Max CVSS | 9.0 | Min CVSS | 1.9 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2015-3290 | 7.2 |
arch/x86/entry/entry_64.S in the Linux kernel before 4.1.6 on the x86_64 platform improperly relies on espfix64 during nested NMI processing, which allows local users to gain privileges by triggering an NMI within a certain instruction window.
|
05-02-2024 - 20:15 | 31-08-2015 - 10:59 | |
CVE-2015-3212 | 4.9 |
Race condition in net/sctp/socket.c in the Linux kernel before 4.1.2 allows local users to cause a denial of service (list corruption and panic) via a rapid series of system calls related to sockets, as demonstrated by setsockopt calls.
|
13-02-2023 - 00:48 | 31-08-2015 - 10:59 | |
CVE-2015-5364 | 7.8 |
The (1) udp_recvmsg and (2) udpv6_recvmsg functions in the Linux kernel before 4.0.6 do not properly consider yielding a processor, which allows remote attackers to cause a denial of service (system hang) via incorrect checksums within a UDP packet f
|
02-02-2023 - 19:17 | 31-08-2015 - 10:59 | |
CVE-2015-1465 | 7.8 |
The IPv4 implementation in the Linux kernel before 3.18.8 does not properly consider the length of the Read-Copy Update (RCU) grace period for redirecting lookups in the absence of caching, which allows remote attackers to cause a denial of service (
|
26-01-2023 - 18:54 | 05-04-2015 - 21:59 | |
CVE-2015-4003 | 7.8 |
The oz_usb_handle_ep_data function in drivers/staging/ozwpan/ozusbsvc1.c in the OZWPAN driver in the Linux kernel through 4.0.5 allows remote attackers to cause a denial of service (divide-by-zero error and system crash) via a crafted packet.
|
20-01-2023 - 03:01 | 07-06-2015 - 23:59 | |
CVE-2015-4002 | 9.0 |
drivers/staging/ozwpan/ozusbsvc1.c in the OZWPAN driver in the Linux kernel through 4.0.5 does not ensure that certain length values are sufficiently large, which allows remote attackers to cause a denial of service (system crash or large loop) or po
|
03-11-2022 - 02:03 | 07-06-2015 - 23:59 | |
CVE-2015-3636 | 4.9 |
The ping_unhash function in net/ipv4/ping.c in the Linux kernel before 4.0.3 does not initialize a certain list data structure during an unhash operation, which allows local users to gain privileges or cause a denial of service (use-after-free and sy
|
22-04-2019 - 17:48 | 06-08-2015 - 01:59 | |
CVE-2015-4700 | 4.9 |
The bpf_int_jit_compile function in arch/x86/net/bpf_jit_comp.c in the Linux kernel before 4.0.6 allows local users to cause a denial of service (system crash) by creating a packet filter and then loading crafted BPF instructions that trigger late co
|
08-04-2019 - 20:29 | 31-08-2015 - 10:59 | |
CVE-2015-2041 | 4.6 |
net/llc/sysctl_net_llc.c in the Linux kernel before 3.19 uses an incorrect data type in a sysctl table, which allows local users to obtain potentially sensitive information from kernel memory or possibly have unspecified other impact by accessing a s
|
17-10-2018 - 19:00 | 21-04-2015 - 10:59 | |
CVE-2015-5366 | 5.0 |
The (1) udp_recvmsg and (2) udpv6_recvmsg functions in the Linux kernel before 4.0.6 provide inappropriate -EAGAIN return values, which allows remote attackers to cause a denial of service (EPOLLET epoll application read outage) via an incorrect chec
|
05-01-2018 - 02:30 | 31-08-2015 - 10:59 | |
CVE-2015-2922 | 3.3 |
The ndisc_router_discovery function in net/ipv6/ndisc.c in the Neighbor Discovery (ND) protocol implementation in the IPv6 stack in the Linux kernel before 3.19.6 allows remote attackers to reconfigure a hop-limit setting via a small hop_limit value
|
05-01-2018 - 02:30 | 27-05-2015 - 10:59 | |
CVE-2015-4692 | 4.9 |
The kvm_apic_has_events function in arch/x86/kvm/lapic.h in the Linux kernel through 4.1.3 allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact by leveraging /dev/kvm ac
|
22-09-2017 - 01:29 | 27-07-2015 - 10:59 | |
CVE-2014-9731 | 2.1 |
The UDF filesystem implementation in the Linux kernel before 3.18.2 does not ensure that space is available for storing a symlink target's name along with a trailing \0 character, which allows local users to obtain sensitive information via a crafted
|
13-07-2017 - 01:29 | 31-08-2015 - 10:59 | |
CVE-2015-3339 | 6.2 |
Race condition in the prepare_binprm function in fs/exec.c in the Linux kernel before 3.19.6 allows local users to gain privileges by executing a setuid program at a time instant when a chown to root is in progress, and the ownership is changed but t
|
31-12-2016 - 02:59 | 27-05-2015 - 10:59 | |
CVE-2015-4001 | 9.0 |
Integer signedness error in the oz_hcd_get_desc_cnf function in drivers/staging/ozwpan/ozhcd.c in the OZWPAN driver in the Linux kernel through 4.0.5 allows remote attackers to cause a denial of service (system crash) or possibly execute arbitrary co
|
28-12-2016 - 02:59 | 07-06-2015 - 23:59 | |
CVE-2015-1420 | 1.9 |
Race condition in the handle_to_path function in fs/fhandle.c in the Linux kernel through 3.19.1 allows local users to bypass intended size restrictions and trigger read operations on additional memory locations by changing the handle_bytes value of
|
28-12-2016 - 02:59 | 16-03-2015 - 10:59 | |
CVE-2014-9728 | 4.9 |
The UDF filesystem implementation in the Linux kernel before 3.18.2 does not validate certain lengths, which allows local users to cause a denial of service (buffer over-read and system crash) via a crafted filesystem image, related to fs/udf/inode.c
|
22-12-2016 - 02:59 | 31-08-2015 - 10:59 | |
CVE-2014-9730 | 4.9 |
The udf_pc_to_char function in fs/udf/symlink.c in the Linux kernel before 3.18.2 relies on component lengths that are unused, which allows local users to cause a denial of service (system crash) via a crafted UDF filesystem image.
|
22-12-2016 - 02:59 | 31-08-2015 - 10:59 | |
CVE-2014-9729 | 4.9 |
The udf_read_inode function in fs/udf/inode.c in the Linux kernel before 3.18.2 does not ensure a certain data-structure size consistency, which allows local users to cause a denial of service (system crash) via a crafted UDF filesystem image.
|
22-12-2016 - 02:59 | 31-08-2015 - 10:59 | |
CVE-2015-4167 | 4.7 |
The udf_read_inode function in fs/udf/inode.c in the Linux kernel before 3.19.1 does not validate certain length values, which allows local users to cause a denial of service (incorrect data representation or integer overflow, and OOPS) via a crafted
|
22-12-2016 - 02:59 | 05-08-2015 - 18:59 | |
CVE-2015-4036 | 7.2 |
Array index error in the tcm_vhost_make_tpg function in drivers/vhost/scsi.c in the Linux kernel before 4.0 might allow guest OS users to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted VHOST_SCSI
|
22-12-2016 - 02:59 | 31-08-2015 - 20:59 |