| Max CVSS | 7.6 | Min CVSS | 3.6 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2016-10088 | 6.9 |
The sg implementation in the Linux kernel through 4.9 does not properly restrict write operations in situations where the KERNEL_DS option is set, which allows local users to read or write to arbitrary kernel memory locations or cause a denial of ser
|
07-06-2023 - 12:44 | 30-12-2016 - 18:59 | |
| CVE-2016-9576 | 7.2 |
The blk_rq_map_user_iov function in block/blk-map.c in the Linux kernel before 4.8.14 does not properly restrict the type of iterator, which allows local users to read or write to arbitrary kernel memory locations or cause a denial of service (use-af
|
12-02-2023 - 23:27 | 28-12-2016 - 07:59 | |
| CVE-2016-7097 | 3.6 |
The filesystem implementation in the Linux kernel through 4.8.2 preserves the setgid bit during a setxattr call, which allows local users to gain group privileges by leveraging the existence of a setgid program with restrictions on execute permission
|
12-02-2023 - 23:25 | 16-10-2016 - 21:59 | |
| CVE-2017-5551 | 3.6 |
The simple_set_acl function in fs/posix_acl.c in the Linux kernel before 4.9.6 preserves the setgid bit during a setxattr call involving a tmpfs filesystem, which allows local users to gain group privileges by leveraging the existence of a setgid pro
|
03-10-2019 - 00:03 | 06-02-2017 - 06:59 | |
| CVE-2016-10142 | 5.0 |
An issue was discovered in the IPv6 protocol specification, related to ICMP Packet Too Big (PTB) messages. (The scope of this CVE is all affected IPv6 implementations from all vendors.) The security implications of IP fragmentation have been discusse
|
11-05-2018 - 01:29 | 14-01-2017 - 07:59 | |
| CVE-2016-6480 | 4.7 |
Race condition in the ioctl_send_fib function in drivers/scsi/aacraid/commctrl.c in the Linux kernel through 4.7 allows local users to cause a denial of service (out-of-bounds access or system crash) by changing a certain size value, aka a "double fe
|
05-01-2018 - 02:31 | 06-08-2016 - 20:59 | |
| CVE-2016-8399 | 7.6 |
An elevation of privilege vulnerability in the kernel networking subsystem could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Moderate because it first requires compromising a
|
05-01-2018 - 02:31 | 12-01-2017 - 15:59 | |
| CVE-2016-7042 | 4.9 |
The proc_keys_show function in security/keys/proc.c in the Linux kernel through 4.8.2, when the GNU Compiler Collection (gcc) stack protector is enabled, uses an incorrect buffer size for certain timeout data, which allows local users to cause a deni
|
05-01-2018 - 02:31 | 16-10-2016 - 21:59 | |
| CVE-2016-2384 | 4.9 |
Double free vulnerability in the snd_usbmidi_create function in sound/usb/midi.c in the Linux kernel before 4.5 allows physically proximate attackers to cause a denial of service (panic) or possibly have unspecified other impact via vectors involving
|
05-01-2018 - 02:30 | 27-04-2016 - 17:59 | |
| CVE-2016-2069 | 4.4 |
Race condition in arch/x86/mm/tlb.c in the Linux kernel before 4.4.1 allows local users to gain privileges by triggering access to a paging structure by a different CPU.
|
05-01-2018 - 02:30 | 27-04-2016 - 17:59 |