Max CVSS | 7.2 | Min CVSS | 1.9 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2013-2094 | 7.2 |
The perf_swevent_init function in kernel/events/core.c in the Linux kernel before 3.8.9 uses an incorrect integer data type, which allows local users to gain privileges via a crafted perf_event_open system call.
|
04-03-2024 - 22:58 | 14-05-2013 - 20:55 | |
CVE-2013-0913 | 7.2 |
Integer overflow in drivers/gpu/drm/i915/i915_gem_execbuffer.c in the i915 driver in the Direct Rendering Manager (DRM) subsystem in the Linux kernel through 3.8.3, as used in Google Chrome OS before 25.0.1364.173 and other products, allows local use
|
05-02-2024 - 19:48 | 18-03-2013 - 15:55 | |
CVE-2013-1860 | 6.9 |
Heap-based buffer overflow in the wdm_in_callback function in drivers/usb/class/cdc-wdm.c in the Linux kernel before 3.8.4 allows physically proximate attackers to cause a denial of service (system crash) or possibly execute arbitrary code via a craf
|
05-10-2023 - 14:19 | 22-03-2013 - 11:59 | |
CVE-2013-1979 | 6.9 |
The scm_set_cred function in include/net/scm.h in the Linux kernel before 3.8.11 uses incorrect uid and gid values during credentials passing, which allows local users to gain privileges via a crafted application.
|
13-02-2023 - 04:42 | 03-05-2013 - 11:57 | |
CVE-2013-1929 | 4.4 |
Heap-based buffer overflow in the tg3_read_vpd function in drivers/net/ethernet/broadcom/tg3.c in the Linux kernel before 3.8.6 allows physically proximate attackers to cause a denial of service (system crash) or possibly execute arbitrary code via c
|
13-02-2023 - 04:42 | 07-06-2013 - 14:03 | |
CVE-2013-1774 | 4.0 |
The chase_port function in drivers/usb/serial/io_ti.c in the Linux kernel before 3.7.4 allows local users to cause a denial of service (NULL pointer dereference and system crash) via an attempted /dev/ttyUSB read or write operation on a disconnected
|
13-02-2023 - 04:41 | 28-02-2013 - 19:55 | |
CVE-2013-1848 | 6.2 |
fs/ext3/super.c in the Linux kernel before 3.8.4 uses incorrect arguments to functions in certain circumstances related to printk input, which allows local users to conduct format-string attacks and possibly gain privileges via a crafted application.
|
13-02-2023 - 04:41 | 22-03-2013 - 11:59 | |
CVE-2013-1819 | 4.6 |
The _xfs_buf_find function in fs/xfs/xfs_buf.c in the Linux kernel before 3.7.6 does not validate block numbers, which allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impa
|
13-02-2023 - 04:41 | 06-03-2013 - 22:55 | |
CVE-2013-1767 | 6.2 |
Use-after-free vulnerability in the shmem_remount_fs function in mm/shmem.c in the Linux kernel before 3.7.10 allows local users to gain privileges or cause a denial of service (system crash) by remounting a tmpfs filesystem without specifying a requ
|
13-02-2023 - 04:41 | 28-02-2013 - 19:55 | |
CVE-2013-1792 | 4.7 |
Race condition in the install_user_keyrings function in security/keys/process_keys.c in the Linux kernel before 3.8.3 allows local users to cause a denial of service (NULL pointer dereference and system crash) via crafted keyctl system calls that tri
|
13-02-2023 - 04:41 | 22-03-2013 - 11:59 | |
CVE-2013-3231 | 4.7 |
The llc_ui_recvmsg function in net/llc/af_llc.c in the Linux kernel before 3.9-rc7 does not initialize a certain length variable, which allows local users to obtain sensitive information from kernel stack memory via a crafted recvmsg or recvfrom syst
|
29-11-2017 - 02:29 | 22-04-2013 - 11:41 | |
CVE-2013-3224 | 4.9 |
The bt_sock_recvmsg function in net/bluetooth/af_bluetooth.c in the Linux kernel before 3.9-rc7 does not properly initialize a certain length variable, which allows local users to obtain sensitive information from kernel stack memory via a crafted re
|
29-11-2017 - 02:29 | 22-04-2013 - 11:41 | |
CVE-2013-3222 | 4.9 |
The vcc_recvmsg function in net/atm/common.c in the Linux kernel before 3.9-rc7 does not initialize a certain length variable, which allows local users to obtain sensitive information from kernel stack memory via a crafted recvmsg or recvfrom system
|
29-11-2017 - 02:29 | 22-04-2013 - 11:41 | |
CVE-2013-3076 | 4.9 |
The crypto API in the Linux kernel through 3.9-rc8 does not initialize certain length variables, which allows local users to obtain sensitive information from kernel stack memory via a crafted recvmsg or recvfrom system call, related to the hash_recv
|
29-11-2017 - 02:29 | 22-04-2013 - 11:40 | |
CVE-2013-3225 | 4.9 |
The rfcomm_sock_recvmsg function in net/bluetooth/rfcomm/sock.c in the Linux kernel before 3.9-rc7 does not initialize a certain length variable, which allows local users to obtain sensitive information from kernel stack memory via a crafted recvmsg
|
29-11-2017 - 02:29 | 22-04-2013 - 11:41 | |
CVE-2013-2635 | 1.9 |
The rtnl_fill_ifinfo function in net/core/rtnetlink.c in the Linux kernel before 3.8.4 does not initialize a certain structure member, which allows local users to obtain sensitive information from kernel stack memory via a crafted application.
|
07-02-2014 - 04:47 | 22-03-2013 - 11:59 | |
CVE-2013-2634 | 1.9 |
net/dcb/dcbnl.c in the Linux kernel before 3.8.4 does not initialize certain structures, which allows local users to obtain sensitive information from kernel stack memory via a crafted application.
|
07-02-2014 - 04:47 | 22-03-2013 - 11:59 | |
CVE-2013-0914 | 3.6 |
The flush_signal_handlers function in kernel/signal.c in the Linux kernel before 3.8.4 preserves the value of the sa_restorer field across an exec operation, which makes it easier for local users to bypass the ASLR protection mechanism via a crafted
|
07-02-2014 - 04:45 | 22-03-2013 - 11:59 | |
CVE-2013-2547 | 2.1 |
The crypto_report_one function in crypto/crypto_user.c in the report API in the crypto user configuration API in the Linux kernel through 3.8.2 does not initialize certain structure members, which allows local users to obtain sensitive information fr
|
04-01-2014 - 04:46 | 15-03-2013 - 20:55 | |
CVE-2013-2548 | 2.1 |
The crypto_report_one function in crypto/crypto_user.c in the report API in the crypto user configuration API in the Linux kernel through 3.8.2 uses an incorrect length value during a copy operation, which allows local users to obtain sensitive infor
|
04-01-2014 - 04:46 | 15-03-2013 - 20:55 | |
CVE-2013-2546 | 2.1 |
The report API in the crypto user configuration API in the Linux kernel through 3.8.2 uses an incorrect C library function for copying strings, which allows local users to obtain sensitive information from kernel stack memory by leveraging the CAP_NE
|
04-01-2014 - 04:46 | 15-03-2013 - 20:55 |