Search CVE reports
101 – 110 of 146 results
CVE-2008-0163
Low priorityLinux kernel 2.6, when using vservers, allows local users to access resources of other vservers via a symlink attack in /proc.
5 affected packages
linux, linux-source-2.6.15, linux-source-2.6.17, linux-source-2.6.20, linux-source-2.6.22
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux | — | — | — | — | — |
| linux-source-2.6.15 | — | — | — | — | — |
| linux-source-2.6.17 | — | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — | — |
| linux-source-2.6.22 | — | — | — | — | — |
CVE-2008-0010
High priorityThe copy_from_user_mmap_sem function in fs/splice.c in the Linux kernel 2.6.22 through 2.6.24 does not validate a certain userspace pointer before dereference, which allow local users to read from arbitrary kernel memory locations.
5 affected packages
linux, linux-source-2.6.15, linux-source-2.6.17, linux-source-2.6.20, linux-source-2.6.22
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux | — | — | — | — | — |
| linux-source-2.6.15 | — | — | — | — | — |
| linux-source-2.6.17 | — | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — | — |
| linux-source-2.6.22 | — | — | — | — | — |
CVE-2008-0009
High priorityThe vmsplice_to_user function in fs/splice.c in the Linux kernel 2.6.22 through 2.6.24 does not validate a certain userspace pointer before dereference, which might allow local users to access arbitrary kernel memory locations.
5 affected packages
linux, linux-source-2.6.15, linux-source-2.6.17, linux-source-2.6.20, linux-source-2.6.22
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux | — | — | — | — | — |
| linux-source-2.6.15 | — | — | — | — | — |
| linux-source-2.6.17 | — | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — | — |
| linux-source-2.6.22 | — | — | — | — | — |
CVE-2008-0007
Low prioritySome fixes available 3 of 4
Linux kernel before 2.6.22.17, when using certain drivers that register a fault handler that does not perform range checks, allows local users to access kernel memory via an out-of-range offset.
5 affected packages
linux, linux-source-2.6.15, linux-source-2.6.17, linux-source-2.6.20, linux-source-2.6.22
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux | — | — | — | — | — |
| linux-source-2.6.15 | — | — | — | — | — |
| linux-source-2.6.17 | — | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — | — |
| linux-source-2.6.22 | — | — | — | — | — |
CVE-2007-6694
Low prioritySome fixes available 4 of 5
The chrp_show_cpuinfo function (chrp/setup.c) in Linux kernel 2.4.21 through 2.6.18-53, when running on PowerPC, might allow local users to cause a denial of service (crash) via unknown vectors that cause the of_get_property...
5 affected packages
linux, linux-source-2.6.15, linux-source-2.6.17, linux-source-2.6.20, linux-source-2.6.22
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux | — | — | — | — | — |
| linux-source-2.6.15 | — | — | — | — | — |
| linux-source-2.6.17 | — | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — | — |
| linux-source-2.6.22 | — | — | — | — | — |
CVE-2008-0352
Low priorityThe Linux kernel 2.6.20 through 2.6.21.1 allows remote attackers to cause a denial of service (panic) via a certain IPv6 packet, possibly involving the Jumbo Payload hop-by-hop option (jumbogram).
5 affected packages
linux, linux-source-2.6.15, linux-source-2.6.17, linux-source-2.6.20, linux-source-2.6.22
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux | — | — | — | — | — |
| linux-source-2.6.15 | — | — | — | — | — |
| linux-source-2.6.17 | — | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — | — |
| linux-source-2.6.22 | — | — | — | — | — |
CVE-2008-0001
Low priorityVFS in the Linux kernel before 2.6.22.16, and 2.6.23.x before 2.6.23.14, performs tests of access mode by using the flag variable instead of the acc_mode variable, which might allow local users to bypass intended permissions and...
5 affected packages
linux, linux-source-2.6.15, linux-source-2.6.17, linux-source-2.6.20, linux-source-2.6.22
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux | — | — | — | — | — |
| linux-source-2.6.15 | — | — | — | — | — |
| linux-source-2.6.17 | — | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — | — |
| linux-source-2.6.22 | — | — | — | — | — |
CVE-2007-4567
Medium priorityThe ipv6_hop_jumbo function in net/ipv6/exthdrs.c in the Linux kernel before 2.6.22 does not properly validate the hop-by-hop IPv6 extended header, which allows remote attackers to cause a denial of service (NULL pointer...
4 affected packages
linux-source-2.6.15, linux-source-2.6.17, linux-source-2.6.20, linux-source-2.6.22
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux-source-2.6.15 | — | — | — | — | — |
| linux-source-2.6.17 | — | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — | — |
| linux-source-2.6.22 | — | — | — | — | — |
CVE-2007-5966
Medium priorityInteger overflow in the hrtimer_start function in kernel/hrtimer.c in the Linux kernel before 2.6.23.10 allows local users to execute arbitrary code or cause a denial of service (panic) via a large relative timeout value. NOTE:...
5 affected packages
linux, linux-source-2.6.15, linux-source-2.6.17, linux-source-2.6.20, linux-source-2.6.22
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux | — | — | — | — | — |
| linux-source-2.6.15 | — | — | — | — | — |
| linux-source-2.6.17 | — | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — | — |
| linux-source-2.6.22 | — | — | — | — | — |
CVE-2007-6434
Medium priorityLinux kernel 2.6.23 allows local users to create low pages in virtual userspace memory and bypass mmap_min_addr protection via a crafted executable file that calls the do_brk function.
5 affected packages
linux, linux-source-2.6.15, linux-source-2.6.17, linux-source-2.6.20, linux-source-2.6.22
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux | — | — | — | — | — |
| linux-source-2.6.15 | — | — | — | — | — |
| linux-source-2.6.17 | — | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — | — |
| linux-source-2.6.22 | — | — | — | — | — |