Max CVSS | 10.0 | Min CVSS | 2.1 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2016-2143 | 6.9 |
The fork implementation in the Linux kernel before 4.5 on s390 platforms mishandles the case of four page-table levels, which allows local users to cause a denial of service (system crash) or possibly have unspecified other impact via a crafted appli
|
14-03-2024 - 19:59 | 27-04-2016 - 17:59 | |
CVE-2016-4482 | 2.1 |
The proc_connectinfo function in drivers/usb/core/devio.c in the Linux kernel through 4.6 does not initialize a certain data structure, which allows local users to obtain sensitive information from kernel stack memory via a crafted USBDEVFS_CONNECTIN
|
12-09-2023 - 14:55 | 23-05-2016 - 10:59 | |
CVE-2016-4997 | 7.2 |
The compat IPT_SO_SET_REPLACE and IP6T_SO_SET_REPLACE setsockopt implementations in the netfilter subsystem in the Linux kernel before 4.6.3 allow local users to gain privileges or cause a denial of service (memory corruption) by leveraging in-contai
|
12-09-2023 - 14:55 | 03-07-2016 - 21:59 | |
CVE-2016-3134 | 7.2 |
The netfilter subsystem in the Linux kernel through 4.5.2 does not validate certain offset fields, which allows local users to gain privileges or cause a denial of service (heap memory corruption) via an IPT_SO_SET_REPLACE setsockopt call.
|
12-09-2023 - 14:55 | 27-04-2016 - 17:59 | |
CVE-2016-4569 | 2.1 |
The snd_timer_user_params function in sound/core/timer.c in the Linux kernel through 4.6 does not initialize a certain data structure, which allows local users to obtain sensitive information from kernel stack memory via crafted use of the ALSA timer
|
12-09-2023 - 14:55 | 23-05-2016 - 10:59 | |
CVE-2016-3156 | 2.1 |
The IPv4 implementation in the Linux kernel before 4.5.2 mishandles destruction of device objects, which allows guest OS users to cause a denial of service (host OS networking outage) by arranging for a large number of IP addresses.
|
12-09-2023 - 14:55 | 27-04-2016 - 17:59 | |
CVE-2016-4486 | 2.1 |
The rtnl_fill_link_ifmap function in net/core/rtnetlink.c in the Linux kernel before 4.5.5 does not initialize a certain data structure, which allows local users to obtain sensitive information from kernel stack memory by reading a Netlink message.
|
12-09-2023 - 14:55 | 23-05-2016 - 10:59 | |
CVE-2016-3138 | 4.9 |
The acm_probe function in drivers/usb/class/cdc-acm.c in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) via a USB device without both a control and a data e
|
12-09-2023 - 14:55 | 02-05-2016 - 10:59 | |
CVE-2016-3137 | 4.9 |
drivers/usb/serial/cypress_m8.c in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) via a USB device without both an interrupt-in and an interrupt-out endpoin
|
12-09-2023 - 14:55 | 02-05-2016 - 10:59 | |
CVE-2016-2184 | 4.9 |
The create_fixed_stream_quirk function in sound/usb/quirks.c in the snd-usb-audio driver in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of service (NULL pointer dereference or double free, and system crash) v
|
12-09-2023 - 14:55 | 27-04-2016 - 17:59 | |
CVE-2016-3140 | 4.9 |
The digi_port_init function in drivers/usb/serial/digi_acceleport.c in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) via a crafted endpoints value in a USB
|
12-09-2023 - 14:55 | 02-05-2016 - 10:59 | |
CVE-2016-2186 | 4.9 |
The powermate_probe function in drivers/input/misc/powermate.c in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) via a crafted endpoints value in a USB devi
|
12-09-2023 - 14:55 | 02-05-2016 - 10:59 | |
CVE-2016-3136 | 4.9 |
The mct_u232_msr_to_state function in drivers/usb/serial/mct_u232.c in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) via a crafted USB device without two i
|
12-09-2023 - 14:55 | 02-05-2016 - 10:59 | |
CVE-2016-2185 | 4.9 |
The ati_remote2_probe function in drivers/input/misc/ati_remote2.c in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) via a crafted endpoints value in a USB
|
12-09-2023 - 14:55 | 02-05-2016 - 10:59 | |
CVE-2016-3672 | 4.6 |
The arch_pick_mmap_layout function in arch/x86/mm/mmap.c in the Linux kernel through 4.5.2 does not properly randomize the legacy base address, which makes it easier for local users to defeat the intended restrictions on the ADDR_NO_RANDOMIZE flag, a
|
12-09-2023 - 14:55 | 27-04-2016 - 17:59 | |
CVE-2016-1583 | 7.2 |
The ecryptfs_privileged_open function in fs/ecryptfs/kthread.c in the Linux kernel before 4.6.3 allows local users to gain privileges or cause a denial of service (stack memory consumption) via vectors involving crafted mmap calls for /proc pathnames
|
12-09-2023 - 14:55 | 27-06-2016 - 10:59 | |
CVE-2016-4913 | 7.2 |
The get_rock_ridge_filename function in fs/isofs/rock.c in the Linux kernel before 4.5.5 mishandles NM (aka alternate name) entries containing \0 characters, which allows local users to obtain sensitive information from kernel memory or possibly have
|
12-09-2023 - 14:45 | 23-05-2016 - 10:59 | |
CVE-2016-4485 | 5.0 |
The llc_cmsg_rcv function in net/llc/af_llc.c in the Linux kernel before 4.5.5 does not initialize a certain data structure, which allows attackers to obtain sensitive information from kernel stack memory by reading a message.
|
12-09-2023 - 14:45 | 23-05-2016 - 10:59 | |
CVE-2016-2187 | 4.9 |
The gtco_probe function in drivers/input/tablet/gtco.c in the Linux kernel through 4.5.2 allows physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) via a crafted endpoints value in a USB device desc
|
12-09-2023 - 14:45 | 02-05-2016 - 10:59 | |
CVE-2016-4998 | 5.6 |
The IPT_SO_SET_REPLACE setsockopt implementation in the netfilter subsystem in the Linux kernel before 4.6 allows local users to cause a denial of service (out-of-bounds read) or possibly obtain sensitive information from kernel heap memory by levera
|
12-02-2023 - 23:22 | 03-07-2016 - 21:59 | |
CVE-2016-4581 | 4.9 |
fs/pnode.c in the Linux kernel before 4.5.4 does not properly traverse a mount propagation tree in a certain case involving a slave mount, which allows local users to cause a denial of service (NULL pointer dereference and OOPS) via a crafted series
|
12-02-2023 - 23:22 | 23-05-2016 - 10:59 | |
CVE-2016-4470 | 4.9 |
The key_reject_and_link function in security/keys/key.c in the Linux kernel through 4.6.3 does not ensure that a certain data structure is initialized, which allows local users to cause a denial of service (system crash) via vectors involving a craft
|
12-02-2023 - 23:21 | 27-06-2016 - 10:59 | |
CVE-2016-3070 | 4.6 |
The trace_writeback_dirty_page implementation in include/trace/events/writeback.h in the Linux kernel before 4.4 improperly interacts with mm/migrate.c, which allows local users to cause a denial of service (NULL pointer dereference and system crash)
|
12-02-2023 - 23:18 | 06-08-2016 - 20:59 | |
CVE-2016-2117 | 5.0 |
The atl2_probe function in drivers/net/ethernet/atheros/atlx/atl2.c in the Linux kernel through 4.5.2 incorrectly enables scatter/gather I/O, which allows remote attackers to obtain sensitive information from kernel memory by reading packet data.
|
12-02-2023 - 23:17 | 02-05-2016 - 10:59 | |
CVE-2016-4565 | 7.2 |
The InfiniBand (aka IB) stack in the Linux kernel before 4.5.3 incorrectly relies on the write system call, which allows local users to cause a denial of service (kernel memory write operation) or possibly have unspecified other impact via a uAPI int
|
17-01-2023 - 21:40 | 23-05-2016 - 10:59 | |
CVE-2016-4805 | 7.2 |
Use-after-free vulnerability in drivers/net/ppp/ppp_generic.c in the Linux kernel before 4.5.2 allows local users to cause a denial of service (memory corruption and system crash, or spinlock) or possibly have unspecified other impact by removing a n
|
17-01-2023 - 21:18 | 23-05-2016 - 10:59 | |
CVE-2016-3955 | 10.0 |
The usbip_recv_xbuff function in drivers/usb/usbip/usbip_common.c in the Linux kernel before 4.5.3 allows remote attackers to cause a denial of service (out-of-bounds write) or possibly have unspecified other impact via a crafted length value in a US
|
03-11-2022 - 20:31 | 03-07-2016 - 21:59 | |
CVE-2016-0821 | 2.1 |
The LIST_POISON feature in include/linux/poison.h in the Linux kernel before 4.3, as used in Android 6.0.1 before 2016-03-01, does not properly consider the relationship to the mmap_min_addr value, which makes it easier for attackers to bypass a pois
|
31-01-2022 - 17:54 | 12-03-2016 - 21:59 | |
CVE-2015-7515 | 4.9 |
The aiptek_probe function in drivers/input/tablet/aiptek.c in the Linux kernel before 4.4 allows physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) via a crafted USB device that lacks endpoints.
|
18-01-2022 - 19:25 | 27-04-2016 - 17:59 | |
CVE-2016-5244 | 5.0 |
The rds_inc_info_copy function in net/rds/recv.c in the Linux kernel through 4.6.3 does not initialize a certain structure member, which allows remote attackers to obtain sensitive information from kernel stack memory by reading an RDS message.
|
22-04-2019 - 17:48 | 27-06-2016 - 10:59 | |
CVE-2016-4578 | 2.1 |
sound/core/timer.c in the Linux kernel through 4.6 does not initialize certain r1 data structures, which allows local users to obtain sensitive information from kernel stack memory via crafted use of the ALSA timer interface, related to the (1) snd_t
|
25-03-2019 - 18:58 | 23-05-2016 - 10:59 | |
CVE-2016-3951 | 4.9 |
Double free vulnerability in drivers/net/usb/cdc_ncm.c in the Linux kernel before 4.5 allows physically proximate attackers to cause a denial of service (system crash) or possibly have unspecified other impact by inserting a USB device with an invali
|
13-08-2017 - 01:29 | 02-05-2016 - 10:59 | |
CVE-2016-3157 | 7.2 |
The __switch_to function in arch/x86/kernel/process_64.c in the Linux kernel does not properly context-switch IOPL on 64-bit PV Xen guests, which allows local guest OS users to gain privileges, cause a denial of service (guest OS crash), or obtain se
|
03-12-2016 - 03:26 | 12-04-2016 - 16:59 | |
CVE-2016-5243 | 2.1 |
The tipc_nl_compat_link_dump function in net/tipc/netlink_compat.c in the Linux kernel through 4.6.3 does not properly copy a certain string, which allows local users to obtain sensitive information from kernel stack memory by reading a Netlink messa
|
28-11-2016 - 20:23 | 27-06-2016 - 10:59 | |
CVE-2016-4580 | 5.0 |
The x25_negotiate_facilities function in net/x25/x25_facilities.c in the Linux kernel before 4.5.5 does not properly initialize a certain data structure, which allows attackers to obtain sensitive information from kernel stack memory via an X.25 Call
|
28-11-2016 - 20:19 | 23-05-2016 - 10:59 | |
CVE-2016-3961 | 2.1 |
Xen and the Linux kernel through 4.5.x do not properly suppress hugetlbfs support in x86 PV guests, which allows local PV guest OS users to cause a denial of service (guest OS crash) by attempting to access a hugetlbfs mapped area.
|
28-11-2016 - 20:14 | 15-04-2016 - 14:59 | |
CVE-2016-1237 | 4.9 |
nfsd in the Linux kernel through 4.6.3 allows local users to bypass intended file-permission restrictions by setting a POSIX ACL, related to nfs2acl.c, nfs3acl.c, and nfs4acl.c.
|
28-11-2016 - 19:58 | 29-06-2016 - 14:10 |