- Home
- CVEs with nessus.description==Security+Fix%28es%29+%3A%0A%0A++-+An+industry-wide+issue+was+found+in+the+way+many+modern+++++microprocessor+designs+have+implemented+speculative+++++execution+of+Load+%26amp%3B+Store+instructions+%28a+commonly+++++used+performance+optimization%29.+It+relies+on+the+++++presence+of+a+precisely-defined+instruction+sequence+in+++++the+privileged+code+as+well+as+the+fact+that+memory+read+++++from+address+to+which+a+recent+memory+write+has+occurred+++++may+see+an+older+value+and+subsequently+cause+an+update+++++into+the+microprocessor%27s+data+cache+even+for+++++speculatively+executed+instructions+that+never+actually+++++commit+%28retire%29.+As+a+result%2C+an+unprivileged+attacker+++++could+use+this+flaw+to+read+privileged+memory+by+++++conducting+targeted+cache+side-channel+attacks.%0A++++%28CVE-2018-3639%2C+PowerPC%29%0A%0A++-+kernel%3A+net%2Fpacket%3A+overflow+in+check+for+priv+area+size+++++%28CVE-2017-7308%29%0A%0A++-+kernel%3A+AIO+interface+didn%27t+use+rw_verify_area%28%29+for+++++checking+mandatory+locking+on+files+and+size+of+access+++++%28CVE-2012-6701%29%0A%0A++-+kernel%3A+AIO+write+triggers+integer+overflow+in+some+++++protocols+%28CVE-2015-8830%29%0A%0A++-+kernel%3A+NULL+pointer+dereference+via+keyctl+++++%28CVE-2016-8650%29%0A%0A++-+kernel%3A+ping+socket+%2F+AF_LLC+connect%28%29+sin_family+race+++++%28CVE-2017-2671%29%0A%0A++-+kernel%3A+Race+condition+between+multiple+++++sys_perf_event_open%28%29+calls+%28CVE-2017-6001%29%0A%0A++-+kernel%3A+Incorrect+error+handling+in+the+set_mempolicy+++++and+mbind+compat+syscalls+in+mm%2Fmempolicy.c+++++%28CVE-2017-7616%29%0A%0A++-+kernel%3A+mm+subsystem+does+not+properly+enforce+the+++++CONFIG_STRICT_DEVMEM+protection+mechanism+++++%28CVE-2017-7889%29%0A%0A++-+kernel%3A+Double+free+in+the+inet_csk_clone_lock+function+++++in+net%2Fipv4%2Finet_connection_sock.c+%28CVE-2017-8890%29%0A%0A++-+kernel%3A+net%3A+sctp_v6_create_accept_sk+function+++++mishandles+inheritance+%28CVE-2017-9075%29%0A%0A++-+kernel%3A+net%3A+IPv6+DCCP+implementation+mishandles+++++inheritance+%28CVE-2017-9076%29%0A%0A++-+kernel%3A+net%3A+tcp_v6_syn_recv_sock+function+mishandles+++++inheritance+%28CVE-2017-9077%29%0A%0A++-+kernel%3A+memory+leak+when+merging+buffers+in+SCSI+IO+++++vectors+%28CVE-2017-12190%29%0A%0A++-+kernel%3A+vfs%3A+BUG+in+truncate_inode_pages_range%28%29+and+++++fuse+client+%28CVE-2017-15121%29%0A%0A++-+kernel%3A+Race+condition+in+++++drivers%2Fmd%2Fdm.c%3Adm_get_from_kobject%28%29+allows+local+users+++++to+cause+a+denial+of+service+%28CVE-2017-18203%29%0A%0A++-+kernel%3A+a+NULL+pointer+dereference+in+++++net%2Fdccp%2Foutput.c%3Adccp_write_xmit%28%29+leads+to+a+system+++++crash+%28CVE-2018-1130%29%0A%0A++-+kernel%3A+Missing+length+check+of+payload+in+++++net%2Fsctp%2Fsm_make_chunk.c%3A_sctp_make_chunk%28%29+function+++++allows+denial+of+service+%28CVE-2018-5803%29
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top