Search CVE reports
1 – 10 of 146 results
CVE-2009-1265
Low prioritySome fixes available 4 of 5
Integer overflow in rose_sendmsg (sys/net/af_rose.c) in the Linux kernel 2.6.24.4, and other versions before 2.6.30-rc1, might allow remote attackers to obtain sensitive information via a large length value, which causes "garbage"...
3 affected packages
linux, linux-source-2.6.15, linux-source-2.6.22
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux | — | — | — | — | — |
| linux-source-2.6.15 | — | — | — | — | — |
| linux-source-2.6.22 | — | — | — | — | — |
CVE-2009-1243
Medium prioritynet/ipv4/udp.c in the Linux kernel before 2.6.29.1 performs an unlocking step in certain incorrect circumstances, which allows local users to cause a denial of service (panic) by reading zero bytes from the /proc/net/udp file and...
3 affected packages
linux, linux-source-2.6.15, linux-source-2.6.22
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux | — | — | — | — | — |
| linux-source-2.6.15 | — | — | — | — | — |
| linux-source-2.6.22 | — | — | — | — | — |
CVE-2009-1242
Medium prioritySome fixes available 3 of 4
The vmx_set_msr function in arch/x86/kvm/vmx.c in the VMX implementation in the KVM subsystem in the Linux kernel before 2.6.29.1 on the i386 platform allows guest OS users to cause a denial of service (OOPS) by setting...
3 affected packages
linux, linux-source-2.6.15, linux-source-2.6.22
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux | — | — | — | — | — |
| linux-source-2.6.15 | — | — | — | — | — |
| linux-source-2.6.22 | — | — | — | — | — |
CVE-2009-1072
Medium prioritySome fixes available 4 of 5
nfsd in the Linux kernel before 2.6.28.9 does not drop the CAP_MKNOD capability before handling a user request in a thread, which allows local users to create device nodes, as demonstrated on a filesystem that has been exported...
3 affected packages
linux, linux-source-2.6.15, linux-source-2.6.22
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux | — | — | — | — | — |
| linux-source-2.6.15 | — | — | — | — | — |
| linux-source-2.6.22 | — | — | — | — | — |
CVE-2009-0787
Medium priorityThe ecryptfs_write_metadata_to_contents function in the eCryptfs functionality in the Linux kernel 2.6.28 before 2.6.28.9 uses an incorrect size when writing kernel memory to an eCryptfs file header, which triggers an...
3 affected packages
linux, linux-source-2.6.15, linux-source-2.6.22
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux | — | — | — | — | — |
| linux-source-2.6.15 | — | — | — | — | — |
| linux-source-2.6.22 | — | — | — | — | — |
CVE-2009-1046
Low priorityThe console selection feature in the Linux kernel 2.6.28 before 2.6.28.4, 2.6.25, and possibly earlier versions, when the UTF-8 console is used, allows physically proximate attackers to cause a denial of service...
3 affected packages
linux, linux-source-2.6.15, linux-source-2.6.22
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux | — | — | — | — | — |
| linux-source-2.6.15 | — | — | — | — | — |
| linux-source-2.6.22 | — | — | — | — | — |
CVE-2009-0935
Medium prioritySome fixes available 2 of 3
The inotify_read function in the Linux kernel 2.6.27 to 2.6.27.13, 2.6.28 to 2.6.28.2, and 2.6.29-rc3 allows local users to cause a denial of service (OOPS) via a read with an invalid address to an inotify instance, which causes...
3 affected packages
linux, linux-source-2.6.15, linux-source-2.6.22
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux | — | — | — | — | — |
| linux-source-2.6.15 | — | — | — | — | — |
| linux-source-2.6.22 | — | — | — | — | — |
CVE-2009-0778
Medium priorityThe icmp_send function in net/ipv4/icmp.c in the Linux kernel before 2.6.25, when configured as a router with a REJECT route, does not properly manage the Protocol Independent Destination Cache (aka DST) in some situations...
3 affected packages
linux, linux-source-2.6.15, linux-source-2.6.22
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux | — | — | — | — | — |
| linux-source-2.6.15 | — | — | — | — | — |
| linux-source-2.6.22 | — | — | — | — | — |
CVE-2009-0859
Low priorityThe shm_get_stat function in ipc/shm.c in the shm subsystem in the Linux kernel before 2.6.28.5, when CONFIG_SHMEM is disabled, misinterprets the data type of an inode, which allows local users to cause a denial of service (system...
3 affected packages
linux, linux-source-2.6.15, linux-source-2.6.22
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux | — | — | — | — | — |
| linux-source-2.6.15 | — | — | — | — | — |
| linux-source-2.6.22 | — | — | — | — | — |
CVE-2009-0835
Low priorityThe __secure_computing function in kernel/seccomp.c in the seccomp subsystem in the Linux kernel 2.6.28.7 and earlier on the x86_64 platform, when CONFIG_SECCOMP is enabled, does not properly handle (1) a 32-bit process making a...
3 affected packages
linux, linux-source-2.6.15, linux-source-2.6.22
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux | — | — | — | — | — |
| linux-source-2.6.15 | — | — | — | — | — |
| linux-source-2.6.22 | — | — | — | — | — |