Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
linux linux kernel 4.0 vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2010-4655
net/core/ethtool.c in the Linux kernel prior to 2.6.36 does not initialize certain data structures, which allows local users to obtain potentially sensitive information from kernel heap memory by leveraging the CAP_NET_ADMIN capability for an ethtool ioctl call.
Linux Linux Kernel
Vmware Esx 4.1
Vmware Esx 4.0
Canonical Ubuntu Linux 8.04
NA
CVE-2004-1057
Multiple drivers in Linux kernel 2.4.19 and previous versions do not properly mark memory with the VM_IO flag, which causes incorrect reference counts and may lead to a denial of service (kernel panic) when accessing freed kernel pages.
Linux Linux Kernel 2.0.14
Linux Linux Kernel 2.0.15
Linux Linux Kernel 2.0.22
Linux Linux Kernel 2.0.23
Linux Linux Kernel 2.0.3
Linux Linux Kernel 2.0.30
Linux Linux Kernel 2.0.37
Linux Linux Kernel 2.0.38
Linux Linux Kernel 2.0.9.9
Linux Linux Kernel 2.1
Linux Linux Kernel 2.2.13
Linux Linux Kernel 2.2.14
Linux Linux Kernel 2.2.18
Linux Linux Kernel 2.2.19
Linux Linux Kernel 2.2.27
Linux Linux Kernel 2.2.3
Linux Linux Kernel 2.3.0
Linux Linux Kernel 2.3.99
Linux Linux Kernel 2.4.0
Linux Linux Kernel 2.4.12
Linux Linux Kernel 2.4.13
Linux Linux Kernel 2.4.18
NA
CVE-2009-1895
The personality subsystem in the Linux kernel prior to 2.6.31-rc3 has a PER_CLEAR_ON_SETID setting that does not clear the ADDR_COMPAT_LAYOUT and MMAP_PAGE_ZERO flags when executing a setuid or setgid program, which makes it easier for local users to leverage the details of memor...
Linux Linux Kernel
Linux Linux Kernel 2.6.31
Debian Debian Linux 5.0
Debian Debian Linux 4.0
Canonical Ubuntu Linux 6.06
Canonical Ubuntu Linux 9.04
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 8.10
6.6
CVSSv3
CVE-2017-7273
The cp_report_fixup function in drivers/hid/hid-cypress.c in the Linux kernel 3.2 and 4.x prior to 4.9.4 allows physically proximate malicious users to cause a denial of service (integer underflow) or possibly have unspecified other impact via a crafted HID report.
Linux Linux Kernel 4.0.0
Linux Linux Kernel 4.0.2
Linux Linux Kernel 4.0.3
Linux Linux Kernel 4.0.4
Linux Linux Kernel 4.1.17
Linux Linux Kernel 4.1.18
Linux Linux Kernel 4.1.19
Linux Linux Kernel 4.1.2
Linux Linux Kernel 4.10.1
Linux Linux Kernel 4.10.2
Linux Linux Kernel 4.10.4
Linux Linux Kernel 4.2.0
Linux Linux Kernel 4.3.5
Linux Linux Kernel 4.3.6
Linux Linux Kernel 4.4
Linux Linux Kernel 4.4.0
Linux Linux Kernel 4.4.6
Linux Linux Kernel 4.4.7
Linux Linux Kernel 4.4.8
Linux Linux Kernel 4.4.9
Linux Linux Kernel 4.6.6
Linux Linux Kernel 4.6.7
NA
CVE-2008-2137
The (1) sparc_mmap_check function in arch/sparc/kernel/sys_sparc.c and the (2) sparc64_mmap_check function in arch/sparc64/kernel/sys_sparc.c, in the Linux kernel 2.4 prior to 2.4.36.5 and 2.6 prior to 2.6.25.3, omit some virtual-address range (aka span) checks when the mmap MAP_...
Linux Linux Kernel 2.6.22.11
Linux Linux Kernel 2.6.22.12
Linux Linux Kernel 2.6.25
Linux Linux Kernel 2.6.25.1
Linux Linux Kernel 2.6.11.12
Linux Linux Kernel 2.6.11.4
Linux Linux Kernel 2.6.12.12
Linux Linux Kernel 2.6.12.2
Linux Linux Kernel 2.6.13.2
Linux Linux Kernel 2.6.13.3
Linux Linux Kernel 2.6.14.5
Linux Linux Kernel 2.6.15
Linux Linux Kernel 2.6.16
Linux Linux Kernel 2.6.16.13
Linux Linux Kernel 2.6.16.27
Linux Linux Kernel 2.6.17.14
Linux Linux Kernel 2.6.17.2
Linux Linux Kernel 2.6.18.1
Linux Linux Kernel 2.6.18.3
Linux Linux Kernel 2.6.20.11
Linux Linux Kernel 2.6.20.13
Linux Linux Kernel 2.6.20.9
3.3
CVSSv3
CVE-2015-2877
Kernel Samepage Merging (KSM) in the Linux kernel 2.6.32 up to and including 4.x does not prevent use of a write-timing side channel, which allows guest OS users to defeat the ASLR protection mechanism on other guest OS instances via a Cross-VM ASL INtrospection (CAIN) attack. NO...
Linux Linux Kernel
Redhat Enterprise Linux 4.0
Redhat Enterprise Linux 7.0
Redhat Enterprise Linux 6.0
Redhat Enterprise Linux 5.0
NA
CVE-2008-3534
The shmem_delete_inode function in mm/shmem.c in the tmpfs implementation in the Linux kernel prior to 2.6.26.1 allows local users to cause a denial of service (system crash) via a certain sequence of file create, remove, and overwrite operations, as demonstrated by the insserv p...
Linux Linux Kernel
Debian Debian Linux 4.0
Canonical Ubuntu Linux 7.10
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 6.06
NA
CVE-2006-6058
The minix filesystem code in Linux kernel 2.6.x prior to 2.6.24, including 2.6.18, allows local users to cause a denial of service (hang) via a malformed minix file stream that triggers an infinite loop in the minix_bmap function. NOTE: this issue might be due to an integer overf...
Linux Linux Kernel 2.6.16.13
Linux Linux Kernel 2.6.16.15
Linux Linux Kernel 2.6.16.2
Linux Linux Kernel 2.6.16.21
Linux Linux Kernel 2.6.16.28
Linux Linux Kernel 2.6.16.3
Linux Linux Kernel 2.6.16.6
Linux Linux Kernel 2.6.16.8
Linux Linux Kernel 2.6.17.11
Linux Linux Kernel 2.6.17.13
Linux Linux Kernel 2.6.17.7
Linux Linux Kernel 2.6.17.9
Linux Linux Kernel 2.6.18.6
Linux Linux Kernel 2.6.18.8
Linux Linux Kernel 2.6.18
Linux Linux Kernel 2.6.19
Linux Linux Kernel 2.6.2
Linux Linux Kernel 2.6.20.14
Linux Linux Kernel 2.6.20.2
Linux Linux Kernel 2.6.20.7
Linux Linux Kernel 2.6.20.9
Linux Linux Kernel 2.6.21
NA
CVE-2007-2453
The random number feature in Linux kernel 2.6 prior to 2.6.20.13, and 2.6.21.x prior to 2.6.21.4, (1) does not properly seed pools when there is no entropy, or (2) uses an incorrect cast when extracting entropy, which might cause the random number generator to provide the same va...
Linux Linux Kernel 2.6.0
Linux Linux Kernel 2.6.10
Linux Linux Kernel 2.6.11.12
Linux Linux Kernel 2.6.11.2
Linux Linux Kernel 2.6.11
Linux Linux Kernel 2.6.12.12
Linux Linux Kernel 2.6.12.2
Linux Linux Kernel 2.6.12
Linux Linux Kernel 2.6.13.4
Linux Linux Kernel 2.6.13.5
Linux Linux Kernel 2.6.13
Linux Linux Kernel 2.6.14
Linux Linux Kernel 2.6.14.7
Linux Linux Kernel 2.6.15.2
Linux Linux Kernel 2.6.15.3
Linux Linux Kernel 2.6.15
Linux Linux Kernel 2.6.16.12
Linux Linux Kernel 2.6.16.13
Linux Linux Kernel 2.6.16.2
Linux Linux Kernel 2.6.16.20
Linux Linux Kernel 2.6.16.27
Linux Linux Kernel 2.6.16.28
NA
CVE-2007-2876
The sctp_new function in (1) ip_conntrack_proto_sctp.c and (2) nf_conntrack_proto_sctp.c in Netfilter in Linux kernel 2.6 prior to 2.6.20.13, and 2.6.21.x prior to 2.6.21.4, allows remote malicious users to cause a denial of service by causing certain invalid states that trigger ...
Linux Linux Kernel 2.6.0
Linux Linux Kernel 2.6.1
Linux Linux Kernel 2.6.11.10
Linux Linux Kernel 2.6.11.11
Linux Linux Kernel 2.6.11.8
Linux Linux Kernel 2.6.11.9
Linux Linux Kernel 2.6.12
Linux Linux Kernel 2.6.12.1
Linux Linux Kernel 2.6.12.6
Linux Linux Kernel 2.6.13.2
Linux Linux Kernel 2.6.13.3
Linux Linux Kernel 2.6.13
Linux Linux Kernel 2.6.14.5
Linux Linux Kernel 2.6.14.6
Linux Linux Kernel 2.6.11
Linux Linux Kernel 2.6.11.1
Linux Linux Kernel 2.6.11.6
Linux Linux Kernel 2.6.11.7
Linux Linux Kernel 2.6.10
Linux Linux Kernel 2.6.11.3
Linux Linux Kernel 2.6.11.4
Linux Linux Kernel 2.6.11.5
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
firewall
CVE-2024-35649
stored XSS
CVE-2022-28654
CVE-2020-35153
CVE-2024-27348
CVE-2022-28652
local users
CVE-2017-3506
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »