Search CVE reports
1 – 10 of 137 results
The sctp_auth_ep_set_hmacs function in net/sctp/auth.c in the Stream Control Transmission Protocol (sctp) implementation in the Linux kernel before 2.6.26.4, when the SCTP-AUTH extension is enabled, does not verify that the...
4 affected packages
linux, linux-source-2.6.15, linux-source-2.6.20, linux-source-2.6.22
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| linux | — | — | — | — |
| linux-source-2.6.15 | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — |
| linux-source-2.6.22 | — | — | — | — |
The vmi_write_ldt_entry function in arch/x86/kernel/vmi_32.c in the Virtual Machine Interface (VMI) in the Linux kernel 2.6.26.5 invokes write_idt_entry where write_ldt_entry was intended, which allows local users to cause a...
4 affected packages
linux, linux-source-2.6.15, linux-source-2.6.20, linux-source-2.6.22
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| linux | — | — | — | — |
| linux-source-2.6.15 | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — |
| linux-source-2.6.22 | — | — | — | — |
Multiple buffer overflows in the ndiswrapper module 1.53 for the Linux kernel 2.6 allow remote attackers to execute arbitrary code by sending packets over a local wireless network that specify long ESSIDs.
6 affected packages
linux, linux-source-2.6.15, linux-source-2.6.20, linux-source-2.6.22, linux-ubuntu-modules-2.6.22, linux-ubuntu-modules-2.6.24
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| linux | — | — | — | — |
| linux-source-2.6.15 | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — |
| linux-source-2.6.22 | — | — | — | — |
| linux-ubuntu-modules-2.6.22 | — | — | — | — |
| linux-ubuntu-modules-2.6.24 | — | — | — | — |
fs/splice.c in the splice subsystem in the Linux kernel before 2.6.22.2 does not properly handle a failure of the add_to_page_cache_lru function, and subsequently attempts to unlock a page that was not locked, which allows local...
4 affected packages
linux, linux-source-2.6.15, linux-source-2.6.20, linux-source-2.6.22
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| linux | — | — | — | — |
| linux-source-2.6.15 | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — |
| linux-source-2.6.22 | — | — | — | — |
Some fixes available 1 of 2
fs/open.c in the Linux kernel before 2.6.22 does not properly strip setuid and setgid bits when there is a write to a file, which allows local users to gain the privileges of a different group, and obtain sensitive information or...
4 affected packages
linux, linux-source-2.6.15, linux-source-2.6.20, linux-source-2.6.22
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| linux | — | — | — | — |
| linux-source-2.6.15 | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — |
| linux-source-2.6.22 | — | — | — | — |
The sctp_getsockopt_hmac_ident function in net/sctp/socket.c in the Stream Control Transmission Protocol (sctp) implementation in the Linux kernel before 2.6.26.4, when the SCTP-AUTH extension is enabled, relies on an untrusted...
4 affected packages
linux, linux-source-2.6.15, linux-source-2.6.20, linux-source-2.6.22
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| linux | — | — | — | — |
| linux-source-2.6.15 | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — |
| linux-source-2.6.22 | — | — | — | — |
Some fixes available 2 of 3
Buffer overflow in nfsd in the Linux kernel before 2.6.26.4, when NFSv4 is enabled, allows remote attackers to have an unknown impact via vectors related to decoding an NFSv4 acl.
4 affected packages
linux, linux-source-2.6.15, linux-source-2.6.20, linux-source-2.6.22
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| linux | — | — | — | — |
| linux-source-2.6.15 | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — |
| linux-source-2.6.22 | — | — | — | — |
The proc_do_xprt function in net/sunrpc/sysctl.c in the Linux kernel 2.6.26.3 does not check the length of a certain buffer obtained from userspace, which allows local users to overflow a stack-based buffer and have unspecified...
4 affected packages
linux, linux-source-2.6.15, linux-source-2.6.20, linux-source-2.6.22
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| linux | — | — | — | — |
| linux-source-2.6.15 | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — |
| linux-source-2.6.22 | — | — | — | — |
Software suspend 2 2-2.2.1, when used with the Linux kernel 2.6.16, stores pre-boot authentication passwords in the BIOS Keyboard buffer and does not clear this buffer after use, which allows local users to obtain...
4 affected packages
linux-source-2.6.15, linux-source-2.6.20, linux-source-2.6.22, linux
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| linux-source-2.6.15 | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — |
| linux-source-2.6.22 | — | — | — | — |
| linux | — | — | — | — |
The generic_file_splice_write function in fs/splice.c in the Linux kernel before 2.6.19 does not properly strip setuid and setgid bits when there is a write to a file, which allows local users to gain the privileges of a different...
4 affected packages
linux, linux-source-2.6.15, linux-source-2.6.20, linux-source-2.6.22
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| linux | — | — | — | — |
| linux-source-2.6.15 | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — |
| linux-source-2.6.22 | — | — | — | — |