| Max CVSS | 6.9 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2018-1000204 | 6.3 |
Linux Kernel version 3.18 to 4.16 incorrectly handles an SG_IO ioctl on /dev/sg0 with dxfer_direction=SG_DXFER_FROM_DEV and an empty 6-byte cmdp. This may lead to copying up to 1000 kernel heap pages to the userspace. This has been fixed upstream in
|
05-08-2024 - 13:15 | 26-06-2018 - 14:29 | |
| CVE-2018-10021 | 4.9 |
drivers/scsi/libsas/sas_scsi_host.c in the Linux kernel before 4.16 allows local users to cause a denial of service (ata qc leak) by triggering certain failure conditions. NOTE: a third party disputes the relevance of this report because the failure
|
05-08-2024 - 08:15 | 11-04-2018 - 17:29 | |
| CVE-2018-3665 | 4.7 |
System software utilizing Lazy FP state restore technique on systems using Intel Core-based microprocessors may potentially allow a local process to infer data from another process through a speculative execution side channel.
|
09-06-2021 - 16:24 | 21-06-2018 - 20:29 | |
| CVE-2018-5814 | 6.9 |
In the Linux Kernel before version 4.16.11, 4.14.43, 4.9.102, and 4.4.133, multiple race condition errors when handling probe, disconnect, and rebind operations can be exploited to trigger a use-after-free condition or a NULL pointer dereference by s
|
20-05-2019 - 15:29 | 12-06-2018 - 16:29 | |
| CVE-2018-10087 | 2.1 |
The kernel_wait4 function in kernel/exit.c in the Linux kernel before 4.13, when an unspecified architecture and compiler is used, might allow local users to cause a denial of service by triggering an attempted use of the -INT_MIN value.
|
20-03-2019 - 18:49 | 13-04-2018 - 13:29 | |
| CVE-2018-10124 | 2.1 |
The kill_something_info function in kernel/signal.c in the Linux kernel before 4.13, when an unspecified architecture and compiler is used, might allow local users to cause a denial of service via an INT_MIN argument.
|
20-03-2019 - 18:40 | 16-04-2018 - 14:29 | |
| CVE-2017-18255 | 4.6 |
The perf_cpu_time_max_percent_handler function in kernel/events/core.c in the Linux kernel before 4.11 allows local users to cause a denial of service (integer overflow) or possibly have unspecified other impact via a large value, as demonstrated by
|
19-01-2019 - 11:29 | 31-03-2018 - 17:29 | |
| CVE-2018-7755 | 2.1 |
An issue was discovered in the fd_locked_ioctl function in drivers/block/floppy.c in the Linux kernel through 4.15.7. The floppy driver will copy a kernel pointer to user memory in response to the FDGETPRM ioctl. An attacker can send the FDGETPRM ioc
|
04-10-2018 - 10:29 | 08-03-2018 - 07:29 | |
| CVE-2017-13695 | 2.1 |
The acpi_ns_evaluate() function in drivers/acpi/acpica/nseval.c in the Linux kernel through 4.12.9 does not flush the operand cache and causes a kernel stack dump, which allows local users to obtain sensitive information from kernel memory and bypass
|
11-09-2018 - 10:29 | 25-08-2017 - 08:29 | |
| CVE-2017-18257 | 4.9 |
The __get_data_block function in fs/f2fs/data.c in the Linux kernel before 4.11 allows local users to cause a denial of service (integer overflow and loop) via crafted use of the open and fallocate system calls with an FS_IOC_FIEMAP ioctl.
|
04-07-2018 - 01:29 | 04-04-2018 - 17:29 |