- Home
- CVEs with nessus.description==Several vulnerabilities have been discovered in the Linux kernel that
may lead to a privilege escalation, denial of service, information
leaks or data corruption.
- CVE-2015-1805
Red Hat discovered that the pipe iovec read and write
implementations may iterate over the iovec twice but
will modify the iovec such that the second iteration
accesses the wrong memory. A local user could use this
flaw to crash the system or possibly for privilege
escalation. This may also result in data corruption and
information leaks in pipes between non-malicious
processes.
- CVE-2015-3636
Wen Xu and wushi of KeenTeam discovered that users
allowed to create ping sockets can use them to crash the
system and, on 32-bit architectures, for privilege
escalation. However, by default, no users on a Debian
system have access to ping sockets.
- CVE-2015-4167
Carl Henrik Lunde discovered that the UDF implementation
is missing a necessary length checks. A local user that
can mount devices could use this flaw to crash the
system.
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top