Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
debian linux vulnerabilities and exploits
(subscribe to this query)
188
VMScore
CVE-2017-8924
The edge_bulk_in_callback function in drivers/usb/serial/io_ti.c in the Linux kernel prior to 4.10.4 allows local users to obtain sensitive information (in the dmesg ringbuffer and syslog) from uninitialized kernel memory by using a crafted USB device (posing as an io_ti USB seri...
Linux Linux Kernel
Debian Debian Linux 8.0
Debian Debian Linux 9.0
188
VMScore
CVE-2017-8925
The omninet_open function in drivers/usb/serial/omninet.c in the Linux kernel prior to 4.10.4 allows local users to cause a denial of service (tty exhaustion) by leveraging reference count mishandling.
Linux Linux Kernel
Debian Debian Linux 8.0
Debian Debian Linux 9.0
NA
CVE-2022-3176
There exists a use-after-free in io_uring in the Linux kernel. Signalfd_poll() and binder_poll() use a waitqueue whose lifetime is the current task. It will send a POLLFREE notification to all waiters before the queue is freed. Unfortunately, the io_uring poll doesn't handle...
Linux Linux Kernel
Debian Debian Linux 10.0
Debian Debian Linux 11.0
187
VMScore
CVE-2021-34693
net/can/bcm.c in the Linux kernel up to and including 5.12.10 allows local users to obtain sensitive information from kernel stack memory because parts of a data structure are uninitialized.
Linux Linux Kernel
Debian Debian Linux 9.0
Debian Debian Linux 10.0
NA
CVE-2022-39188
An issue exists in include/asm-generic/tlb.h in the Linux kernel prior to 5.19. Because of a race condition (unmap_mapping_range versus munmap), a device driver can free a page while it still has stale TLB entries. This only occurs in situations with VM_PFNMAP VMAs.
Linux Linux Kernel
Debian Debian Linux 10.0
Debian Debian Linux 11.0
641
VMScore
CVE-2009-0029
The ABI in the Linux kernel 2.6.28 and previous versions on s390, powerpc, sparc64, and mips 64-bit platforms requires that a 32-bit argument in a 64-bit register was properly sign extended when sent from a user-mode application, but cannot verify this, which allows local users t...
Linux Linux Kernel
Debian Debian Linux 5.0
Debian Debian Linux 4.0
1 Github repository
694
VMScore
CVE-2009-4536
drivers/net/e1000/e1000_main.c in the e1000 driver in the Linux kernel 2.6.32.3 and previous versions handles Ethernet frames that exceed the MTU by processing certain trailing payload data as if it were a complete frame, which allows remote malicious users to bypass packet filte...
Linux Linux Kernel
Debian Debian Linux 4.0
Debian Debian Linux 5.0
890
VMScore
CVE-2009-4538
drivers/net/e1000e/netdev.c in the e1000e driver in the Linux kernel 2.6.32.3 and previous versions does not properly check the size of an Ethernet frame that exceeds the MTU, which allows remote malicious users to have an unspecified impact via crafted packets, a related issue t...
Linux Linux Kernel
Debian Debian Linux 4.0
Debian Debian Linux 5.0
NA
CVE-2023-4622
A use-after-free vulnerability in the Linux kernel's af_unix component can be exploited to achieve local privilege escalation. The unix_stream_sendpage() function tries to add data to the last skb in the peer's recv queue without locking the queue. Thus there is a race ...
Linux Linux Kernel
Debian Debian Linux 10.0
Debian Debian Linux 12.0
481
VMScore
CVE-2010-0003
The print_fatal_signal function in kernel/signal.c in the Linux kernel prior to 2.6.32.4 on the i386 platform, when print-fatal-signals is enabled, allows local users to discover the contents of arbitrary memory locations by jumping to an address and then reading a log file, and ...
Linux Linux Kernel
Debian Debian Linux 5.0
Debian Debian Linux 4.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
brute force
CVE-2024-24908
open redirect
CVE-2024-31497
CVE-2023-45866
CVE-2024-4135
CVE-2024-25523
cache poisoning
CVE-2024-4649
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »