| Max CVSS | 7.8 | Min CVSS | 1.9 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2014-3688 | 5.0 |
The SCTP implementation in the Linux kernel before 3.17.4 allows remote attackers to cause a denial of service (memory consumption) by triggering a large number of chunks in an association's output queue, as demonstrated by ASCONF probes, related to
|
13-02-2023 - 00:41 | 30-11-2014 - 01:59 | |
| CVE-2014-3631 | 7.2 |
The assoc_array_gc function in the associative-array implementation in lib/assoc_array.c in the Linux kernel before 3.16.3 does not properly implement garbage collection, which allows local users to cause a denial of service (NULL pointer dereference
|
13-02-2023 - 00:41 | 28-09-2014 - 10:55 | |
| CVE-2014-3687 | 7.8 |
The sctp_assoc_lookup_asconf_ack function in net/sctp/associola.c in the SCTP implementation in the Linux kernel through 3.17.2 allows remote attackers to cause a denial of service (panic) via duplicate ASCONF chunks that trigger an incorrect uncork
|
13-02-2023 - 00:41 | 10-11-2014 - 11:55 | |
| CVE-2014-3673 | 7.8 |
The SCTP implementation in the Linux kernel through 3.17.2 allows remote attackers to cause a denial of service (system crash) via a malformed ASCONF chunk, related to net/sctp/sm_make_chunk.c and net/sctp/sm_statefuns.c.
|
13-02-2023 - 00:41 | 10-11-2014 - 11:55 | |
| CVE-2014-4027 | 2.3 |
The rd_build_device_space function in drivers/target/target_core_rd.c in the Linux kernel before 3.14 does not properly initialize a certain data structure, which allows local users to obtain sensitive information from ramdisk_mcp memory by leveragin
|
21-08-2020 - 18:24 | 23-06-2014 - 11:21 | |
| CVE-2014-1739 | 2.1 |
The media_device_enum_entities function in drivers/media/media-device.c in the Linux kernel before 3.14.6 does not initialize a certain data structure, which allows local users to obtain sensitive information from kernel memory by leveraging /dev/med
|
19-08-2020 - 19:18 | 23-06-2014 - 11:21 | |
| CVE-2014-5045 | 6.2 |
The mountpoint_last function in fs/namei.c in the Linux kernel before 3.15.8 does not properly maintain a certain reference count during attempts to use the umount system call in conjunction with a symlink, which allows local users to cause a denial
|
14-08-2020 - 18:11 | 01-08-2014 - 11:13 | |
| CVE-2014-4656 | 4.6 |
Multiple integer overflows in sound/core/control.c in the ALSA control implementation in the Linux kernel before 3.15.2 allow local users to cause a denial of service by leveraging /dev/snd/controlCX access, related to (1) index values in the snd_ctl
|
14-08-2020 - 18:02 | 03-07-2014 - 04:22 | |
| CVE-2014-4655 | 4.9 |
The snd_ctl_elem_add function in sound/core/control.c in the ALSA control implementation in the Linux kernel before 3.15.2 does not properly maintain the user_ctl_count value, which allows local users to cause a denial of service (integer overflow an
|
14-08-2020 - 18:02 | 03-07-2014 - 04:22 | |
| CVE-2014-4654 | 4.6 |
The snd_ctl_elem_add function in sound/core/control.c in the ALSA control implementation in the Linux kernel before 3.15.2 does not check authorization for SNDRV_CTL_IOCTL_ELEM_REPLACE commands, which allows local users to remove kernel controls and
|
14-08-2020 - 18:01 | 03-07-2014 - 04:22 | |
| CVE-2014-4652 | 1.9 |
Race condition in the tlv handler functionality in the snd_ctl_elem_user_tlv function in sound/core/control.c in the ALSA control implementation in the Linux kernel before 3.15.2 allows local users to obtain sensitive information from kernel memory b
|
14-08-2020 - 17:53 | 03-07-2014 - 04:22 | |
| CVE-2013-2929 | 3.3 |
The Linux kernel before 3.12.2 does not properly use the get_dumpable function, which allows local users to bypass intended ptrace restrictions or obtain sensitive information from IA64 scratch registers via a crafted application, related to kernel/p
|
28-04-2018 - 01:29 | 09-12-2013 - 18:55 | |
| CVE-2014-3184 | 4.7 |
The report_fixup functions in the HID subsystem in the Linux kernel before 3.16.2 might allow physically proximate attackers to cause a denial of service (out-of-bounds write) via a crafted device that provides a small report descriptor, related to (
|
24-12-2016 - 02:59 | 28-09-2014 - 10:55 | |
| CVE-2014-6410 | 4.7 |
The __udf_read_inode function in fs/udf/inode.c in the Linux kernel through 3.16.3 does not restrict the amount of ICB indirection, which allows physically proximate attackers to cause a denial of service (infinite loop or stack consumption) via a UD
|
23-08-2016 - 02:08 | 28-09-2014 - 10:55 | |
| CVE-2014-3182 | 6.9 |
Array index error in the logi_dj_raw_event function in drivers/hid/hid-logitech-dj.c in the Linux kernel before 3.16.2 allows physically proximate attackers to execute arbitrary code or cause a denial of service (invalid kfree) via a crafted device t
|
08-10-2015 - 15:03 | 28-09-2014 - 10:55 | |
| CVE-2014-3186 | 6.9 |
Buffer overflow in the picolcd_raw_event function in devices/hid/hid-picolcd_core.c in the PicoLCD HID device driver in the Linux kernel through 3.16.3, as used in Android on Nexus 7 devices, allows physically proximate attackers to cause a denial of
|
14-05-2015 - 02:00 | 28-09-2014 - 10:55 | |
| CVE-2014-3185 | 6.9 |
Multiple buffer overflows in the command_port_read_callback function in drivers/usb/serial/whiteheat.c in the Whiteheat USB Serial Driver in the Linux kernel before 3.16.2 allow physically proximate attackers to execute arbitrary code or cause a deni
|
12-05-2015 - 02:00 | 28-09-2014 - 10:55 | |
| CVE-2014-3181 | 6.9 |
Multiple stack-based buffer overflows in the magicmouse_raw_event function in drivers/hid/hid-magicmouse.c in the Magic Mouse HID driver in the Linux kernel through 3.16.3 allow physically proximate attackers to cause a denial of service (system cras
|
26-03-2015 - 01:59 | 28-09-2014 - 10:55 |