|Max CVSS||10.0||Min CVSS||1.2||Total Count||2|
|ID||CVSS||Summary||Last (major) update||Published|
The procfs code (proc_misc.c) in Linux 22.214.171.124 and other versions before 2.6.15 allows attackers to read sensitive kernel memory via unspecified vectors in which a signed value is added to an unsigned value.
|13-02-2023 - 02:15||31-12-2005 - 05:00|
The mq_open system call in Linux kernel 2.6.9, in certain situations, can decrement a counter twice ("double decrement") as a result of multiple calls to the mntput function when the dentry_open function call fails, which allows local users to cause
|13-02-2023 - 02:15||31-12-2005 - 05:00|
The sys_set_mempolicy function in mempolicy.c in Linux kernel 2.6.x allows local users to cause a denial of service (kernel BUG()) via a negative first argument.
|13-02-2023 - 02:15||26-09-2005 - 19:03|
Linux kernel before 2.6.15 allows local users to cause a denial of service (panic) via a set_mempolicy call with a 0 bitmask, which causes a panic when a page fault occurs.
|13-02-2023 - 02:15||14-12-2005 - 19:03|
The audit system in Linux kernel 2.6.6, and other versions before 126.96.36.199, when CONFIG_AUDITSYSCALL is enabled, uses an incorrect function to free names_cache memory, which prevents the memory from being tracked by AUDITSYSCALL code and leads to a m
|13-02-2023 - 02:15||12-10-2005 - 13:04|
The udp_v6_get_port function in udp.c in Linux 2.6 before 2.6.14-rc5, when running IPv6, allows local users to cause a denial of service (infinite loop and crash).
|13-02-2023 - 02:15||27-10-2005 - 18:02|
dm-crypt in Linux kernel 2.6.15 and earlier does not clear a structure before it is freed, which leads to a memory disclosure that could allow local users to obtain sensitive information about a cryptographic key.
|19-10-2018 - 15:42||06-01-2006 - 11:03|
The auto-reap of child processes in Linux kernel 2.6 before 2.6.15 includes processes with ptrace attached, which leads to a dangling ptrace reference and allows local users to cause a denial of service (crash) and gain root privileges.
|19-10-2018 - 15:39||23-11-2005 - 21:03|
The ptrace functionality (ptrace.c) in Linux kernel 2.6 before 188.8.131.52, using CLONE_THREAD, does not use the thread group ID to check whether it is attaching to itself, which allows local users to cause a denial of service (crash).
|19-10-2018 - 15:39||23-11-2005 - 21:03|
The IPv6 flow label handling code (ip6_flowlabel.c) in Linux kernels 2.4 up to 2.4.32 and 2.6 before 2.6.14 modifies the wrong variable in certain circumstances, which allows local users to corrupt kernel memory or cause a denial of service (crash) b
|19-10-2018 - 15:39||25-11-2005 - 21:03|
The time_out_leases function in locks.c for Linux kernel before 2.6.15-rc3 allows local users to cause a denial of service (kernel log message consumption) by causing a large number of broken leases, which is recorded to the log using the printk func
|19-10-2018 - 15:39||27-11-2005 - 21:03|
Linux kernel 2.6.8 to 2.6.14-rc2 allows local users to cause a denial of service (kernel OOPS) via a userspace process that issues a USB Request Block (URB) to a USB device and terminates before the URB is finished, which leads to a stale pointer ref
|19-10-2018 - 15:34||26-09-2005 - 19:03|
Multiple vulnerabilities in Linux kernel before 184.108.40.206 allow local users to cause a denial of service (kernel OOPS from null dereference) via (1) fput in a 32-bit ioctl on 64-bit x86 systems or (2) sockfd_put in the 32-bit routing_ioctl function on
|19-10-2018 - 15:34||22-09-2005 - 21:03|
The Orinoco driver (orinoco.c) in Linux kernel 2.6.13 and earlier does not properly clear memory from a previously used packet whose length is increased, which allows remote attackers to obtain sensitive information.
|19-10-2018 - 15:34||12-10-2005 - 13:04|
Memory leak in the seq_file implementation in the SCSI procfs interface (sg.c) in Linux kernel 2.6.13 and earlier allows local users to cause a denial of service (memory consumption) via certain repeated reads from the /proc/scsi/sg/devices file, whi
|19-10-2018 - 15:33||06-09-2005 - 17:03|
Linux kernel 2.6.x does not properly restrict socket policy access to users with the CAP_NET_ADMIN capability, which could allow local users to conduct unauthorized activities via (1) ipv4/ip_sockglue.c and (2) ipv6/ipv6_sockglue.c.
|19-10-2018 - 15:33||16-08-2005 - 04:00|
The sysctl functionality (sysctl.c) in Linux kernel before 220.127.116.11 allows local users to cause a denial of service (kernel oops) and possibly execute code by opening an interface file in /proc/sys/net/ipv4/conf/, waiting until the interface is unreg
|19-10-2018 - 15:33||20-11-2005 - 22:03|
The driver for compressed ISO file systems (zisofs) in the Linux kernel before 18.104.22.168 allows local users and remote attackers to cause a denial of service (kernel crash) via a crafted compressed ISO file system.
|19-10-2018 - 15:32||23-08-2005 - 04:00|
Stack-based buffer overflow in the sendmsg function call in the Linux kernel 2.6 before 22.214.171.124 allows local users to execute arbitrary code by calling sendmsg and modifying the message contents in another thread.
|19-10-2018 - 15:32||14-09-2005 - 19:03|
The coda_pioctl function in the coda functionality (pioctl.c) for Linux kernel 2.6.9 and 2.4.x before 2.4.29 may allow local users to cause a denial of service (crash) or execute arbitrary code via negative vi.in_size or vi.out_size values, which may
|19-10-2018 - 15:31||14-04-2005 - 04:00|
Linux kernel 2.6.16-rc2 and earlier, when running on x86_64 systems with preemption enabled, allows local users to cause a denial of service (oops) via multiple ptrace tasks that perform single steps, which can cause corruption of the DEBUG_STACK sta
|03-10-2018 - 21:36||27-03-2006 - 00:02|
Buffer overflow in sysctl in the Linux Kernel 2.6 before 2.6.15 allows local users to corrupt user memory and possibly cause a denial of service via a long string, which causes sysctl to write a zero byte outside the buffer. NOTE: since the sysctl i
|03-10-2018 - 21:34||31-12-2005 - 05:00|
wan/sdla.c in Linux kernel 2.6.x before 2.6.11 and 2.4.x before 2.4.29 does not require the CAP_SYS_RAWIO privilege for an SDLA firmware upgrade, with unknown impact and local attack vectors. NOTE: further investigation suggests that this issue requ
|03-10-2018 - 21:34||06-01-2006 - 11:03|
Memory leak in the ip6_input_finish function in ip6_input.c in Linux kernel 2.6.12 and earlier might allow attackers to cause a denial of service via malformed IPv6 packets with unspecified parameter problems, which prevents the SKB from being freed.
|03-10-2018 - 21:33||27-11-2005 - 22:03|
Memory leak in the icmp_push_reply function in Linux 2.6 before 126.96.36.199 and 2.6.13 allows remote attackers to cause a denial of service (memory consumption) via a large number of crafted packets that cause the ip_append_data function to fail, aka "D
|03-10-2018 - 21:33||27-11-2005 - 00:03|
The VT implementation (vt_ioctl.c) in Linux kernel 2.6.12, and possibly other versions including 188.8.131.52, allows local users to use the KDSKBSENT ioctl on terminals of other users and gain privileges, as demonstrated by modifying key bindings using
|03-10-2018 - 21:31||18-10-2005 - 22:02|
The netfilter/iptables module in Linux before 184.108.40.206 allows remote attackers to cause a denial of service (kernel crash) or bypass firewall rules via crafted packets, which are not properly handled by the skb_checksum_help function.
|03-10-2018 - 21:29||02-05-2005 - 04:00|
Multiple "overflows" in the io_edgeport driver for Linux kernel 2.4.x have unknown impact and unknown attack vectors.
|11-10-2017 - 01:29||31-12-2004 - 05:00|
Linux kernel 220.127.116.11 and earlier, when running on SPARC architectures, allows local users to cause a denial of service (hang) via a "date -s" command, which causes invalid sign extended arguments to be provided to the get_compat_timespec function ca
|20-07-2017 - 01:29||31-01-2006 - 19:03|
The handle_stop_signal function in signal.c in Linux kernel 2.6.11 up to other versions before 2.6.13 and 18.104.22.168 allows local users to cause a denial of service (deadlock) by sending a SIGKILL to a real-time threaded process while it is performing
|18-10-2016 - 03:37||27-11-2005 - 00:03|