Search CVE reports

21 – 30 of 726 results

Detailed view

Sort by:

CVE-2014-9717

Medium priority

Ignored

fs/namespace.c in the Linux kernel before 4.0.2 processes MNT_DETACH umount2 system calls without verifying that the MNT_LOCKED flag is unset, which allows local users to bypass intended access restrictions and navigate to...

30 affected packages

linux, linux-armadaxp, linux-aws, linux-ec2, linux-flo...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
linux	—	—	—	—
linux-armadaxp	—	—	—	—
linux-aws	—	—	—	—
linux-ec2	—	—	—	—
linux-flo	—	—	—	—
linux-fsl-imx51	—	—	—	—
linux-gke	—	—	—	—
linux-goldfish	—	—	—	—
linux-grouper	—	—	—	—
linux-hwe	—	—	—	—
linux-hwe-edge	—	—	—	—
linux-linaro-omap	—	—	—	—
linux-linaro-shared	—	—	—	—
linux-linaro-vexpress	—	—	—	—
linux-lts-quantal	—	—	—	—
linux-lts-raring	—	—	—	—
linux-lts-saucy	—	—	—	—
linux-lts-trusty	—	—	—	—
linux-lts-utopic	—	—	—	—
linux-lts-vivid	—	—	—	—
linux-lts-wily	—	—	—	—
linux-lts-xenial	—	—	—	—
linux-maguro	—	—	—	—
linux-mako	—	—	—	—
linux-manta	—	—	—	—
linux-mvl-dove	—	—	—	—
linux-qcm-msm	—	—	—	—
linux-raspi2	—	—	—	—
linux-snapdragon	—	—	—	—
linux-ti-omap4	—	—	—	—

CVE-2011-5321

Medium priority

Ignored

The tty_open function in drivers/tty/tty_io.c in the Linux kernel before 3.1.1 mishandles a driver-lookup failure, which allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have...

24 affected packages

linux, linux-2.6, linux-armadaxp, linux-ec2, linux-flo...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
linux	—	—	—	—
linux-2.6	—	—	—	—
linux-armadaxp	—	—	—	—
linux-ec2	—	—	—	—
linux-flo	—	—	—	—
linux-fsl-imx51	—	—	—	—
linux-goldfish	—	—	—	—
linux-grouper	—	—	—	—
linux-linaro-omap	—	—	—	—
linux-linaro-shared	—	—	—	—
linux-linaro-vexpress	—	—	—	—
linux-lts-quantal	—	—	—	—
linux-lts-raring	—	—	—	—
linux-lts-saucy	—	—	—	—
linux-lts-trusty	—	—	—	—
linux-lts-utopic	—	—	—	—
linux-lts-vivid	—	—	—	—
linux-maguro	—	—	—	—
linux-mako	—	—	—	—
linux-manta	—	—	—	—
linux-mvl-dove	—	—	—	—
linux-qcm-msm	—	—	—	—
linux-raspi2	—	—	—	—
linux-ti-omap4	—	—	—	—

CVE-2015-1350

Low priority

Some fixes available 11 of 55

The VFS subsystem in the Linux kernel 3.x provides an incomplete set of requirements for setattr operations that underspecifies removing extended privilege attributes, which allows local users to cause a denial of...

114 affected packages

linux, linux-armadaxp, linux-aws, linux-aws-5.0, linux-aws-5.15...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
linux	Not affected	Not affected	Not affected	Not affected
linux-armadaxp	—	—	Not in release	Not in release
linux-aws	Not affected	Not affected	Not affected	Not affected
linux-aws-5.0	Not in release	Not in release	Not in release	Not affected
linux-aws-5.15	Not in release	Not in release	Not affected	Not in release
linux-aws-5.3	Not in release	Not in release	Not in release	Not affected
linux-aws-5.4	Not in release	Not in release	Not in release	Not affected
linux-aws-6.8	Not in release	Not affected	Not in release	Not in release
linux-aws-fips	Not in release	Not affected	Not affected	Not affected
linux-aws-hwe	Not in release	Not in release	Not in release	Not in release
linux-azure	Not affected	Not affected	Not affected	Not affected
linux-azure-4.15	Not in release	Not in release	Not in release	Not affected
linux-azure-5.15	Not in release	Not in release	Not affected	Not in release
linux-azure-5.3	Not in release	Not in release	Not in release	Not affected
linux-azure-5.4	Not in release	Not in release	Not in release	Not affected
linux-azure-6.11	Not affected	Not in release	Not in release	Not in release
linux-azure-6.8	Not in release	Not affected	Not in release	Not in release
linux-azure-edge	Not in release	Not in release	Not in release	Not affected
linux-azure-fde	Not in release	Not affected	Ignored	Not in release
linux-azure-fde-5.15	Not in release	Not in release	Not affected	Not in release
linux-azure-fips	Not in release	Not affected	Not affected	Not affected
linux-azure-nvidia	Not affected	Not in release	Not in release	Not in release
linux-bluefield	Not in release	Not in release	Not affected	Not in release
linux-dell300x	Not in release	Not in release	Not in release	Not affected
linux-ec2	—	—	Not in release	Not in release
linux-euclid	—	—	Not in release	Not in release
linux-fips	Not in release	Not affected	Not affected	Not affected
linux-flo	—	—	Not in release	Not in release
linux-fsl-imx51	—	—	Not in release	Not in release
linux-gcp	Not affected	Not affected	Not affected	Not affected
linux-gcp-4.15	Not in release	Not in release	Not in release	Not affected
linux-gcp-5.15	Not in release	Not in release	Not affected	Not in release
linux-gcp-5.3	Not in release	Not in release	Not in release	Not affected
linux-gcp-5.4	Not in release	Not in release	Not in release	Not affected
linux-gcp-6.11	Not affected	Not in release	Not in release	Not in release
linux-gcp-6.8	Not in release	Not affected	Not in release	Not in release
linux-gcp-edge	—	—	Not in release	Not affected
linux-gcp-fips	Not in release	Not affected	Not affected	Not affected
linux-gke	Not affected	Not affected	Not affected	Not in release
linux-gke-4.15	Not in release	Not in release	Not in release	Not affected
linux-gke-5.0	Not in release	Not in release	Not in release	Not affected
linux-gke-5.3	Not in release	Not in release	Not in release	Not affected
linux-gke-5.4	Not in release	Not in release	Not in release	Not affected
linux-gkeop	Not affected	Not affected	Not affected	Not in release
linux-gkeop-5.15	Not in release	Not in release	Not affected	Not in release
linux-gkeop-5.4	Not in release	Not in release	Not in release	Not affected
linux-goldfish	—	—	Not in release	Not in release
linux-grouper	—	—	Not in release	Not in release
linux-hwe	Not in release	Not in release	Not in release	Not affected
linux-hwe-5.15	Not in release	Not in release	Not affected	Not in release
linux-hwe-5.4	Not in release	Not in release	Not in release	Not affected
linux-hwe-5.8	Not in release	Not in release	Not affected	Not in release
linux-hwe-6.11	Not affected	Not in release	Not in release	Not in release
linux-hwe-6.8	Not in release	Not affected	Not in release	Not in release
linux-hwe-edge	Not in release	Not in release	Not in release	Not affected
linux-ibm	Not affected	Not affected	Not affected	Not in release
linux-ibm-5.15	Not in release	Not in release	Not affected	Not in release
linux-ibm-5.4	Not in release	Not in release	Not in release	Not affected
linux-intel	Not affected	Not in release	Not in release	Not in release
linux-intel-iot-realtime	Not in release	Not affected	Not in release	Not in release
linux-intel-iotg	Not in release	Not affected	Not in release	Not in release
linux-intel-iotg-5.15	Not in release	Not in release	Not affected	Not in release
linux-iot	Not in release	Not in release	Not affected	Not in release
linux-kvm	Not in release	Not affected	Not affected	Not affected
linux-linaro-omap	—	—	Not in release	Not in release
linux-linaro-shared	—	—	Not in release	Not in release
linux-linaro-vexpress	—	—	Not in release	Not in release
linux-lowlatency	Not affected	Not affected	Not in release	Not in release
linux-lowlatency-hwe-5.15	Not in release	Not in release	Not affected	Not in release
linux-lowlatency-hwe-6.11	Not affected	Not in release	Not in release	Not in release
linux-lowlatency-hwe-6.8	Not in release	Not affected	Not in release	Not in release
linux-lts-quantal	—	—	Not in release	Not in release
linux-lts-raring	—	—	Not in release	Not in release
linux-lts-saucy	—	—	Not in release	Not in release
linux-lts-trusty	—	—	Not in release	Not in release
linux-lts-utopic	—	—	Not in release	Not in release
linux-lts-vivid	—	—	Not in release	Not in release
linux-lts-wily	—	—	Not in release	Not in release
linux-lts-xenial	Not in release	Not in release	Not in release	Not in release
linux-maguro	—	—	Not in release	Not in release
linux-mako	—	—	Not in release	Not in release
linux-manta	—	—	Not in release	Not in release
linux-mvl-dove	—	—	Not in release	Not in release
linux-nvidia	Not affected	Not affected	Not in release	Not in release
linux-nvidia-6.5	Not in release	Not affected	Not in release	Not in release
linux-nvidia-6.8	Not in release	Not affected	Not in release	Not in release
linux-nvidia-lowlatency	Not affected	Not in release	Not in release	Not in release
linux-nvidia-tegra	Not affected	Not affected	Not in release	Not in release
linux-nvidia-tegra-igx	Not in release	Not affected	Not in release	Not in release
linux-oem	Not in release	Not in release	Not in release	Not affected
linux-oem-5.10	Not in release	Not in release	Not affected	Not in release
linux-oem-5.6	Not in release	Not in release	Not affected	Not in release
linux-oem-6.11	Not affected	Not in release	Not in release	Not in release
linux-oem-6.8	Not affected	Not in release	Not in release	Not in release
linux-oem-osp1	Not in release	Not in release	Not in release	Not affected
linux-oracle	Not affected	Not affected	Not affected	Not affected
linux-oracle-5.0	Not in release	Not in release	Not in release	Not affected
linux-oracle-5.15	Not in release	Not in release	Not affected	Not in release
linux-oracle-5.3	Not in release	Not in release	Not in release	Not affected
linux-oracle-5.4	Not in release	Not in release	Not in release	Not affected
linux-oracle-6.8	Not in release	Not affected	Not in release	Not in release
linux-qcm-msm	—	—	Not in release	Not in release
linux-raspi	Not affected	Not affected	Not affected	Not in release
linux-raspi-5.4	Not in release	Not in release	Not in release	Not affected
linux-raspi-realtime	Not affected	Not in release	Not in release	Not in release
linux-raspi2	Not in release	Not in release	Not affected	Not affected
linux-raspi2-5.3	Not in release	Not in release	Not in release	Not affected
linux-realtime	Not affected	Not affected	Not in release	Not in release
linux-riscv	Not affected	Ignored	Not affected	Not in release
linux-riscv-5.15	Not in release	Not in release	Not affected	Not in release
linux-riscv-6.8	Not in release	Not affected	Not in release	Not in release
linux-snapdragon	Not in release	Not in release	Not in release	Fixed
linux-ti-omap4	—	—	Not in release	Not in release
linux-xilinx-zynqmp	Not in release	Not affected	Not affected	Not in release

CVE-2015-8569

Low priority

Some fixes available 11 of 33

The (1) pptp_bind and (2) pptp_connect functions in drivers/net/ppp/pptp.c in the Linux kernel through 4.3.3 do not verify an address length, which allows local users to obtain sensitive information from kernel memory and bypass...

31 affected packages

linux, linux-2.6, linux-armadaxp, linux-aws, linux-ec2...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
linux	—	—	—	—
linux-2.6	—	—	—	—
linux-armadaxp	—	—	—	—
linux-aws	—	—	—	—
linux-ec2	—	—	—	—
linux-flo	—	—	—	—
linux-fsl-imx51	—	—	—	—
linux-gke	—	—	—	—
linux-goldfish	—	—	—	—
linux-grouper	—	—	—	—
linux-hwe	—	—	—	—
linux-hwe-edge	—	—	—	—
linux-linaro-omap	—	—	—	—
linux-linaro-shared	—	—	—	—
linux-linaro-vexpress	—	—	—	—
linux-lts-quantal	—	—	—	—
linux-lts-raring	—	—	—	—
linux-lts-saucy	—	—	—	—
linux-lts-trusty	—	—	—	—
linux-lts-utopic	—	—	—	—
linux-lts-vivid	—	—	—	—
linux-lts-wily	—	—	—	—
linux-lts-xenial	—	—	—	—
linux-maguro	—	—	—	—
linux-mako	—	—	—	—
linux-manta	—	—	—	—
linux-mvl-dove	—	—	—	—
linux-qcm-msm	—	—	—	—
linux-raspi2	—	—	—	—
linux-snapdragon	—	—	—	—
linux-ti-omap4	—	—	—	—

CVE-2015-8543

Medium priority

Some fixes available 11 of 33

The networking implementation in the Linux kernel through 4.3.3, as used in Android and other products, does not validate protocol identifiers for certain protocol families, which allows local users to cause a denial of service...

31 affected packages

linux, linux-2.6, linux-armadaxp, linux-aws, linux-ec2...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
linux	—	—	—	—
linux-2.6	—	—	—	—
linux-armadaxp	—	—	—	—
linux-aws	—	—	—	—
linux-ec2	—	—	—	—
linux-flo	—	—	—	—
linux-fsl-imx51	—	—	—	—
linux-gke	—	—	—	—
linux-goldfish	—	—	—	—
linux-grouper	—	—	—	—
linux-hwe	—	—	—	—
linux-hwe-edge	—	—	—	—
linux-linaro-omap	—	—	—	—
linux-linaro-shared	—	—	—	—
linux-linaro-vexpress	—	—	—	—
linux-lts-quantal	—	—	—	—
linux-lts-raring	—	—	—	—
linux-lts-saucy	—	—	—	—
linux-lts-trusty	—	—	—	—
linux-lts-utopic	—	—	—	—
linux-lts-vivid	—	—	—	—
linux-lts-wily	—	—	—	—
linux-lts-xenial	—	—	—	—
linux-maguro	—	—	—	—
linux-mako	—	—	—	—
linux-manta	—	—	—	—
linux-mvl-dove	—	—	—	—
linux-qcm-msm	—	—	—	—
linux-raspi2	—	—	—	—
linux-snapdragon	—	—	—	—
linux-ti-omap4	—	—	—	—

CVE-2015-8374

Low priority

Some fixes available 11 of 33

fs/btrfs/inode.c in the Linux kernel before 4.3.3 mishandles compressed inline extents, which allows local users to obtain sensitive pre-truncation information from a file via a clone action.

30 affected packages

linux, linux-armadaxp, linux-aws, linux-ec2, linux-flo...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
linux	—	—	—	—
linux-armadaxp	—	—	—	—
linux-aws	—	—	—	—
linux-ec2	—	—	—	—
linux-flo	—	—	—	—
linux-fsl-imx51	—	—	—	—
linux-gke	—	—	—	—
linux-goldfish	—	—	—	—
linux-grouper	—	—	—	—
linux-hwe	—	—	—	—
linux-hwe-edge	—	—	—	—
linux-linaro-omap	—	—	—	—
linux-linaro-shared	—	—	—	—
linux-linaro-vexpress	—	—	—	—
linux-lts-quantal	—	—	—	—
linux-lts-raring	—	—	—	—
linux-lts-saucy	—	—	—	—
linux-lts-trusty	—	—	—	—
linux-lts-utopic	—	—	—	—
linux-lts-vivid	—	—	—	—
linux-lts-wily	—	—	—	—
linux-lts-xenial	—	—	—	—
linux-maguro	—	—	—	—
linux-mako	—	—	—	—
linux-manta	—	—	—	—
linux-mvl-dove	—	—	—	—
linux-qcm-msm	—	—	—	—
linux-raspi2	—	—	—	—
linux-snapdragon	—	—	—	—
linux-ti-omap4	—	—	—	—

CVE-2015-7990

Low priority

Some fixes available 11 of 18

Race condition in the rds_sendmsg function in net/rds/sendmsg.c in the Linux kernel before 4.3.3 allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact...

30 affected packages

linux, linux-armadaxp, linux-aws, linux-ec2, linux-flo...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
linux	—	—	—	—
linux-armadaxp	—	—	—	—
linux-aws	—	—	—	—
linux-ec2	—	—	—	—
linux-flo	—	—	—	—
linux-fsl-imx51	—	—	—	—
linux-gke	—	—	—	—
linux-goldfish	—	—	—	—
linux-grouper	—	—	—	—
linux-hwe	—	—	—	—
linux-hwe-edge	—	—	—	—
linux-linaro-omap	—	—	—	—
linux-linaro-shared	—	—	—	—
linux-linaro-vexpress	—	—	—	—
linux-lts-quantal	—	—	—	—
linux-lts-raring	—	—	—	—
linux-lts-saucy	—	—	—	—
linux-lts-trusty	—	—	—	—
linux-lts-utopic	—	—	—	—
linux-lts-vivid	—	—	—	—
linux-lts-wily	—	—	—	—
linux-lts-xenial	—	—	—	—
linux-maguro	—	—	—	—
linux-mako	—	—	—	—
linux-manta	—	—	—	—
linux-mvl-dove	—	—	—	—
linux-qcm-msm	—	—	—	—
linux-raspi2	—	—	—	—
linux-snapdragon	—	—	—	—
linux-ti-omap4	—	—	—	—

CVE-2013-7446

Medium priority

Some fixes available 11 of 33

Use-after-free vulnerability in net/unix/af_unix.c in the Linux kernel before 4.3.3 allows local users to bypass intended AF_UNIX socket permissions or cause a denial of service (panic) via crafted epoll_ctl calls.

30 affected packages

linux, linux-armadaxp, linux-aws, linux-ec2, linux-flo...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
linux	—	—	—	—
linux-armadaxp	—	—	—	—
linux-aws	—	—	—	—
linux-ec2	—	—	—	—
linux-flo	—	—	—	—
linux-fsl-imx51	—	—	—	—
linux-gke	—	—	—	—
linux-goldfish	—	—	—	—
linux-grouper	—	—	—	—
linux-hwe	—	—	—	—
linux-hwe-edge	—	—	—	—
linux-linaro-omap	—	—	—	—
linux-linaro-shared	—	—	—	—
linux-linaro-vexpress	—	—	—	—
linux-lts-quantal	—	—	—	—
linux-lts-raring	—	—	—	—
linux-lts-saucy	—	—	—	—
linux-lts-trusty	—	—	—	—
linux-lts-utopic	—	—	—	—
linux-lts-vivid	—	—	—	—
linux-lts-wily	—	—	—	—
linux-lts-xenial	—	—	—	—
linux-maguro	—	—	—	—
linux-mako	—	—	—	—
linux-manta	—	—	—	—
linux-mvl-dove	—	—	—	—
linux-qcm-msm	—	—	—	—
linux-raspi2	—	—	—	—
linux-snapdragon	—	—	—	—
linux-ti-omap4	—	—	—	—

CVE-2015-8575

Medium priority

Some fixes available 11 of 33

The sco_sock_bind function in net/bluetooth/sco.c in the Linux kernel before 4.3.4 does not verify an address length, which allows local users to obtain sensitive information from kernel memory and bypass the KASLR protection...

31 affected packages

linux, linux-2.6, linux-armadaxp, linux-aws, linux-ec2...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
linux	—	—	—	—
linux-2.6	—	—	—	—
linux-armadaxp	—	—	—	—
linux-aws	—	—	—	—
linux-ec2	—	—	—	—
linux-flo	—	—	—	—
linux-fsl-imx51	—	—	—	—
linux-gke	—	—	—	—
linux-goldfish	—	—	—	—
linux-grouper	—	—	—	—
linux-hwe	—	—	—	—
linux-hwe-edge	—	—	—	—
linux-linaro-omap	—	—	—	—
linux-linaro-shared	—	—	—	—
linux-linaro-vexpress	—	—	—	—
linux-lts-quantal	—	—	—	—
linux-lts-raring	—	—	—	—
linux-lts-saucy	—	—	—	—
linux-lts-trusty	—	—	—	—
linux-lts-utopic	—	—	—	—
linux-lts-vivid	—	—	—	—
linux-lts-wily	—	—	—	—
linux-lts-xenial	—	—	—	—
linux-maguro	—	—	—	—
linux-mako	—	—	—	—
linux-manta	—	—	—	—
linux-mvl-dove	—	—	—	—
linux-qcm-msm	—	—	—	—
linux-raspi2	—	—	—	—
linux-snapdragon	—	—	—	—
linux-ti-omap4	—	—	—	—

CVE-2015-8552

Medium priority

Some fixes available 10 of 32

The PCI backend driver in Xen, when running on an x86 system and using Linux 3.1.x through 4.3.x as the driver domain, allows local guest administrators to generate a continuous stream of WARN messages and cause a denial of...

30 affected packages

linux, linux-armadaxp, linux-aws, linux-ec2, linux-flo...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
linux	—	—	—	—
linux-armadaxp	—	—	—	—
linux-aws	—	—	—	—
linux-ec2	—	—	—	—
linux-flo	—	—	—	—
linux-fsl-imx51	—	—	—	—
linux-gke	—	—	—	—
linux-goldfish	—	—	—	—
linux-grouper	—	—	—	—
linux-hwe	—	—	—	—
linux-hwe-edge	—	—	—	—
linux-linaro-omap	—	—	—	—
linux-linaro-shared	—	—	—	—
linux-linaro-vexpress	—	—	—	—
linux-lts-quantal	—	—	—	—
linux-lts-raring	—	—	—	—
linux-lts-saucy	—	—	—	—
linux-lts-trusty	—	—	—	—
linux-lts-utopic	—	—	—	—
linux-lts-vivid	—	—	—	—
linux-lts-wily	—	—	—	—
linux-lts-xenial	—	—	—	—
linux-maguro	—	—	—	—
linux-mako	—	—	—	—
linux-manta	—	—	—	—
linux-mvl-dove	—	—	—	—
linux-qcm-msm	—	—	—	—
linux-raspi2	—	—	—	—
linux-snapdragon	—	—	—	—
linux-ti-omap4	—	—	—	—

Export to JSON

Results by page: