- Home
- CVEs with nessus.description==Several+vulnerabilities+have+been+discovered+in+the+Linux+kernel+that+may+lead+to+a+denial+of+service.%0A%0ACVE-2018-1093%0A%0AWen+Xu+reported+that+a+crafted+ext4+filesystem+image+could+trigger+an+out-of-bounds+read+in+the+ext4_valid_block_bitmap%28%29+function.+A+local+user+able+to+mount+arbitrary+filesystems+could+use+this+for+denial+of+service.%0A%0ACVE-2018-1130%0A%0AThe+syzbot+software+found+that+the+DCCP+implementation+of+sendmsg%28%29+does+not+check+the+socket+state%2C+potentially+leading+to+a+NULL+pointer+dereference.+A+local+user+could+use+this+to+cause+a+denial+of+service+%28crash%29.%0A%0ACVE-2018-8897%0A%0ANick+Peterson+of+Everdox+Tech+LLC+discovered+that+%23DB+exceptions+that+are+deferred+by+MOV+SS+or+POP+SS+are+not+properly+handled%2C+allowing+an+unprivileged+user+to+crash+the+kernel+and+cause+a+denial+of+service.%0A%0ACVE-2018-10940%0A%0ADan+Carpenter+reported+that+the+cdrom+driver+does+not+correctly+validate+the+parameter+to+the+CDROM_MEDIA_CHANGED+ioctl.+A+user+with+access+to+a+cdrom+device+could+use+this+to+cause+a+denial+of+service+%28crash%29.%0A%0AFor+Debian+7+%27Wheezy%27%2C+these+problems+have+been+fixed+in+version+3.2.102-1.+This+version+also+includes+bug+fixes+from+upstream+version+3.2.102%2C+including+a+fix+for+a+regression+in+the+SCTP+implementation+in+version+3.2.101.%0A%0AWe+recommend+that+you+upgrade+your+linux+packages.%0A%0ANOTE%3A+Tenable+Network+Security+has+extracted+the+preceding+description+block+directly+from+the+DLA+security+advisory.+Tenable+has+attempted+to+automatically+clean+and+format+it+as+much+as+possible+without+introducing+additional+issues
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top