| Max CVSS | 7.2 | Min CVSS | 1.9 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2014-9529 | 6.9 |
Race condition in the key_gc_unused_keys function in security/keys/gc.c in the Linux kernel through 3.18.2 allows local users to cause a denial of service (memory corruption or panic) or possibly have unspecified other impact via keyctl commands that
|
14-03-2024 - 19:58 | 09-01-2015 - 21:59 | |
| CVE-2014-8173 | 7.2 |
The pmd_none_or_trans_huge_or_clear_bad function in include/asm-generic/pgtable.h in the Linux kernel before 3.13 on NUMA systems does not properly determine whether a Page Middle Directory (PMD) entry is a transparent huge-table entry, which allows
|
22-12-2023 - 20:17 | 16-03-2015 - 10:59 | |
| CVE-2014-9420 | 4.9 |
The rock_continue function in fs/isofs/rock.c in the Linux kernel through 3.18.1 does not restrict the number of Rock Ridge continuation entries, which allows local users to cause a denial of service (infinite loop, and system crash or hang) via a cr
|
13-02-2023 - 00:45 | 26-12-2014 - 00:59 | |
| CVE-2014-9584 | 2.1 |
The parse_rock_ridge_inode_internal function in fs/isofs/rock.c in the Linux kernel before 3.18.2 does not validate a length value in the Extensions Reference (ER) System Use Field, which allows local users to obtain sensitive information from kernel
|
13-02-2023 - 00:45 | 09-01-2015 - 21:59 | |
| CVE-2014-8134 | 1.9 |
The paravirt_ops_setup function in arch/x86/kernel/kvm.c in the Linux kernel through 3.18 uses an improper paravirt_enabled setting for KVM guest kernels, which makes it easier for guest OS users to bypass the ASLR protection mechanism via a crafted
|
13-02-2023 - 00:43 | 12-12-2014 - 18:59 | |
| CVE-2014-8160 | 5.0 |
net/netfilter/nf_conntrack_proto_generic.c in the Linux kernel before 3.18 generates incorrect conntrack entries during handling of certain iptables rule sets for the SCTP, DCCP, GRE, and UDP-Lite protocols, which allows remote attackers to bypass in
|
13-02-2023 - 00:43 | 02-03-2015 - 11:59 | |
| CVE-2014-7822 | 7.2 |
The implementation of certain splice_write file operations in the Linux kernel before 3.16 does not enforce a restriction on the maximum size of a single file, which allows local users to cause a denial of service (system crash) or possibly have unsp
|
13-02-2023 - 00:42 | 16-03-2015 - 10:59 | |
| CVE-2014-8559 | 4.9 |
The d_walk function in fs/dcache.c in the Linux kernel through 3.17.2 does not properly maintain the semantics of rename_lock, which allows local users to cause a denial of service (deadlock and system hang) via a crafted application.
|
13-08-2020 - 17:42 | 10-11-2014 - 11:55 | |
| CVE-2014-9585 | 2.1 |
The vdso_addr function in arch/x86/vdso/vma.c in the Linux kernel through 3.18.2 does not properly choose memory locations for the vDSO area, which makes it easier for local users to bypass the ASLR protection mechanism by guessing a location at the
|
21-05-2020 - 20:35 | 09-01-2015 - 21:59 | |
| CVE-2015-1593 | 5.0 |
The stack randomization feature in the Linux kernel before 3.19.1 on 64-bit platforms uses incorrect data types for the results of bitwise left-shift operations, which makes it easier for attackers to bypass the ASLR protection mechanism by predictin
|
05-01-2018 - 02:30 | 16-03-2015 - 10:59 | |
| CVE-2014-9419 | 2.1 |
The __switch_to function in arch/x86/kernel/process_64.c in the Linux kernel through 3.18.1 does not ensure that Thread Local Storage (TLS) descriptors are loaded before proceeding with other steps, which makes it easier for local users to bypass the
|
05-01-2018 - 02:29 | 26-12-2014 - 00:59 |