| Bug | Description |
|---|
| CVE-2004-0229 | The framebuffer driver in Linux kernel 2.6.x does not properly use the ... |
| CVE-2004-0554 | Linux kernel 2.4.x and 2.6.x for x86 allows local users to cause a ... |
| CVE-2004-2136 | dm-crypt on Linux kernel 2.6.x, when used on certain file systems ... |
| CVE-2004-2731 | Multiple integer overflows in Sbus PROM driver ... |
| CVE-2005-0124 | The coda_pioctl function in the coda functionality (pioctl.c) for ... |
| CVE-2005-0136 | The Linux kernel before 2.6.11 on the Itanium IA64 platform has ... |
| CVE-2005-1265 | The mmap function in the Linux Kernel 2.6.10 can be used to create ... |
| CVE-2005-1761 | Linux kernel 2.6 and 2.4 on the IA64 architecture allows local users ... |
| CVE-2005-1765 | syscall in the Linux kernel 2.6.8.1 and 2.6.10 for the AMD64 platform, ... |
| CVE-2005-1767 | traps.c in the Linux kernel 2.6.x and 2.4.x executes stack segment ... |
| CVE-2005-1913 | The Linux kernel 2.6 before 2.6.12.1 allows local users to cause a ... |
| CVE-2005-2098 | The KEYCTL_JOIN_SESSION_KEYRING operation in the Linux kernel before ... |
| CVE-2005-2099 | The Linux kernel before 2.6.12.5 does not properly destroy a keyring ... |
| CVE-2005-2456 | Array index overflow in the xfrm_sk_policy_insert function in ... |
| CVE-2005-2457 | The driver for compressed ISO file systems (zisofs) in the Linux ... |
| CVE-2005-2458 | inflate.c in the zlib routines in the Linux kernel before 2.6.12.5 ... |
| CVE-2005-2459 | The huft_build function in inflate.c in the zlib routines in the Linux ... |
| CVE-2005-2490 | Stack-based buffer overflow in the sendmsg function call in the Linux ... |
| CVE-2005-2492 | The raw_sendmsg function in the Linux kernel 2.6 before 2.6.13.1 ... |
| CVE-2005-2500 | Buffer overflow in the xdr_xcode_array2 function in xdr.c in Linux ... |
| CVE-2005-2548 | vlan_dev.c in the VLAN code for Linux kernel 2.6.8 allows remote ... |
| CVE-2005-2555 | Linux kernel 2.6.x does not properly restrict socket policy access to ... |
| CVE-2005-2617 | The syscall32_setup_pages function in syscall32.c for Linux kernel ... |
| CVE-2005-2709 | The sysctl functionality (sysctl.c) in Linux kernel before 2.6.14.1 ... |
| CVE-2005-2800 | Memory leak in the seq_file implemenetation in the SCSI procfs ... |
| CVE-2005-2872 | The ipt_recent kernel module (ipt_recent.c) in Linux kernel before ... |
| CVE-2005-2873 | The ipt_recent kernel module (ipt_recent.c) in Linux kernel 2.6.12 and ... |
| CVE-2005-2973 | The udp_v6_get_port function in udp.c in Linux 2.6 before 2.6.14-rc5, ... |
| CVE-2005-3044 | Multiple vulnerabilities in Linux kernel before 2.6.13.2 allow local ... |
| CVE-2005-3053 | The sys_set_mempolicy function in mempolicy.c in Linux kernel 2.6.x ... |
| CVE-2005-3055 | Linux kernel 2.6.8 to 2.6.14-rc2 allows local users to cause a denial ... |
| CVE-2005-3105 | The mprotect code (mprotect.c) in Linux 2.6 on Itanium IA64 Montecito ... |
| CVE-2005-3119 | Memory leak in the request_key_auth_destroy function in ... |
| CVE-2005-3179 | drm.c in Linux kernel 2.6.10 to 2.6.13 creates a debug file in sysfs ... |
| CVE-2005-3180 | The Orinoco driver (orinoco.c) in Linux kernel 2.6.13 and earlier does ... |
| CVE-2005-3181 | The audit system in Linux kernel 2.6.6, and other versions before ... |
| CVE-2005-3257 | The VT implementation (vt_ioctl.c) in Linux kernel 2.6.12, and ... |
| CVE-2005-3272 | Linux kernel before 2.6.12 allows remote attackers to poison the ... |
| CVE-2005-3273 | The rose_rt_ioctl function in rose_route.c for Radionet Open Source ... |
| CVE-2005-3274 | Race condition in ip_vs_conn_flush in Linux 2.6 before 2.6.13 and 2.4 ... |
| CVE-2005-3275 | The NAT code (1) ip_nat_proto_tcp.c and (2) ip_nat_proto_udp.c in ... |
| CVE-2005-3276 | The sys_get_thread_area function in process.c in Linux 2.6 before ... |
| CVE-2005-3356 | The mq_open system call in Linux kernel 2.6.9, in certain situations, ... |
| CVE-2005-3359 | The atm module in Linux kernel 2.6 before 2.6.14 allows local users to ... |
| CVE-2005-3527 | Race condition in do_coredump in signal.c in Linux kernel 2.6 allows ... |
| CVE-2005-3623 | nfs2acl.c in the Linux kernel 2.6.14.4 does not check for MAY_SATTR ... |
| CVE-2005-3753 | Linux kernel before after 2.6.12 and before 2.6.13.1 might allow ... |
| CVE-2005-3783 | The ptrace functionality (ptrace.c) in Linux kernel 2.6 before ... |
| CVE-2005-3784 | The auto-reap of child processes in Linux kernel 2.6 before 2.6.15 ... |
| CVE-2005-3805 | A locking problem in POSIX timer cleanup handling on exit in Linux ... |
| CVE-2005-3806 | The IPv6 flow label handling code (ip6_flowlabel.c) in Linux kernels ... |
| CVE-2005-3807 | Memory leak in the VFS file lease handling in locks.c in Linux kernels ... |
| CVE-2005-3808 | Integer overflow in the invalidate_inode_pages2_range function in ... |
| CVE-2005-3809 | The nfattr_to_tcp function in ip_conntrack_proto_tcp.c in ctnetlink in ... |
| CVE-2005-3810 | ip_conntrack_proto_icmp.c in ctnetlink in Linux kernel 2.6.14 up to ... |
| CVE-2005-3847 | The handle_stop_signal function in signal.c in Linux kernel 2.6.11 up ... |
| CVE-2005-3848 | Memory leak in the icmp_push_reply function in Linux 2.6 before ... |
| CVE-2005-3857 | The time_out_leases function in locks.c for Linux kernel before ... |
| CVE-2005-3858 | Memory leak in the ip6_input_finish function in ip6_input.c in Linux ... |
| CVE-2005-4351 | The securelevels implementation in FreeBSD 7.0 and earlier, OpenBSD up ... |
| CVE-2005-4352 | The securelevels implementation in NetBSD 2.1 and earlier, and Linux ... |
| CVE-2005-4605 | The procfs code (proc_misc.c) in Linux 2.6.14.3 and other versions ... |
| CVE-2005-4618 | Buffer overflow in sysctl in the Linux Kernel 2.6 before 2.6.15 allows ... |
| CVE-2005-4639 | Buffer overflow in the CA-driver (dst_ca.c) for TwinHan DST ... |
| CVE-2005-4811 | The hugepage code (hugetlb.c) in Linux kernel 2.6, possibly 2.6.12 and ... |
| CVE-2005-4881 | The netlink subsystem in the Linux kernel 2.4.x before 2.4.37.6 and ... |
| CVE-2005-4886 | The selinux_parse_skb_ipv6 function in security/selinux/hooks.c in the ... |
| CVE-2006-0035 | The netlink_rcv_skb function in af_netlink.c in Linux kernel 2.6.14 ... |
| CVE-2006-0036 | ip_nat_pptp in the PPTP NAT helper (netfilter/ip_nat_helper_pptp.c) in ... |
| CVE-2006-0037 | ip_nat_pptp in the PPTP NAT helper (netfilter/ip_nat_helper_pptp.c) in ... |
| CVE-2006-0038 | Integer overflow in the do_replace function in netfilter for Linux ... |
| CVE-2006-0039 | Race condition in the do_add_counters function in netfilter for Linux ... |
| CVE-2006-0095 | dm-crypt in Linux kernel 2.6.15 and earlier does not clear a structure ... |
| CVE-2006-0454 | Linux kernel before 2.6.15.3 down to 2.6.12, while constructing an ... |
| CVE-2006-0456 | The strnlen_user function in Linux kernel before 2.6.16 on IBM S/390 ... |
| CVE-2006-0457 | Race condition in the (1) add_key, (2) request_key, and (3) keyctl ... |
| CVE-2006-0482 | Linux kernel 2.6.15.1 and earlier, when running on SPARC ... |
| CVE-2006-0554 | Linux kernel 2.6 before 2.6.15.5 allows local users to obtain ... |
| CVE-2006-0555 | The Linux Kernel before 2.6.15.5 allows local users to cause a denial ... |
| CVE-2006-0557 | sys_mbind in mempolicy.c in Linux kernel 2.6.16 and earlier does not ... |
| CVE-2006-0558 | perfmon (perfmon.c) in Linux kernel on IA64 architectures allows local ... |
| CVE-2006-0741 | Linux kernel before 2.6.15.5, when running on Intel processors, allows ... |
| CVE-2006-0742 | The die_if_kernel function in arch/ia64/kernel/unaligned.c in Linux ... |
| CVE-2006-0744 | Linux kernel before 2.6.16.5 does not properly handle uncanonical ... |
| CVE-2006-1052 | The selinux_ptrace logic in hooks.c in SELinux for Linux 2.6.6 allows ... |
| CVE-2006-1055 | The fill_write_buffer function in sysfs/file.c in Linux kernel 2.6.12 ... |
| CVE-2006-1056 | The Linux kernel before 2.6.16.9 and the FreeBSD kernel, when running ... |
| CVE-2006-1066 | Linux kernel 2.6.16-rc2 and earlier, when running on x86_64 systems ... |
| CVE-2006-1242 | The ip_push_pending_frames function in Linux 2.4.x and 2.6.x before ... |
| CVE-2006-1343 | net/ipv4/netfilter/ip_conntrack_core.c in Linux kernel 2.4 and 2.6, ... |
| CVE-2006-1368 | Buffer overflow in the USB Gadget RNDIS implementation in the Linux ... |
| CVE-2006-1522 | The sys_add_key function in the keyring code in Linux kernel 2.6.16.1 ... |
| CVE-2006-1523 | The __group_complete_signal function in the RCU signal handling ... |
| CVE-2006-1524 | madvise_remove in Linux kernel 2.6.16 up to 2.6.16.6 does not follow ... |
| CVE-2006-1525 | ip_route_input in Linux kernel 2.6 before 2.6.16.8 allows local users ... |
| CVE-2006-1527 | The SCTP-netfilter code in Linux kernel before 2.6.16.13 allows remote ... |
| CVE-2006-1528 | Linux kernel before 2.6.13 allows local users to cause a denial of ... |
| CVE-2006-1855 | choose_new_parent in Linux kernel before 2.6.11.12 includes certain ... |
| CVE-2006-1856 | Certain modifications to the Linux kernel 2.6.16 and earlier do not ... |
| CVE-2006-1857 | Buffer overflow in SCTP in Linux kernel before 2.6.16.17 allows remote ... |
| CVE-2006-1858 | SCTP in Linux kernel before 2.6.16.17 allows remote attackers to cause ... |
| CVE-2006-1859 | Memory leak in __setlease in fs/locks.c in Linux kernel before ... |
| CVE-2006-1860 | lease_init in fs/locks.c in Linux kernel before 2.6.16.16 allows ... |
| CVE-2006-1863 | Directory traversal vulnerability in CIFS in Linux 2.6.16 and earlier ... |
| CVE-2006-1864 | Directory traversal vulnerability in smbfs in Linux 2.6.16 and earlier ... |
| CVE-2006-2071 | Linux kernel 2.4.x and 2.6.x up to 2.6.16 allows local users to bypass ... |
| CVE-2006-2110 | Virtual Private Server (Vserver) 2.0.x before 2.0.2-rc18 and 2.1.x ... |
| CVE-2006-2271 | The ECNE chunk handling in Linux SCTP (lksctp) before 2.6.17 allows ... |
| CVE-2006-2272 | Linux SCTP (lksctp) before 2.6.17 allows remote attackers to cause a ... |
| CVE-2006-2274 | Linux SCTP (lksctp) before 2.6.17 allows remote attackers to cause a ... |
| CVE-2006-2275 | Linux SCTP (lksctp) before 2.6.17 allows remote attackers to cause a ... |
| CVE-2006-2444 | The snmp_trap_decode function in the SNMP NAT helper for Linux kernel ... |
| CVE-2006-2445 | Race condition in run_posix_cpu_timers in Linux kernel before ... |
| CVE-2006-2446 | Race condition between the kfree_skb and __skb_unlink functions in the ... |
| CVE-2006-2448 | Linux kernel before 2.6.16.21 and 2.6.17, when running on PowerPC, ... |
| CVE-2006-2451 | The suid_dumpable support in Linux kernel 2.6.13 up to versions before ... |
| CVE-2006-2629 | Race condition in Linux kernel 2.6.15 to 2.6.17, when running on SMP ... |
| CVE-2006-2934 | SCTP conntrack (ip_conntrack_proto_sctp.c) in netfilter for Linux ... |
| CVE-2006-2935 | The dvd_read_bca function in the DVD handling code in ... |
| CVE-2006-2936 | The ftdi_sio driver (usb/serial/ftdi_sio.c) in Linux kernel 2.6.x up ... |
| CVE-2006-3085 | xt_sctp in netfilter for Linux kernel before 2.6.17.1 allows attackers ... |
| CVE-2006-3468 | Linux kernel 2.6.x, when using both NFS and EXT3, allows remote ... |
| CVE-2006-3626 | Race condition in Linux kernel 2.6.17.4 and earlier allows local users ... |
| CVE-2006-3634 | The (1) __futex_atomic_op and (2) futex_atomic_cmpxchg_inatomic ... |
| CVE-2006-3741 | The perfmonctl system call (sys_perfmonctl) in Linux kernel 2.4.x and ... |
| CVE-2006-3745 | Unspecified vulnerability in the sctp_make_abort_user function in the ... |
| CVE-2006-4093 | Linux kernel 2.x.6 before 2.6.17.9 and 2.4.x before 2.4.33.1 on ... |
| CVE-2006-4145 | The Universal Disk Format (UDF) filesystem driver in Linux kernel ... |
| CVE-2006-4243 | linux vserver priviledge escalation in remount code |
| CVE-2006-4535 | The Linux kernel 2.6.17.10 and 2.6.17.11 and 2.6.18-rc5 allows local ... |
| CVE-2006-4538 | Linux kernel 2.6.17 and earlier, when running on IA64 or SPARC ... |
| CVE-2006-4572 | ip6_tables in netfilter in the Linux kernel before 2.6.16.31 allows ... |
| CVE-2006-4623 | The Unidirectional Lightweight Encapsulation (ULE) decapsulation ... |
| CVE-2006-4813 | The __block_prepare_write function in fs/buffer.c for Linux kernel ... |
| CVE-2006-4814 | The mincore function in the Linux kernel before 2.4.33.6 does not ... |
| CVE-2006-4997 | The clip_mkip function in net/atm/clip.c of the ATM subsystem in Linux ... |
| CVE-2006-5158 | The nlmclnt_mark_reclaim in clntlock.c in NFS lockd in Linux kernel ... |
| CVE-2006-5173 | Linux kernel does not properly save or restore EFLAGS during a context ... |
| CVE-2006-5174 | The copy_from_user function in the uaccess code in Linux kernel 2.6 ... |
| CVE-2006-5619 | The seqfile handling (ip6fl_get_n function in ip6_flowlabel.c) in ... |
| CVE-2006-5648 | Ubuntu Linux 6.10 for the PowerPC (PPC) allows local users to cause a ... |
| CVE-2006-5649 | Unspecified vulnerability in the "alignment check exception handling" ... |
| CVE-2006-5749 | The isdn_ppp_ccp_reset_alloc_state function in drivers/isdn/isdn_ppp.c ... |
| CVE-2006-5751 | Integer overflow in the get_fdb_entries function in ... |
| CVE-2006-5753 | Unspecified vulnerability in the listxattr system call in Linux ... |
| CVE-2006-5755 | Linux kernel before 2.6.18, when running on x86_64 systems, does not ... |
| CVE-2006-5757 | Race condition in the __find_get_block_slow function in the ISO9660 ... |
| CVE-2006-5823 | The zlib_inflate function in Linux kernel 2.6.x allows local users to ... |
| CVE-2006-6058 | The minix filesystem code in Linux kernel 2.6.x before 2.6.24, ... |
| CVE-2006-6106 | Multiple buffer overflows in the cmtp_recv_interopmsg function in the ... |
| CVE-2006-6333 | The tr_rx function in ibmtr.c for Linux kernel 2.6.19 assigns the ... |
| CVE-2006-6921 | Unspecified versions of the Linux kernel allow local users to cause a ... |
| CVE-2006-7051 | The sys_timer_create function in posix-timers.c for Linux kernel 2.6.x ... |
| CVE-2006-7203 | The compat_sys_mount function in fs/compat.c in Linux kernel 2.6.20 ... |
| CVE-2006-7229 | The skge driver 1.5 in Linux kernel 2.6.15 on Ubuntu does not properly ... |
| CVE-2007-0005 | Multiple buffer overflows in the (1) read and (2) write handlers in ... |
| CVE-2007-0006 | The key serial number collision avoidance code in the key_alloc_serial ... |
| CVE-2007-0241 | |
| CVE-2007-0772 | The Linux kernel 2.6.13 and other versions before 2.6.20.1 allows ... |
| CVE-2007-0773 | The Linux kernel before 2.6.9-42.0.8 in Red Hat 4.4 allows local users ... |
| CVE-2007-0958 | Linux kernel 2.6.x before 2.6.20 allows local users to read unreadable ... |
| CVE-2007-0997 | Race condition in the tee (sys_tee) system call in the Linux kernel ... |
| CVE-2007-1000 | The ipv6_getsockopt_sticky function in net/ipv6/ipv6_sockglue.c in the ... |
| CVE-2007-1353 | The setsockopt function in the L2CAP and HCI Bluetooth support in the ... |
| CVE-2007-1357 | The atalk_sum_skb function in AppleTalk for Linux kernel 2.6.x before ... |
| CVE-2007-1388 | The do_ipv6_setsockopt function in net/ipv6/ipv6_sockglue.c in Linux ... |
| CVE-2007-1496 | nfnetlink_log in netfilter in the Linux kernel before 2.6.20.3 allows ... |
| CVE-2007-1497 | nf_conntrack in netfilter in the Linux kernel before 2.6.20.3 does not ... |
| CVE-2007-1592 | net/ipv6/tcp_ipv6.c in Linux kernel 2.6.x up to 2.6.21-rc3 ... |
| CVE-2007-1730 | Integer signedness error in the DCCP support in the do_dccp_getsockopt ... |
| CVE-2007-1734 | The DCCP support in the do_dccp_getsockopt function in ... |
| CVE-2007-1861 | The nl_fib_lookup function in net/ipv4/fib_frontend.c in Linux Kernel ... |
| CVE-2007-2172 | A typo in Linux kernel 2.6 before 2.6.21-rc6 and 2.4 before 2.4.35 ... |
| CVE-2007-2242 | The IPv6 protocol allows remote attackers to cause a denial of service ... |
| CVE-2007-2451 | Unspecified vulnerability in drivers/crypto/geode-aes.c in GEODE-AES ... |
| CVE-2007-2453 | The random number feature in Linux kernel 2.6 before 2.6.20.13, and ... |
| CVE-2007-2480 | The _udp_lib_get_port function in net/ipv4/udp.c in Linux kernel ... |
| CVE-2007-2525 | Memory leak in the PPP over Ethernet (PPPoE) socket implementation in ... |
| CVE-2007-2875 | Integer underflow in the cpuset_tasks_read function in the Linux ... |
| CVE-2007-2876 | The sctp_new function in (1) ip_conntrack_proto_sctp.c and (2) ... |
| CVE-2007-2878 | The VFAT compat ioctls in the Linux kernel before 2.6.21.2, when run ... |
| CVE-2007-3104 | The sysfs_readdir function in the Linux kernel 2.6, as used in Red Hat ... |
| CVE-2007-3105 | Stack-based buffer overflow in the random number generator (RNG) ... |
| CVE-2007-3380 | The Distributed Lock Manager (DLM) in the cluster manager for Linux ... |
| CVE-2007-3513 | The lcd_write function in drivers/usb/misc/usblcd.c in the Linux ... |
| CVE-2007-3642 | The decode_choice function in net/netfilter/nf_conntrack_h323_asn1.c ... |
| CVE-2007-3731 | The Linux kernel 2.6.20 and 2.6.21 does not properly handle an invalid ... |
| CVE-2007-3739 | mm/mmap.c in the hugetlb kernel, when run on PowerPC systems, does not ... |
| CVE-2007-3740 | The CIFS filesystem in the Linux kernel before 2.6.22, when Unix ... |
| CVE-2007-3843 | The Linux kernel before 2.6.23-rc1 checks the wrong global variable ... |
| CVE-2007-3848 | Linux kernel 2.4.35 and other versions allows local users to send ... |
| CVE-2007-3851 | The drm/i915 component in the Linux kernel before 2.6.22.2, when used ... |
| CVE-2007-4130 | The Linux kernel 2.6.9 before 2.6.9-67 in Red Hat Enterprise Linux ... |
| CVE-2007-4133 | The (1) hugetlb_vmtruncate_list and (2) hugetlb_vmtruncate functions ... |
| CVE-2007-4308 | The (1) aac_cfg_open and (2) aac_compat_ioctl functions in the SCSI ... |
| CVE-2007-4567 | The ipv6_hop_jumbo function in net/ipv6/exthdrs.c in the Linux kernel ... |
| CVE-2007-4571 | The snd_mem_proc_read function in sound/core/memalloc.c in the ... |
| CVE-2007-4573 | The IA32 system call emulation functionality in Linux kernel 2.4.x and ... |
| CVE-2007-4849 | JFFS2, as used on One Laptop Per Child (OLPC) build 542 and possibly ... |
| CVE-2007-4997 | Integer underflow in the ieee80211_rx function in ... |
| CVE-2007-5093 | The disconnect method in the Philips USB Webcam (pwc) driver in Linux ... |
| CVE-2007-5500 | The wait_task_stopped function in the Linux kernel before 2.6.23.8 ... |
| CVE-2007-5501 | The tcp_sacktag_write_queue function in net/ipv4/tcp_input.c in Linux ... |
| CVE-2007-5904 | Multiple buffer overflows in CIFS VFS in Linux kernel 2.6.23 and ... |
| CVE-2007-5938 | The iwl_set_rate function in compatible/iwl3945-base.c in iwlwifi ... |
| CVE-2007-5966 | Integer overflow in the hrtimer_start function in kernel/hrtimer.c in ... |
| CVE-2007-6063 | Buffer overflow in the isdn_net_setcfg function in isdn_net.c in Linux ... |
| CVE-2007-6151 | The isdn_ioctl function in isdn_common.c in Linux kernel 2.6.23 allows ... |
| CVE-2007-6206 | The do_coredump function in fs/exec.c in Linux kernel 2.4.x and 2.6.x ... |
| CVE-2007-6282 | The IPsec implementation in Linux kernel before 2.6.25 allows remote ... |
| CVE-2007-6417 | The shmem_getpage function (mm/shmem.c) in Linux kernel 2.6.11 through ... |
| CVE-2007-6434 | Linux kernel 2.6.23 allows local users to create low pages in virtual ... |
| CVE-2007-6514 | Apache HTTP Server, when running on Linux with a document root on a ... |
| CVE-2007-6694 | The chrp_show_cpuinfo function (chrp/setup.c) in Linux kernel 2.4.21 ... |
| CVE-2007-6712 | Integer overflow in the hrtimer_forward function (hrtimer.c) in Linux ... |
| CVE-2007-6716 | fs/direct-io.c in the dio subsystem in the Linux kernel before 2.6.23 ... |
| CVE-2007-6733 | The nfs_lock function in fs/nfs/file.c in the Linux kernel 2.6.9 does ... |
| CVE-2008-0001 | VFS in the Linux kernel before 2.6.22.16, and 2.6.23.x before ... |
| CVE-2008-0007 | Linux kernel before 2.6.22.17, when using certain drivers that ... |
| CVE-2008-0009 | The vmsplice_to_user function in fs/splice.c in the Linux kernel ... |
| CVE-2008-0010 | The copy_from_user_mmap_sem function in fs/splice.c in the Linux ... |
| CVE-2008-0163 | Linux kernel 2.6, when using vservers, allows local users to access ... |
| CVE-2008-0352 | The Linux kernel 2.6.20 through 2.6.21.1 allows remote attackers to ... |
| CVE-2008-0598 | Unspecified vulnerability in the 32-bit and 64-bit emulation in the ... |
| CVE-2008-0600 | The vmsplice_to_pipe function in Linux kernel 2.6.17 through 2.6.24.1 ... |
| CVE-2008-1294 | Linux kernel 2.6.17, and other versions before 2.6.22, does not check ... |
| CVE-2008-1367 | gcc 4.3.x does not generate a cld instruction while compiling ... |
| CVE-2008-1375 | Race condition in the directory notification subsystem (dnotify) in ... |
| CVE-2008-1514 | arch/s390/kernel/ptrace.c in Linux kernel 2.6.9, and other versions ... |
| CVE-2008-1615 | Linux kernel 2.6.18, and possibly other versions, when running on ... |
| CVE-2008-1669 | Linux kernel before 2.6.25.2 does not apply a certain protection ... |
| CVE-2008-1673 | The asn1 implementation in (a) the Linux kernel 2.4 before 2.4.36.6 ... |
| CVE-2008-1675 | The bdx_ioctl_priv function in the tehuti driver (tehuti.c) in Linux ... |
| CVE-2008-2136 | Memory leak in the ipip6_rcv function in net/ipv6/sit.c in the Linux ... |
| CVE-2008-2137 | The (1) sparc_mmap_check function in arch/sparc/kernel/sys_sparc.c and ... |
| CVE-2008-2148 | The utimensat system call (sys_utimensat) in Linux kernel 2.6.22 and ... |
| CVE-2008-2358 | Integer overflow in the dccp_feat_change function in net/dccp/feat.c ... |
| CVE-2008-2365 | Race condition in the ptrace and utrace support in the Linux kernel ... |
| CVE-2008-2372 | The Linux kernel 2.6.24 and 2.6.25 before 2.6.25.9 allows local users ... |
| CVE-2008-2729 | arch/x86_64/lib/copy_user.S in the Linux kernel before 2.6.19 on some ... |
| CVE-2008-2750 | The pppol2tp_recvmsg function in drivers/net/pppol2tp.c in the Linux ... |
| CVE-2008-2812 | The Linux kernel before 2.6.25.10 does not properly perform tty ... |
| CVE-2008-2826 | Integer overflow in the sctp_getsockopt_local_addrs_old function in ... |
| CVE-2008-2931 | The do_change_type function in fs/namespace.c in the Linux kernel ... |
| CVE-2008-3077 | arch/x86/kernel/ptrace.c in the Linux kernel before 2.6.25.10 on the ... |
| CVE-2008-3247 | The LDT implementation in the Linux kernel 2.6.25.x before 2.6.25.11 ... |
| CVE-2008-3272 | The snd_seq_oss_synth_make_info function in ... |
| CVE-2008-3275 | The (1) real_lookup and (2) __lookup_hash functions in fs/namei.c in ... |
| CVE-2008-3276 | Integer overflow in the dccp_setsockopt_change function in ... |
| CVE-2008-3496 | Buffer overflow in format descriptor parsing in the uvc_parse_format ... |
| CVE-2008-3525 | The sbni_ioctl function in drivers/net/wan/sbni.c in the wan subsystem ... |
| CVE-2008-3526 | Integer overflow in the sctp_setsockopt_auth_key function in ... |
| CVE-2008-3527 | arch/i386/kernel/sysenter.c in the Virtual Dynamic Shared Objects ... |
| CVE-2008-3528 | The error-reporting functionality in (1) fs/ext2/dir.c, (2) ... |
| CVE-2008-3534 | The shmem_delete_inode function in mm/shmem.c in the tmpfs ... |
| CVE-2008-3535 | Off-by-one error in the iov_iter_advance function in mm/filemap.c in ... |
| CVE-2008-3686 | The rt6_fill_node function in net/ipv6/route.c in Linux kernel ... |
| CVE-2008-3792 | net/sctp/socket.c in the Stream Control Transmission Protocol (sctp) ... |
| CVE-2008-3831 | The i915 driver in (1) drivers/char/drm/i915_dma.c in the Linux kernel ... |
| CVE-2008-3833 | The generic_file_splice_write function in fs/splice.c in the Linux ... |
| CVE-2008-3911 | The proc_do_xprt function in net/sunrpc/sysctl.c in the Linux kernel ... |
| CVE-2008-3915 | Buffer overflow in nfsd in the Linux kernel before 2.6.26.4, when ... |
| CVE-2008-4113 | The sctp_getsockopt_hmac_ident function in net/sctp/socket.c in the ... |
| CVE-2008-4210 | fs/open.c in the Linux kernel before 2.6.22 does not properly strip ... |
| CVE-2008-4302 | fs/splice.c in the splice subsystem in the Linux kernel before ... |
| CVE-2008-4307 | Race condition in the do_setlk function in fs/nfs/file.c in the Linux ... |
| CVE-2008-4410 | The vmi_write_ldt_entry function in arch/x86/kernel/vmi_32.c in the ... |
| CVE-2008-4445 | The sctp_auth_ep_set_hmacs function in net/sctp/auth.c in the Stream ... |
| CVE-2008-4554 | The do_splice_from function in fs/splice.c in the Linux kernel before ... |
| CVE-2008-4576 | sctp in Linux kernel before 2.6.25.18 allows remote attackers to cause ... |
| CVE-2008-4618 | The Stream Control Transmission Protocol (sctp) implementation in the ... |
| CVE-2008-4933 | Buffer overflow in the hfsplus_find_cat function in ... |
| CVE-2008-4934 | The hfsplus_block_allocate function in fs/hfsplus/bitmap.c in the ... |
| CVE-2008-5025 | Stack-based buffer overflow in the hfs_cat_find_brec function in ... |
| CVE-2008-5029 | The __scm_destroy function in net/core/scm.c in the Linux kernel ... |
| CVE-2008-5033 | The chip_command function in drivers/media/video/tvaudio.c in the ... |
| CVE-2008-5079 | net/atm/svc.c in the ATM subsystem in the Linux kernel 2.6.27.8 and ... |
| CVE-2008-5134 | Buffer overflow in the lbs_process_bss function in ... |
| CVE-2008-5182 | The inotify functionality in Linux kernel 2.6 before 2.6.28-rc5 might ... |
| CVE-2008-5300 | Linux kernel 2.6.28 allows local users to cause a denial of service ... |
| CVE-2008-5395 | The parisc_show_stack function in arch/parisc/kernel/traps.c in the ... |
| CVE-2008-5700 | libata in the Linux kernel before 2.6.27.9 does not set minimum ... |
| CVE-2008-5701 | Array index error in arch/mips/kernel/scall64-o32.S in the Linux ... |
| CVE-2008-5702 | Buffer underflow in the ibwdt_ioctl function in ... |
| CVE-2008-5713 | The __qdisc_run function in net/sched/sch_generic.c in the Linux ... |
| CVE-2008-6107 | The (1) sys32_mremap function in arch/sparc64/kernel/sys_sparc32.c, ... |
| CVE-2009-0024 | The sys_remap_file_pages function in mm/fremap.c in the Linux kernel ... |
| CVE-2009-0028 | The clone system call in the Linux kernel 2.6.28 and earlier allows ... |
| CVE-2009-0029 | The ABI in the Linux kernel 2.6.28 and earlier on s390, powerpc, ... |
| CVE-2009-0031 | Memory leak in the keyctl_join_session_keyring function ... |
| CVE-2009-0065 | Buffer overflow in net/sctp/sm_statefuns.c in the Stream Control ... |
| CVE-2009-0269 | fs/ecryptfs/inode.c in the eCryptfs subsystem in the Linux kernel ... |
| CVE-2009-0322 | drivers/firmware/dell_rbu.c in the Linux kernel before 2.6.27.13, and ... |
| CVE-2009-0675 | The skfp_ioctl function in drivers/net/skfp/skfddi.c in the Linux ... |
| CVE-2009-0676 | The sock_getsockopt function in net/core/sock.c in the Linux kernel ... |
| CVE-2009-0745 | The ext4_group_add function in fs/ext4/resize.c in the Linux kernel ... |
| CVE-2009-0746 | The make_indexed_dir function in fs/ext4/namei.c in the Linux kernel ... |
| CVE-2009-0747 | The ext4_isize function in fs/ext4/ext4.h in the Linux kernel 2.6.27 ... |
| CVE-2009-0748 | The ext4_fill_super function in fs/ext4/super.c in the Linux kernel ... |
| CVE-2009-0787 | The ecryptfs_write_metadata_to_contents function in the eCryptfs ... |
| CVE-2009-0834 | The audit_syscall_entry function in the Linux kernel 2.6.28.7 and ... |
| CVE-2009-0835 | The __secure_computing function in kernel/seccomp.c in the seccomp ... |
| CVE-2009-0859 | The shm_get_stat function in ipc/shm.c in the shm subsystem in the ... |
| CVE-2009-0935 | The inotify_read function in the Linux kernel 2.6.27 to 2.6.27.13, ... |
| CVE-2009-1046 | The console selection feature in the Linux kernel 2.6.28 before ... |
| CVE-2009-1072 | nfsd in the Linux kernel before 2.6.28.9 does not drop the CAP_MKNOD ... |
| CVE-2009-1184 | The selinux_ip_postroute_iptables_compat function in ... |
| CVE-2009-1192 | The (1) agp_generic_alloc_page and (2) agp_generic_alloc_pages ... |
| CVE-2009-1242 | The vmx_set_msr function in arch/x86/kvm/vmx.c in the VMX ... |
| CVE-2009-1265 | Integer overflow in rose_sendmsg (sys/net/af_rose.c) in the Linux ... |
| CVE-2009-1298 | The ip_frag_reasm function in net/ipv4/ip_fragment.c in the Linux ... |
| CVE-2009-1336 | fs/nfs/client.c in the Linux kernel before 2.6.23 does not properly ... |
| CVE-2009-1337 | The exit_notify function in kernel/exit.c in the Linux kernel before ... |
| CVE-2009-1338 | The kill_something_info function in kernel/signal.c in the Linux ... |
| CVE-2009-1360 | The __inet6_check_established function in net/ipv6/inet6_hashtables.c ... |
| CVE-2009-1385 | Integer underflow in the e1000_clean_rx_irq function in ... |
| CVE-2009-1389 | Buffer overflow in the RTL8169 NIC driver (drivers/net/r8169.c) in the ... |
| CVE-2009-1439 | Buffer overflow in fs/cifs/connect.c in CIFS in the Linux kernel ... |
| CVE-2009-1527 | Race condition in the ptrace_attach function in kernel/ptrace.c in the ... |
| CVE-2009-1630 | The nfs_permission function in fs/nfs/dir.c in the NFS client ... |
| CVE-2009-1633 | Multiple buffer overflows in the cifs subsystem in the Linux kernel ... |
| CVE-2009-1758 | The hypervisor_callback function in Xen, possibly before 3.4.0, as ... |
| CVE-2009-1883 | The z90crypt_unlocked_ioctl function in the z90crypt driver in the ... |
| CVE-2009-1895 | The personality subsystem in the Linux kernel before 2.6.31-rc3 has a ... |
| CVE-2009-1897 | The tun_chr_poll function in drivers/net/tun.c in the tun subsystem in ... |
| CVE-2009-1914 | The pci_register_iommu_region function in ... |
| CVE-2009-1961 | The inode double locking code in fs/ocfs2/file.c in the Linux kernel ... |
| CVE-2009-2287 | The kvm_arch_vcpu_ioctl_set_sregs function in the KVM in Linux kernel ... |
| CVE-2009-2406 | Stack-based buffer overflow in the parse_tag_11_packet function in ... |
| CVE-2009-2407 | Heap-based buffer overflow in the parse_tag_3_packet function in ... |
| CVE-2009-2584 | Off-by-one error in the options_write function in ... |
| CVE-2009-2691 | The mm_for_maps function in fs/proc/base.c in the Linux kernel ... |
| CVE-2009-2692 | The Linux kernel 2.6.0 through 2.6.30.4, and 2.4.4 through 2.4.37.4, ... |
| CVE-2009-2695 | The Linux kernel before 2.6.31-rc7 does not properly prevent mmap ... |
| CVE-2009-2698 | The udp_sendmsg function in the UDP implementation in (1) ... |
| CVE-2009-2767 | The init_posix_timers function in kernel/posix-timers.c in the Linux ... |
| CVE-2009-2768 | The load_flat_shared_library function in fs/binfmt_flat.c in the flat ... |
| CVE-2009-2844 | cfg80211 in net/wireless/scan.c in the Linux kernel 2.6.30-rc1 and ... |
| CVE-2009-2846 | The eisa_eeprom_read function in the parisc isa-eeprom component ... |
| CVE-2009-2847 | The do_sigaltstack function in kernel/signal.c in Linux kernel 2.4 ... |
| CVE-2009-2848 | The execve function in the Linux kernel, possibly 2.6.30-rc6 and ... |
| CVE-2009-2849 | The md driver (drivers/md/md.c) in the Linux kernel before 2.6.30.2 ... |
| CVE-2009-2903 | Memory leak in the appletalk subsystem in the Linux kernel 2.4.x ... |
| CVE-2009-2908 | The d_delete function in fs/ecryptfs/inode.c in eCryptfs in the Linux ... |
| CVE-2009-2909 | Integer signedness error in the ax25_setsockopt function in ... |
| CVE-2009-2910 | arch/x86/ia32/ia32entry.S in the Linux kernel before 2.6.31.4 on the ... |
| CVE-2009-3001 | The llc_ui_getname function in net/llc/af_llc.c in the Linux kernel ... |
| CVE-2009-3002 | The Linux kernel before 2.6.31-rc7 does not initialize certain data ... |
| CVE-2009-3043 | The tty_ldisc_hangup function in drivers/char/tty_ldisc.c in the Linux ... |
| CVE-2009-3080 | Array index error in the gdth_read_event function in ... |
| CVE-2009-3228 | The tc_fill_tclass function in net/sched/sch_api.c in the tc subsystem ... |
| CVE-2009-3238 | The get_random_int function in drivers/char/random.c in the Linux ... |
| CVE-2009-3280 | Integer signedness error in the find_ie function in ... |
| CVE-2009-3286 | NFSv4 in the Linux kernel 2.6.18, and possibly other versions, does ... |
| CVE-2009-3288 | The sg_build_indirect function in drivers/scsi/sg.c in Linux kernel ... |
| CVE-2009-3290 | The kvm_emulate_hypercall function in arch/x86/kvm/x86.c in KVM in the ... |
| CVE-2009-3547 | Multiple race conditions in fs/pipe.c in the Linux kernel before ... |
| CVE-2009-3612 | The tcf_fill_node function in net/sched/cls_api.c in the netlink ... |
| CVE-2009-3613 | The swiotlb functionality in the r8169 driver in drivers/net/r8169.c ... |
| CVE-2009-3620 | The ATI Rage 128 (aka r128) driver in the Linux kernel before ... |
| CVE-2009-3621 | net/unix/af_unix.c in the Linux kernel 2.6.31.4 and earlier allows ... |
| CVE-2009-3623 | The lookup_cb_cred function in fs/nfsd/nfs4callback.c in the nfsd4 ... |
| CVE-2009-3624 | The get_instantiation_keyring function in security/keys/keyctl.c in ... |
| CVE-2009-3638 | Integer overflow in the kvm_dev_ioctl_get_supported_cpuid function in ... |
| CVE-2009-3640 | The update_cr8_intercept function in arch/x86/kvm/x86.c in the KVM ... |
| CVE-2009-3722 | The handle_dr function in arch/x86/kvm/vmx.c in the KVM subsystem in ... |
| CVE-2009-3725 | The connector layer in the Linux kernel before 2.6.31.5 does not ... |
| CVE-2009-3726 | The nfs4_proc_lock function in fs/nfs/nfs4proc.c in the NFSv4 client ... |
| CVE-2009-3889 | The dbg_lvl file for the megaraid_sas driver in the Linux kernel ... |
| CVE-2009-3939 | The poll_mode_io file for the megaraid_sas driver in the Linux kernel ... |
| CVE-2009-4004 | Buffer overflow in the kvm_vcpu_ioctl_x86_setup_mce function in ... |
| CVE-2009-4005 | The collect_rx_frame function in drivers/isdn/hisax/hfc_usb.c in the ... |
| CVE-2009-4020 | Stack-based buffer overflow in the hfs subsystem in the Linux kernel ... |
| CVE-2009-4021 | The fuse_direct_io function in fs/fuse/file.c in the fuse subsystem in ... |
| CVE-2009-4026 | The mac80211 subsystem in the Linux kernel before ... |
| CVE-2009-4027 | Race condition in the mac80211 subsystem in the Linux kernel before ... |
| CVE-2009-4031 | The do_insn_fetch function in arch/x86/kvm/emulate.c in the x86 ... |
| CVE-2009-4131 | The EXT4_IOC_MOVE_EXT (aka move extents) ioctl implementation in the ... |
| CVE-2009-4138 | drivers/firewire/ohci.c in the Linux kernel before 2.6.32-git9, when ... |
| CVE-2009-4141 | Use-after-free vulnerability in the fasync_helper function in ... |
| CVE-2009-4271 | The Linux kernel 2.6.9 through 2.6.17 on the x86_64 and amd64 ... |
| CVE-2009-4272 | A certain Red Hat patch for net/ipv4/route.c in the Linux kernel ... |
| CVE-2009-4306 | Unspecified vulnerability in the EXT4_IOC_MOVE_EXT (aka move extents) ... |
| CVE-2009-4307 | The ext4_fill_flex_info function in fs/ext4/super.c in the Linux ... |
| CVE-2009-4308 | The ext4_decode_error function in fs/ext4/super.c in the ext4 ... |
| CVE-2009-4410 | The fuse_ioctl_copy_user function in the ioctl handler in ... |
| CVE-2009-4536 | drivers/net/e1000/e1000_main.c in the e1000 driver in the Linux kernel ... |
| CVE-2009-4537 | drivers/net/r8169.c in the r8169 driver in the Linux kernel 2.6.32.3 ... |
| CVE-2009-4538 | drivers/net/e1000e/netdev.c in the e1000e driver in the Linux kernel ... |
| CVE-2009-4895 | linux tty null ptr dereference |
| CVE-2010-0003 | The print_fatal_signal function in kernel/signal.c in the Linux kernel ... |
| CVE-2010-0006 | The ipv6_hop_jumbo function in net/ipv6/exthdrs.c in the Linux kernel ... |
| CVE-2010-0007 | net/bridge/netfilter/ebtables.c in the ebtables module in the ... |
| CVE-2010-0008 | The sctp_rcv_ootb function in the SCTP implementation in the Linux ... |
| CVE-2010-0291 | The Linux kernel before 2.6.32.4 allows local users to gain privileges ... |
| CVE-2010-0298 | The x86 emulator in KVM 83 does not use the Current Privilege Level ... |
| CVE-2010-0299 | openSUSE 11.2 installs the devtmpfs root directory with insecure ... |
| CVE-2010-0306 | The x86 emulator in KVM 83, when a guest is configured for Symmetric ... |
| CVE-2010-0307 | The load_elf_binary function in fs/binfmt_elf.c in the Linux kernel ... |
| CVE-2010-0309 | The pit_ioport_read function in the Programmable Interval Timer (PIT) ... |
| CVE-2010-0410 | drivers/connector/connector.c in the Linux kernel before 2.6.32.8 ... |
| CVE-2010-0415 | The do_pages_move function in mm/migrate.c in the Linux kernel before ... |
| CVE-2010-0437 | The ip6_dst_lookup_tail function in net/ipv6/ip6_output.c in the Linux ... |
| CVE-2010-0622 | The wake_futex_pi function in kernel/futex.c in the Linux kernel ... |
| CVE-2010-0623 | The futex_lock_pi function in kernel/futex.c in the Linux kernel ... |
| CVE-2010-0727 | The gfs2_lock function in the Linux kernel before ... |
| CVE-2010-0741 | The virtio_net_bad_features function in hw/virtio-net.c in the ... |
| CVE-2010-1083 | The processcompl_compat function in drivers/usb/core/devio.c in Linux ... |
| CVE-2010-1084 | Linux kernel 2.6.18 through 2.6.33, and possibly other versions, ... |
| CVE-2010-1085 | The azx_position_ok function in hda_intel.c in Linux kernel 2.6.33-rc4 ... |
| CVE-2010-1086 | The ULE decapsulation functionality in ... |
| CVE-2010-1087 | The nfs_wait_on_request function in fs/nfs/pagelist.c in Linux kernel ... |
| CVE-2010-1088 | fs/namei.c in Linux kernel 2.6.18 through 2.6.34 does not always ... |
| CVE-2010-1146 | The Linux kernel 2.6.33.2 and earlier, when a ReiserFS filesystem ... |
| CVE-2010-1148 | The cifs_create function in fs/cifs/dir.c in the Linux kernel 2.6.33.2 ... |
| CVE-2010-1162 | The release_one_tty function in drivers/char/tty_io.c in the Linux ... |
| CVE-2010-1173 | The sctp_process_unk_param function in net/sctp/sm_make_chunk.c in the ... |
| CVE-2010-1187 | The Transparent Inter-Process Communication (TIPC) functionality in ... |
| CVE-2010-1188 | Use-after-free vulnerability in net/ipv4/tcp_input.c in the Linux ... |
| CVE-2010-1437 | Race condition in the find_keyring_by_name function in ... |
| CVE-2010-1446 | arch/powerpc/mm/fsl_booke_mmu.c in KGDB in the Linux kernel 2.6.30 and ... |
| CVE-2010-1451 | The TSB I-TLB load implementation in arch/sparc/kernel/tsb.S in the ... |
| CVE-2010-1488 | The proc_oom_score function in fs/proc/base.c in the Linux kernel ... |
| CVE-2010-1636 | The btrfs_ioctl_clone function in fs/btrfs/ioctl.c in the btrfs ... |
| CVE-2010-2066 | ext4 ioctl issue |
| CVE-2010-2071 | The btrfs_xattr_set_acl function in fs/btrfs/acl.c in btrfs in the ... |
| CVE-2010-2226 | xfs SWAPEXT ioctl permissions bypass |
| CVE-2010-2240 | mm: keep a guard page below a grow-down stack segment |
| CVE-2010-2248 | os/2 smb issue |
| CVE-2010-2495 | l2tp oops |
| CVE-2010-2521 | |
| CVE-2010-2537 | btrfs issue |
| CVE-2010-2798 | gfs2 null ptr dereference |
| CVE-2010-2959 | nframes issue |
| DSA-1749-1 | linux-2.6 - several vulnerabilities |
| DSA-1800-1 | linux-2.6 user-mode-linux - several vulnerabilities |
| DSA-1809-1 | linux-2.6 user-mode-linux - several vulnerabilities |
| DSA-1845-1 | linux-2.6 - several vulnerabilities |
| DSA-1862-1 | linux-2.6 - privilege escalation |
| DSA-1915-1 | linux-2.6 - several vulnerabilities |
| DSA-1927-1 | linux-2.6 - several vulnerabilities |
| DSA-1996-1 | linux-2.6 - several vulnerabilities |
| DSA-2012-1 | linux-2.6 - several issues |
| DSA-2053-1 | linux-2.6 - several issues |
| DSA-2094-1 | linux-2.6 - several issues |
| DTSA-113-1 | linux-2.6 - privilege escalation |
| DTSA-204-1 | linux-2.6 - several vulnerabilities |
| TEMP-0000000-076379 | kernel: Signedness problems in net/core/filter |
| TEMP-0000000-077806 | Four potentially DoS exploitable deadlocks and leaks in kernel 2.6 |
| TEMP-0412143-053694 | vserver patch allows renice of processes in different context |