0Novell Suse Linux Enterprise Workstation Extension 12.0Novell Suse Linux Enterprise Debuginfo 11.0Novell Suse Linux Enterprise Software Development Kit 11.0Novell Suse Linux Enterprise Software Development Kit 12.0Linux Linux KernelCanonical Ubuntu Linux 12.04
5.5
CVSSv3
CVE-2016-2383
The adjust_branches function in kernel/bpf/verifier.c in the Linux kernel prior to 4.5 does not consider the delta in the backward-jump case, which allows local users to obtain sensitive information from kernel memory by creating a packet filter and then loading crafted BPF instr...
Linux Linux KernelLinux Linux Kernel 4.5.0Canonical Ubuntu Linux 14.04Canonical Ubuntu Linux 15.10Opensuse Leap 42.1
5.5
CVSSv3
CVE-2016-2550
The Linux kernel prior to 4.5 allows local users to bypass file-descriptor limits and cause a denial of service (memory consumption) by leveraging incorrect tracking of descriptor ownership and sending each descriptor over a UNIX socket before closing it. NOTE: this vulnerability...
Linux Linux Kernel
5.5
CVSSv3
CVE-2018-10124
The kill_something_info function in kernel/signal.c in the Linux kernel prior to 4.13, when an unspecified architecture and compiler is used, might allow local users to cause a denial of service via an INT_MIN argument.
Linux Linux KernelDebian Debian Linux 8.0Canonical Ubuntu Linux 14.04Canonical Ubuntu Linux 16.04
5.5
CVSSv3
CVE-2018-10087
The kernel_wait4 function in kernel/exit.c in the Linux kernel prior to 4.13, when an unspecified architecture and compiler is used, might allow local users to cause a denial of service by triggering an attempted use of the -INT_MIN value.
Linux Linux KernelDebian Debian Linux 8.0Canonical Ubuntu Linux 14.04Canonical Ubuntu Linux 16.04
NA
CVE-2015-7833
The usbvision driver in the Linux kernel package 3.10.0-123.20.1.el7 up to and including 3.10.0-229.14.1.el7 in Red Hat Enterprise Linux (RHEL) 7.1 allows physically proximate malicious users to cause a denial of service (panic) via a nonzero bInterfaceNumber value in a USB devic...
Novell Suse Linux Enterprise Real Time Extension 12Redhat Enterprise Linux 7.1
7.8
CVSSv3
CVE-2017-18255
The perf_cpu_time_max_percent_handler function in kernel/events/core.c in the Linux kernel prior to 4.11 allows local users to cause a denial of service (integer overflow) or possibly have unspecified other impact via a large value, as demonstrated by an incorrect sample-rate cal...
Linux Linux Kernel
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22460CVE-2024-4646CVE-2024-29212IMAPCVE-2023-36672CVE-2024-34547command injectionCVE-2024-4651stored XSS
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook