ben hawkes vulnerabilities and exploits

(subscribe to this query)

6.2

CVSSv3

sound/core/hrtimer.c in the Linux kernel prior to 4.4.1 does not prevent recursive callback access, which allows local users to cause a denial of service (deadlock) via a crafted ioctl call.

Linux Linux Kernel

6.2

CVSSv3

The snd_seq_ioctl_remove_events function in sound/core/seq/seq_clientmgr.c in the Linux kernel prior to 4.4.1 does not verify FIFO assignment before proceeding with FIFO clearing, which allows local users to cause a denial of service (NULL pointer dereference and OOPS) via a craf...

Linux Linux Kernel

5.1

CVSSv3

Race condition in the queue_delete function in sound/core/seq/seq_queue.c in the Linux kernel prior to 4.4.1 allows local users to cause a denial of service (use-after-free and system crash) by making an ioctl call at a certain time.

Linux Linux Kernel

5.1

CVSSv3

The snd_timer_interrupt function in sound/core/timer.c in the Linux kernel prior to 4.4.1 does not properly maintain a certain linked list, which allows local users to cause a denial of service (race condition and system crash) via a crafted ioctl call.

Linux Linux Kernel

5.1

CVSSv3

sound/core/timer.c in the Linux kernel prior to 4.4.1 uses an incorrect type of mutex, which allows local users to cause a denial of service (race condition, use-after-free, and system crash) via a crafted ioctl call.

Linux Linux Kernel

5.1

CVSSv3

sound/core/timer.c in the Linux kernel prior to 4.4.1 employs a locking approach that does not consider slave timer instances, which allows local users to cause a denial of service (race condition, use-after-free, and system crash) via a crafted ioctl call.

Linux Linux Kernel

6.2

CVSSv3

sound/core/timer.c in the Linux kernel prior to 4.4.1 retains certain linked lists after a close or stop action, which allows local users to cause a denial of service (system crash) via a crafted ioctl call, related to the (1) snd_timer_close and (2) _snd_timer_stop functions.

Linux Linux Kernel

7.8

CVSSv3

Integer overflow in the xt_alloc_table_info function in net/netfilter/x_tables.c in the Linux kernel up to and including 4.5.2 on 32-bit platforms allows local users to gain privileges or cause a denial of service (heap memory corruption) via an IPT_SO_SET_REPLACE setsockopt call...

Linux Linux Kernel Canonical Ubuntu Linux 16.04 Canonical Ubuntu Linux 15.10 Canonical Ubuntu Linux 14.04

1 EDB exploit9 Github repositories

4.6

CVSSv3

The treo_attach function in drivers/usb/serial/visor.c in the Linux kernel prior to 4.5 allows physically proximate malicious users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact by inserting a USB device that la...

Linux Linux Kernel Linux Linux Kernel 4.5.0 Suse Linux Enterprise Debuginfo 11 Suse Linux Enterprise Module For Public Cloud 12 Suse Linux Enterprise Desktop 12 Suse Linux Enterprise Real Time Extension 11 Suse Linux Enterprise Real Time Extension 12 Suse Linux Enterprise Server 11 Suse Linux Enterprise Server 12 Suse Linux Enterprise Software Development Kit 11 Suse Linux Enterprise Software Development Kit 12 Suse Linux Enterprise Workstation Extension 12

1 EDB exploit

4.6

CVSSv3

The clie_5_attach function in drivers/usb/serial/visor.c in the Linux kernel up to and including 4.4.1 allows physically proximate malicious users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact by inserting a USB...

Novell Suse Linux Enterprise Real Time Extension 12 Novell Suse Linux Enterprise Debuginfo 11 Novell Suse Linux Enterprise Software Development Kit 11 Novell Suse Linux Enterprise Real Time Extension 11 Novell Suse Linux Enterprise Server 11 Linux Linux Kernel

1 EDB exploit

Get Started

1 2 3 4 NEXT »

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook