Search CVE reports
121 – 130 of 137 results
The do_coredump function in fs/exec.c in the Linux kernel 2.6.19 sets the flag variable to O_EXCL but does not use it, which allows context-dependent attackers to modify arbitrary files via a rewrite attack during a core dump.
3 affected packages
linux-source-2.6.15, linux-source-2.6.17, linux-source-2.6.20
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| linux-source-2.6.15 | — | — | — | — |
| linux-source-2.6.17 | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — |
Multiple buffer overflows in the cmtp_recv_interopmsg function in the Bluetooth driver (net/bluetooth/cmtp/capi.c) in the Linux kernel 2.4.22 up to 2.4.33.4 and 2.6.2 before 2.6.18.6, and 2.6.19.x, allow remote attackers to cause...
3 affected packages
linux-source-2.6.15, linux-source-2.6.17, linux-source-2.6.20
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| linux-source-2.6.15 | — | — | — | — |
| linux-source-2.6.17 | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — |
The NTFS filesystem code in Linux kernel 2.6.x up to 2.6.18, and possibly other versions, allows local users to cause a denial of service (CPU consumption) via a malformed NTFS file stream that triggers an infinite loop in the...
1 affected package
linux-source-2.6.20
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| linux-source-2.6.20 | — | — | — | — |
The minix filesystem code in Linux kernel 2.6.x before 2.6.24, including 2.6.18, allows local users to cause a denial of service (hang) via a malformed minix file stream that triggers an infinite loop in the minix_bmap function. ...
4 affected packages
linux-source-2.6.15, linux-source-2.6.17, linux-source-2.6.20, linux-source-2.6.22
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| linux-source-2.6.15 | — | — | — | — |
| linux-source-2.6.17 | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — |
| linux-source-2.6.22 | — | — | — | — |
Linux kernel 2.6.x up to 2.6.18 and possibly other versions, when SELinux hooks are enabled, allows local users to cause a denial of service (crash) via a malformed file stream that triggers a NULL pointer dereference in...
3 affected packages
linux-source-2.6.15, linux-source-2.6.17, linux-source-2.6.20
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| linux-source-2.6.15 | — | — | — | — |
| linux-source-2.6.17 | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — |
The ext2 file system code in Linux kernel 2.6.x allows local users to cause a denial of service (crash) via an ext2 stream with malformed data structures that triggers an error in the ext2_check_page due to a length that is...
3 affected packages
linux-source-2.6.15, linux-source-2.6.17, linux-source-2.6.20
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| linux-source-2.6.15 | — | — | — | — |
| linux-source-2.6.17 | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — |
The ext3fs_dirhash function in Linux kernel 2.6.x allows local users to cause a denial of service (crash) via an ext3 stream with malformed data structures.
3 affected packages
linux-source-2.6.15, linux-source-2.6.17, linux-source-2.6.20
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| linux-source-2.6.15 | — | — | — | — |
| linux-source-2.6.17 | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — |
The zlib_inflate function in Linux kernel 2.6.x allows local users to cause a denial of service (crash) via a malformed filesystem that uses zlib compression that triggers memory corruption, as demonstrated using cramfs.
3 affected packages
linux-source-2.6.15, linux-source-2.6.17, linux-source-2.6.20
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| linux-source-2.6.15 | — | — | — | — |
| linux-source-2.6.17 | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — |
Race condition in the __find_get_block_slow function in the ISO9660 filesystem in Linux 2.6.18 and possibly other versions allows local users to cause a denial of service (infinite loop) by mounting a crafted ISO9660 filesystem...
3 affected packages
linux-source-2.6.15, linux-source-2.6.17, linux-source-2.6.20
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| linux-source-2.6.15 | — | — | — | — |
| linux-source-2.6.17 | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — |
Linux kernel before 2.6.18, when running on x86_64 systems, does not properly save or restore EFLAGS during a context switch, which allows local users to cause a denial of service (crash) by causing SYSENTER to set an NT flag,...
3 affected packages
linux-source-2.6.15, linux-source-2.6.17, linux-source-2.6.20
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| linux-source-2.6.15 | — | — | — | — |
| linux-source-2.6.17 | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — |