- Home
- CVEs with nessus.description==The+bt_sock_recvmsg+function+in+net%2Fbluetooth%2Faf_bluetooth.c+in+the+Linux+kernel+before+3.9-rc7+does+not+properly+initialize+a+certain+length+variable%2C+which+allows+local+users+to+obtain+sensitive+information+from+kernel+stack+memory+via+a+crafted+recvmsg+or+recvfrom+system+call.%0A%0AThe+udf_encode_fh+function+in+fs%2Fudf%2Fnamei.c+in+the+Linux+kernel+before+3.6+does+not+initialize+a+certain+structure+member%2C+which+allows+local+users+to+obtain+sensitive+information+from+kernel+heap+memory+via+a+crafted+application.%0A%0AThe+ftrace+implementation+in+the+Linux+kernel+before+3.8.8+allows+local+users+to+cause+a+denial+of+service+%28NULL+pointer+dereference+and+system+crash%29+or+possibly+have+unspecified+other+impact+by+leveraging+the+CAP_SYS_ADMIN+capability+for+write+access+to+the+%281%29+set_ftrace_pid+or+%282%29+set_graph_function+file%2C+and+then+making+an+lseek+system+call.%0A%0AThe+rtnl_fill_ifinfo+function+in+net%2Fcore%2Frtnetlink.c+in+the+Linux+kernel+before+3.8.4+does+not+initialize+a+certain+structure+member%2C+which+allows+local+users+to+obtain+sensitive+information+from+kernel+stack+memory+via+a+crafted+application.%0A%0AThe+ip6_sk_dst_check+function+in+net%2Fipv6%2Fip6_output.c+in+the+Linux+kernel+before+3.10+allows+local+users+to+cause+a+denial+of+service+%28system+crash%29+by+using+an+AF_INET6+socket+for+a+connection+to+an+IPv4+interface.%0A%0AThe+tcp_read_sock+function+in+net%2Fipv4%2Ftcp.c+in+the+Linux+kernel+before+2.6.34+does+not+properly+manage+skb+consumption%2C+which+allows+local+users+to+cause+a+denial+of+service+%28system+crash%29+via+a+crafted+splice+system+call+for+a+TCP+socket.%0A%0AThe+rfcomm_sock_recvmsg+function+in+net%2Fbluetooth%2Frfcomm%2Fsock.c+in+the+Linux+kernel+before+3.9-rc7+does+not+initialize+a+certain+length+variable%2C+which+allows+local+users+to+obtain+sensitive+information+from+kernel+stack+memory+via+a+crafted+recvmsg+or+recvfrom+system+call.%0A%0AFormat+string+vulnerability+in+the+b43_request_firmware+function+in+drivers%2Fnet%2Fwireless%2Fb43%2Fmain.c+in+the+Broadcom+B43+wireless+driver+in+the+Linux+kernel+through+3.9.4+allows+local+users+to+gain+privileges+by+leveraging+root+access+and+including+format+string+specifiers+in+an+fwpostfix+modprobe+parameter%2C+leading+to+improper+construction+of+an+error+message.%0A%0AThe+%281%29+key_notify_sa_flush+and+%282%29+key_notify_policy_flush+functions+in+net%2Fkey%2Faf_key.c+in+the+Linux+kernel+before+3.10+do+not+initialize+certain+structure+members%2C+which+allows+local+users+to+obtain+sensitive+information+from+kernel+heap+memory+by+reading+a+broadcast+message+from+the+notify+interface+of+an+IPSec+key_socket.%0A%0AThe+vcc_recvmsg+function+in+net%2Fatm%2Fcommon.c+in+the+Linux+kernel+before+3.9-rc7+does+not+initialize+a+certain+length+variable%2C+which+allows+local+users+to+obtain+sensitive+information+from+kernel+stack+memory+via+a+crafted+recvmsg+or+recvfrom+system+call.%0A%0AThe+flush_signal_handlers+function+in+kernel%2Fsignal.c+in+the+Linux+kernel+before+3.8.4+preserves+the+value+of+the+sa_restorer+field+across+an+exec+operation%2C+which+makes+it+easier+for+local+users+to+bypass+the+ASLR+protection+mechanism+via+a+crafted+application+containing+a+sigaction+system+call.%0A%0Anet%2Fdcb%2Fdcbnl.c+in+the+Linux+kernel+before+3.8.4+does+not+initialize+certain+structures%2C+which+allows+local+users+to+obtain+sensitive+information+from+kernel+stack+memory+via+a+crafted+application.%0A%0Afs%2Fext3%2Fsuper.c+in+the+Linux+kernel+before+3.8.4+uses+incorrect+arguments+to+functions+in+certain+circumstances+related+to+printk+input%2C+which+allows+local+users+to+conduct+format-string+attacks+and+possibly+gain+privileges+via+a+crafted+application.%0A%0Anet%2Fceph%2Fauth_none.c+in+the+Linux+kernel+through+3.10+allows+remote+attackers+to+cause+a+denial+of+service+%28NULL+pointer+dereference+and+system+crash%29+or+possibly+have+unspecified+other+impact+via+an+auth_reply+message+that+triggers+an+attempted+build_request+operation
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top