Search CVE reports
21 – 30 of 137 results
CVE-2008-3275
Medium priorityThe (1) real_lookup and (2) __lookup_hash functions in fs/namei.c in the vfs implementation in the Linux kernel before 2.6.25.15 do not prevent creation of a child dentry for a deleted (aka S_DEAD) directory, which allows local...
4 affected packages
linux, linux-source-2.6.15, linux-source-2.6.20, linux-source-2.6.22
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux | — | — | — | — | — |
| linux-source-2.6.15 | — | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — | — |
| linux-source-2.6.22 | — | — | — | — | — |
CVE-2008-3535
Medium priorityOff-by-one error in the iov_iter_advance function in mm/filemap.c in the Linux kernel before 2.6.27-rc2 allows local users to cause a denial of service (system crash) via a certain sequence of file I/O operations with readv and...
4 affected packages
linux, linux-source-2.6.15, linux-source-2.6.20, linux-source-2.6.22
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux | — | — | — | — | — |
| linux-source-2.6.15 | — | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — | — |
| linux-source-2.6.22 | — | — | — | — | — |
CVE-2008-3534
Medium prioritySome fixes available 3 of 4
The shmem_delete_inode function in mm/shmem.c in the tmpfs implementation in the Linux kernel before 2.6.26.1 allows local users to cause a denial of service (system crash) via a certain sequence of file create, remove,...
4 affected packages
linux, linux-source-2.6.15, linux-source-2.6.20, linux-source-2.6.22
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux | — | — | — | — | — |
| linux-source-2.6.15 | — | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — | — |
| linux-source-2.6.22 | — | — | — | — | — |
CVE-2008-3272
Low priorityThe snd_seq_oss_synth_make_info function in sound/core/seq/oss/seq_oss_synth.c in the sound subsystem in the Linux kernel before 2.6.27-rc2 does not verify that the device number is within the range defined by max_synthdev before...
4 affected packages
linux, linux-source-2.6.15, linux-source-2.6.20, linux-source-2.6.22
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux | — | — | — | — | — |
| linux-source-2.6.15 | — | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — | — |
| linux-source-2.6.22 | — | — | — | — | — |
CVE-2008-3496
Low priorityBuffer overflow in format descriptor parsing in the uvc_parse_format function in drivers/media/video/uvc/uvc_driver.c in uvcvideo in the video4linux (V4L) implementation in the Linux kernel before 2.6.26.1 has unknown impact and...
4 affected packages
linux, linux-source-2.6.15, linux-source-2.6.20, linux-source-2.6.22
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux | — | — | — | — | — |
| linux-source-2.6.15 | — | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — | — |
| linux-source-2.6.22 | — | — | — | — | — |
CVE-2008-3247
Low priorityThe LDT implementation in the Linux kernel 2.6.25.x before 2.6.25.11 on x86_64 platforms uses an incorrect size for ldt_desc, which allows local users to cause a denial of service (system crash) or possibly gain privileges via...
4 affected packages
linux, linux-source-2.6.15, linux-source-2.6.20, linux-source-2.6.22
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux | — | — | — | — | — |
| linux-source-2.6.15 | — | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — | — |
| linux-source-2.6.22 | — | — | — | — | — |
CVE-2008-2931
Low priorityThe do_change_type function in fs/namespace.c in the Linux kernel before 2.6.22 does not verify that the caller has the CAP_SYS_ADMIN capability, which allows local users to gain privileges or cause a denial of service...
4 affected packages
linux, linux-source-2.6.15, linux-source-2.6.20, linux-source-2.6.22
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux | — | — | — | — | — |
| linux-source-2.6.15 | — | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — | — |
| linux-source-2.6.22 | — | — | — | — | — |
CVE-2008-3077
Low priorityarch/x86/kernel/ptrace.c in the Linux kernel before 2.6.25.10 on the x86_64 platform leaks task_struct references into the sys32_ptrace function, which allows local users to cause a denial of service (system crash) or...
4 affected packages
linux, linux-source-2.6.15, linux-source-2.6.20, linux-source-2.6.22
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux | — | — | — | — | — |
| linux-source-2.6.15 | — | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — | — |
| linux-source-2.6.22 | — | — | — | — | — |
CVE-2008-2812
Medium priorityThe Linux kernel before 2.6.25.10 does not properly perform tty operations, which allows local users to cause a denial of service (system crash) or possibly gain privileges via vectors involving NULL pointer dereference...
4 affected packages
linux, linux-source-2.6.15, linux-source-2.6.20, linux-source-2.6.22
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux | — | — | — | — | — |
| linux-source-2.6.15 | — | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — | — |
| linux-source-2.6.22 | — | — | — | — | — |
CVE-2008-2826
Medium priorityInteger overflow in the sctp_getsockopt_local_addrs_old function in net/sctp/socket.c in the Stream Control Transmission Protocol (sctp) functionality in the Linux kernel before 2.6.25.9 allows local users to cause a denial of...
4 affected packages
linux, linux-source-2.6.15, linux-source-2.6.20, linux-source-2.6.22
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux | — | — | — | — | — |
| linux-source-2.6.15 | — | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — | — |
| linux-source-2.6.22 | — | — | — | — | — |