Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

roland mcgrath vulnerabilities and exploits

(subscribe to this query)
NA
CVE-2008-5701
Array index error in arch/mips/kernel/scall64-o32.S in the Linux kernel prior to 2.6.28-rc8 on 64-bit MIPS platforms allows local users to cause a denial of service (system crash) via an o32 syscall with a small syscall number, which leads to an attempted read operation outside t...
Linux Linux Kernel 2.6.28Linux Linux KernelDebian Debian Linux 4.0
NA
CVE-2009-0028
The clone system call in the Linux kernel 2.6.28 and previous versions allows local users to send arbitrary signals to a parent process from an unprivileged child process by launching an additional child process with the CLONE_PARENT flag, and then letting this new process exit.
Linux Linux Kernel 2.6Linux Linux Kernel 2.4.36.6Linux Linux Kernel 2.6.11Linux Linux Kernel 2.6.11.1Linux Linux Kernel 2.6.12.2Linux Linux Kernel 2.6.11.4Linux Linux Kernel 2.6.11.5Linux Linux Kernel 2.6.12.5Linux Linux Kernel 2.6.12.4Linux Linux Kernel 2.6.13.3Linux Linux Kernel 2.6.13.4Linux Linux Kernel 2.6.14.4Linux Linux Kernel 2.6.14.1Linux Linux Kernel 2.6.16Linux Linux Kernel 2.6.15.7Linux Linux Kernel 2.6.16.19Linux Linux Kernel 2.6.16.14Linux Linux Kernel 2.6.16.26Linux Linux Kernel 2.6.16.25Linux Linux Kernel 2.6.16.33Linux Linux Kernel 2.6.16.34Linux Linux Kernel 2.6.16.38
NA
CVE-2008-4307
Race condition in the do_setlk function in fs/nfs/file.c in the Linux kernel prior to 2.6.26 allows local users to cause a denial of service (crash) via vectors resulting in an interrupted RPC call that leads to a stray FL_POSIX lock, related to improper handling of a race betwee...
Linux Linux Kernel 2.6.25.4Linux Linux Kernel 2.6.25.11Linux Linux Kernel 2.6.18Linux Linux Kernel 2.6.25.9Linux Linux Kernel 2.6.22.15Linux Linux Kernel 2.6.24.7Linux Linux Kernel 2.6.23.13Linux Linux Kernel 2.6.24.2Linux Linux Kernel 2.4.36.6Linux Linux Kernel 2.6.22.21Linux Linux Kernel 2.6.25.12Linux Linux Kernel 2.6.25.5Linux Linux Kernel 2.6.23.8Linux Linux Kernel 2.6.25Linux Linux Kernel 2.6.22.12Linux Linux Kernel 2.6.25.8Linux Linux Kernel 2.6.21.6Linux Linux Kernel 2.4.36.2Linux Linux Kernel 2.6.22.1Linux Linux Kernel 2.6.23.16Linux Linux Kernel 2.6.24.1Linux Linux Kernel 2.6.25.6
NA
CVE-2008-5395
The parisc_show_stack function in arch/parisc/kernel/traps.c in the Linux kernel prior to 2.6.28-rc7 on PA-RISC allows local users to cause a denial of service (system crash) via vectors associated with an attempt to unwind a stack that contains userspace addresses.
Linux Linux KernelLinux Linux Kernel 2.2.27Linux Linux Kernel 2.4.36Linux Linux Kernel 2.4.36.1Linux Linux Kernel 2.4.36.2Linux Linux Kernel 2.4.36.3Linux Linux Kernel 2.4.36.4Linux Linux Kernel 2.4.36.5Linux Linux Kernel 2.4.36.6Linux Linux Kernel 2.6Linux Linux Kernel 2.6.18Linux Linux Kernel 2.6.19.4Linux Linux Kernel 2.6.19.5Linux Linux Kernel 2.6.19.6Linux Linux Kernel 2.6.19.7Linux Linux Kernel 2.6.20.16Linux Linux Kernel 2.6.20.17Linux Linux Kernel 2.6.20.18Linux Linux Kernel 2.6.20.19Linux Linux Kernel 2.6.20.20Linux Linux Kernel 2.6.20.21Linux Linux Kernel 2.6.21.5
NA
CVE-2008-5700
libata in the Linux kernel prior to 2.6.27.9 does not set minimum timeouts for SG_IO requests, which allows local users to cause a denial of service (Programmed I/O mode on drives) via multiple simultaneous invocations of an unspecified test program.
Linux Linux Kernel 2.6.25.4Linux Linux Kernel 2.6.25.11Linux Linux Kernel 2.6.18Linux Linux Kernel 2.6.25.9Linux Linux Kernel 2.6.22.15Linux Linux Kernel 2.6.27.3Linux Linux Kernel 2.6.27.1Linux Linux Kernel 2.6.24.7Linux Linux Kernel 2.6.23.13Linux Linux Kernel 2.6.24.2Linux Linux Kernel 2.4.36.6Linux Linux Kernel 2.6.26.5Linux Linux Kernel 2.6.22.21Linux Linux Kernel 2.6.25.12Linux Linux Kernel 2.6.25.5Linux Linux Kernel 2.6.23.8Linux Linux Kernel 2.6.25Linux Linux Kernel 2.6.22.12Linux Linux Kernel 2.6.25.8Linux Linux Kernel 2.6.21.6Linux Linux Kernel 2.6.26.6Linux Linux Kernel 2.4.36.2
NA
CVE-2008-5702
Buffer underflow in the ibwdt_ioctl function in drivers/watchdog/ib700wdt.c in the Linux kernel prior to 2.6.28-rc1 might allow local users to have an unknown impact via a certain /dev/watchdog WDIOC_SETTIMEOUT IOCTL call.
Linux Linux Kernel 2.6.25.4Linux Linux Kernel 2.6.25.11Linux Linux Kernel 2.6.18Linux Linux Kernel 2.6.25.9Linux Linux Kernel 2.6.22.15Linux Linux Kernel 2.6.24.7Linux Linux Kernel 2.6.23.13Linux Linux Kernel 2.6.24.2Linux Linux Kernel 2.4.36.6Linux Linux Kernel 2.6.26.5Linux Linux KernelLinux Linux Kernel 2.6.22.21Linux Linux Kernel 2.6.25.12Linux Linux Kernel 2.6.25.5Linux Linux Kernel 2.6.23.8Linux Linux Kernel 2.6.25Linux Linux Kernel 2.6.22.12Linux Linux Kernel 2.6.25.8Linux Linux Kernel 2.6.21.6Linux Linux Kernel 2.4.36.2Linux Linux Kernel 2.6.22.1Linux Linux Kernel 2.6.23.16
NA
CVE-2009-0834
The audit_syscall_entry function in the Linux kernel 2.6.28.7 and previous versions on the x86_64 platform does not properly handle (1) a 32-bit process making a 64-bit syscall or (2) a 64-bit process making a 32-bit syscall, which allows local users to bypass certain syscall aud...
Linux Linux KernelDebian Debian Linux 5.0Debian Debian Linux 4.0Canonical Ubuntu Linux 7.10Canonical Ubuntu Linux 8.10Canonical Ubuntu Linux 8.04Redhat Enterprise Linux Server 5.0Redhat Enterprise Linux Workstation 5.0Redhat Enterprise Linux Desktop 4.0Redhat Enterprise Linux Desktop 5.0Redhat Enterprise Linux Eus 4.7Redhat Enterprise Linux Server 4.0Redhat Enterprise Linux Workstation 4.0Redhat Enterprise Linux Server Aus 5.3Redhat Enterprise Linux Eus 5.3Opensuse Opensuse 11.0Opensuse Opensuse 10.3Suse Linux Enterprise Server 10Suse Linux Enterprise Desktop 10Suse Linux Enterprise Software Development Kit 10
NA
CVE-2009-0859
The shm_get_stat function in ipc/shm.c in the shm subsystem in the Linux kernel prior to 2.6.28.5, when CONFIG_SHMEM is disabled, misinterprets the data type of an inode, which allows local users to cause a denial of service (system hang) via an SHM_INFO shmctl call, as demonstra...
Linux Linux Kernel
NA
CVE-2009-1046
The console selection feature in the Linux kernel 2.6.28 prior to 2.6.28.4, 2.6.25, and possibly earlier versions, when the UTF-8 console is used, allows physically proximate malicious users to cause a denial of service (memory corruption) by selecting a small number of 3-byte UT...
Linux Linux Kernel 2.6.28Linux Linux Kernel 2.6.28.1Linux Linux Kernel 2.6.28.2Linux Linux Kernel 2.6.28.3Linux Linux Kernel 2.6.25
NA
CVE-2009-1192
The (1) agp_generic_alloc_page and (2) agp_generic_alloc_pages functions in drivers/char/agp/generic.c in the agp subsystem in the Linux kernel prior to 2.6.30-rc3 do not zero out pages that may later be available to a user-space process, which allows local users to obtain sensit...
Linux Linux Kernel 2.6.27.12Linux Linux Kernel 2.6.20.6Linux Linux Kernel 2.6.28Linux Linux Kernel 2.6.25.4Linux Linux Kernel 2.6.25.11Linux Linux Kernel 2.6.20.9Linux Linux Kernel 2.6.26Linux Linux Kernel 2.6.18Linux Linux Kernel 2.6.29Linux Linux Kernel 2.6.11Linux Linux Kernel 2.6.25.9Linux Linux Kernel 2.6.23.4Linux Linux Kernel 2.6.22.15Linux Linux Kernel 2.6.16.16Linux Linux Kernel 2.6.18.7Linux Linux Kernel 2.6.17.12Linux Linux Kernel 2.6.16.39Linux Linux Kernel 2.6.27.3Linux Linux Kernel 2.6.21Linux Linux Kernel 2.6.16.9Linux Linux Kernel 2.6.17.9Linux Linux Kernel 2.6.11.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073CVE-2024-5496CVE-2024-5495XPath injectionbypassCVE-2024-30043CVE-2024-24919denial of serviceCVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook