Max CVSS | 7.7 | Min CVSS | 2.1 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2017-10661 | 7.6 |
Race condition in fs/timerfd.c in the Linux kernel before 4.10.15 allows local users to gain privileges or cause a denial of service (list corruption or use-after-free) via simultaneous file-descriptor operations that leverage improper might_cancel q
|
14-03-2024 - 19:59 | 19-08-2017 - 18:29 | |
CVE-2017-11600 | 6.9 |
net/xfrm/xfrm_policy.c in the Linux kernel through 4.12.3, when CONFIG_XFRM_MIGRATE is enabled, does not ensure that the dir value of xfrm_userpolicy_id is XFRM_POLICY_MAX or less, which allows local users to cause a denial of service (out-of-bounds
|
26-06-2023 - 16:55 | 24-07-2017 - 07:29 | |
CVE-2017-12146 | 6.9 |
The driver_override implementation in drivers/base/platform.c in the Linux kernel before 4.12.1 allows local users to gain privileges by leveraging a race condition between a read operation and a store operation that involve different overrides.
|
21-06-2023 - 20:59 | 08-09-2017 - 19:29 | |
CVE-2017-1000112 | 6.9 |
Linux kernel: Exploitable memory corruption due to UFO to non-UFO path switch. When building a UFO packet with MSG_MORE __ip_append_data() calls ip_ufo_append_data() to append. However in between two send() calls, the append path can be switched from
|
07-06-2023 - 12:46 | 05-10-2017 - 01:29 | |
CVE-2017-7558 | 5.0 |
A kernel data leak due to an out-of-bound read was found in the Linux kernel in inet_diag_msg_sctp{,l}addr_fill() and sctp_get_sctp_info() functions present since version 4.7-rc1 through version 4.13. A data leak happens when these functions fill in
|
12-02-2023 - 23:31 | 26-07-2018 - 15:29 | |
CVE-2017-12154 | 3.6 |
The prepare_vmcs02 function in arch/x86/kvm/vmx.c in the Linux kernel through 4.13.3 does not ensure that the "CR8-load exiting" and "CR8-store exiting" L0 vmcs02 controls exist in cases where L1 omits the "use TPR shadow" vmcs12 control, which allow
|
12-02-2023 - 23:27 | 26-09-2017 - 05:29 | |
CVE-2017-1000251 | 7.7 |
The native Bluetooth stack in the Linux Kernel (BlueZ), starting at the Linux kernel version 2.6.32 and up to and including 4.13.1, are vulnerable to a stack overflow vulnerability in the processing of L2CAP configuration responses resulting in Remot
|
19-01-2023 - 15:53 | 12-09-2017 - 17:29 | |
CVE-2017-14497 | 7.2 |
The tpacket_rcv function in net/packet/af_packet.c in the Linux kernel before 4.13 mishandles vnet headers, which might allow local users to cause a denial of service (buffer overflow, and disk and memory corruption) or possibly have unspecified othe
|
19-01-2023 - 15:48 | 15-09-2017 - 18:29 | |
CVE-2017-1000111 | 7.2 |
Linux kernel: heap out-of-bounds in AF_PACKET sockets. This new issue is analogous to previously disclosed CVE-2016-8655. In both cases, a socket option that changes socket state may race with safety checks in packet_set_ring. Previously with PACKET_
|
17-01-2023 - 21:04 | 05-10-2017 - 01:29 | |
CVE-2017-1000370 | 7.2 |
The offset2lib patch as used in the Linux Kernel contains a vulnerability that allows a PIE binary to be execve()'ed with 1GB of arguments or environmental strings then the stack occupies the address 0x80000000 and the PIE binary is mapped above 0x40
|
17-01-2023 - 21:03 | 19-06-2017 - 16:29 | |
CVE-2017-1000371 | 7.2 |
The offset2lib patch as used by the Linux Kernel contains a vulnerability, if RLIMIT_STACK is set to RLIM_INFINITY and 1 Gigabyte of memory is allocated (the maximum under the 1/4 restriction) then the stack will be grown down to 0x80000000, and as t
|
17-01-2023 - 21:03 | 19-06-2017 - 16:29 | |
CVE-2017-7518 | 4.6 |
A flaw was found in the Linux kernel before version 4.12 in the way the KVM module processed the trap flag(TF) bit in EFLAGS during emulation of the syscall instruction, which leads to a debug exception(#DB) being raised in the guest stack. A user/pr
|
09-10-2019 - 23:29 | 30-07-2018 - 15:29 | |
CVE-2017-12153 | 4.9 |
A security flaw was discovered in the nl80211_set_rekey_data() function in net/wireless/nl80211.c in the Linux kernel through 4.13.3. This function does not check whether the required attributes are present in a Netlink request. This request can be i
|
09-10-2019 - 23:22 | 21-09-2017 - 15:29 | |
CVE-2017-12134 | 7.2 |
The xen_biovec_phys_mergeable function in drivers/xen/biomerge.c in Xen might allow local OS guest users to corrupt block device data streams and consequently obtain sensitive memory information, cause a denial of service, or gain host OS privileges
|
03-10-2019 - 00:03 | 24-08-2017 - 14:29 | |
CVE-2017-1000252 | 2.1 |
The KVM subsystem in the Linux kernel through 4.13.3 allows guest OS users to cause a denial of service (assertion failure, and hypervisor hang or crash) via an out-of bounds guest_irq value, related to arch/x86/kvm/vmx.c and virt/kvm/eventfd.c.
|
03-10-2019 - 00:03 | 26-09-2017 - 05:29 | |
CVE-2017-14106 | 4.9 |
The tcp_disconnect function in net/ipv4/tcp.c in the Linux kernel before 4.12 allows local users to cause a denial of service (__tcp_select_window divide-by-zero error and system crash) by triggering a disconnect within a certain tcp_recvmsg code pat
|
13-07-2018 - 01:29 | 01-09-2017 - 16:29 | |
CVE-2017-14140 | 2.1 |
The move_pages system call in mm/migrate.c in the Linux kernel before 4.12.9 doesn't check the effective uid of the target process, enabling a local attacker to learn the memory layout of a setuid executable despite ASLR.
|
12-04-2018 - 01:29 | 05-09-2017 - 06:29 | |
CVE-2017-14489 | 4.9 |
The iscsi_if_rx function in drivers/scsi/scsi_transport_iscsi.c in the Linux kernel through 4.13.2 allows local users to cause a denial of service (panic) by leveraging incorrect length validation.
|
16-03-2018 - 01:29 | 15-09-2017 - 10:29 | |
CVE-2017-14156 | 2.1 |
The atyfb_ioctl function in drivers/video/fbdev/aty/atyfb_base.c in the Linux kernel through 4.12.10 does not initialize a certain data structure, which allows local users to obtain sensitive information from kernel stack memory by reading locations
|
16-03-2018 - 01:29 | 05-09-2017 - 17:29 | |
CVE-2017-14340 | 4.9 |
The XFS_IS_REALTIME_INODE macro in fs/xfs/xfs_linux.h in the Linux kernel before 4.13.2 does not verify that a filesystem has a realtime device, which allows local users to cause a denial of service (NULL pointer dereference and OOPS) via vectors rel
|
07-12-2017 - 02:29 | 15-09-2017 - 11:29 | |
CVE-2017-1000380 | 2.1 |
sound/core/timer.c in the Linux kernel before 4.11.5 is vulnerable to a data race in the ALSA /dev/snd/timer driver resulting in local users being able to read information belonging to other users, i.e., uninitialized memory contents may be disclosed
|
06-12-2017 - 02:29 | 17-06-2017 - 18:29 |