| Max CVSS | 7.8 | Min CVSS | 4.6 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2017-1000370 | 7.2 |
The offset2lib patch as used in the Linux Kernel contains a vulnerability that allows a PIE binary to be execve()'ed with 1GB of arguments or environmental strings then the stack occupies the address 0x80000000 and the PIE binary is mapped above 0x40
|
17-01-2023 - 21:03 | 19-06-2017 - 16:29 | |
| CVE-2017-1000371 | 7.2 |
The offset2lib patch as used by the Linux Kernel contains a vulnerability, if RLIMIT_STACK is set to RLIM_INFINITY and 1 Gigabyte of memory is allocated (the maximum under the 1/4 restriction) then the stack will be grown down to 0x80000000, and as t
|
17-01-2023 - 21:03 | 19-06-2017 - 16:29 | |
| CVE-2017-1000379 | 7.2 |
The Linux Kernel running on AMD64 systems will sometimes map the contents of PIE executable, the heap or ld.so to where the stack is mapped allowing attackers to more easily manipulate the stack. Linux Kernel version 4.11.5 is affected.
|
17-01-2023 - 21:03 | 19-06-2017 - 16:29 | |
| CVE-2017-1000366 | 7.2 |
glibc contains a vulnerability that allows specially crafted LD_LIBRARY_PATH values to manipulate the heap/stack, causing them to alias, potentially resulting in arbitrary code execution. Please note that additional hardening changes have been made t
|
15-10-2020 - 13:28 | 19-06-2017 - 16:29 | |
| CVE-2017-3630 | 4.6 |
Vulnerability in the Solaris component of Oracle Sun Systems Products Suite (subcomponent: Kernel). Supported versions that are affected are 10 and 11. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure w
|
03-10-2019 - 00:03 | 22-06-2017 - 13:29 | |
| CVE-2017-3631 | 4.6 |
Vulnerability in the Solaris component of Oracle Sun Systems Products Suite (subcomponent: Kernel). The supported version that is affected is 11. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where S
|
03-10-2019 - 00:03 | 22-06-2017 - 13:29 | |
| CVE-2017-3629 | 7.2 |
Vulnerability in the Solaris component of Oracle Sun Systems Products Suite (subcomponent: Kernel). Supported versions that are affected are 10 and 11. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure w
|
03-10-2019 - 00:03 | 22-06-2017 - 13:29 | |
| CVE-2017-1084 | 7.8 |
In FreeBSD before 11.2-RELEASE, multiple issues with the implementation of the stack guard-page reduce the protections afforded by the guard-page. This results in the possibility a poorly written process could be cause a stack overflow.
|
23-11-2018 - 17:18 | 12-09-2018 - 14:29 | |
| CVE-2017-1085 | 7.2 |
In FreeBSD before 11.2-RELEASE, an application which calls setrlimit() to increase RLIMIT_STACK may turn a read-only memory region below the stack into a read-write region. A specially crafted executable could be exploited to execute arbitrary code i
|
23-11-2018 - 16:57 | 12-09-2018 - 14:29 | |
| CVE-2007-4033 | 7.5 |
Buffer overflow in the intT1_EnvGetCompletePath function in lib/t1lib/t1env.c in t1lib 5.1.1 allows context-dependent attackers to execute arbitrary code via a long FileName parameter. NOTE: this issue was originally reported to be in the imagepsloa
|
15-10-2018 - 21:32 | 27-07-2007 - 22:30 | |
| CVE-2017-1000373 | 6.4 |
The OpenBSD qsort() function is recursive, and not randomized, an attacker can construct a pathological input array of N elements that causes qsort() to deterministically recurse N/4 times. This allows attackers to consume arbitrary amounts of stack
|
24-10-2017 - 01:29 | 19-06-2017 - 16:29 | |
| CVE-2017-1000375 | 7.5 |
NetBSD maps the run-time link-editor ld.so directly below the stack region, even if ASLR is enabled, this allows attackers to more easily manipulate memory leading to arbitrary code execution. This affects NetBSD 7.1 and possibly earlier versions.
|
12-08-2017 - 01:29 | 19-06-2017 - 16:29 |