| Max CVSS | 2.1 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2014-9644 | 2.1 |
The Crypto API in the Linux kernel before 3.18.5 allows local users to load arbitrary kernel modules via a bind system call for an AF_ALG socket with a parenthesized module template expression in the salg_name field, as demonstrated by the vfat(aes)
|
21-05-2020 - 13:11 | 02-03-2015 - 11:59 | |
| CVE-2013-7421 | 2.1 |
The Crypto API in the Linux kernel before 3.18.5 allows local users to load arbitrary kernel modules via a bind system call for an AF_ALG socket with a module name in the salg_name field, a different vulnerability than CVE-2014-9644.
|
19-05-2020 - 14:32 | 02-03-2015 - 11:59 | |
| CVE-2014-9645 | 2.1 |
The add_probe function in modutils/modprobe.c in BusyBox before 1.23.0 allows local users to bypass intended restrictions on loading kernel modules via a / (slash) character in a module name, as demonstrated by an "ifconfig /usbserial up" command or
|
03-04-2019 - 15:29 | 12-03-2017 - 06:59 |