Search CVE reports

Toggle filters

1291 – 1300 of 1353 results

CVE-2013-0871

High priority

Some fixes available 12 of 35

Race condition in the ptrace functionality in the Linux kernel before 3.7.5 allows local users to gain privileges via a PTRACE_SETREGS ptrace system call in a crafted application, as demonstrated by ptrace_death.

31 affected packages

linux, linux-ec2, linux-mvl-dove, linux-fsl-imx51, linux-armadaxp...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
linux
linux-ec2
linux-mvl-dove
linux-fsl-imx51
linux-armadaxp
linux-aws
linux-flo
linux-gke
linux-goldfish
linux-grouper
linux-hwe
linux-hwe-edge
linux-linaro-omap
linux-linaro-shared
linux-linaro-vexpress
linux-lts-backport-maverick
linux-lts-backport-oneiric
linux-lts-quantal
linux-lts-raring
linux-lts-trusty
linux-lts-utopic
linux-lts-vivid
linux-lts-wily
linux-lts-xenial
linux-maguro
linux-mako
linux-manta
linux-qcm-msm
linux-raspi2
linux-snapdragon
linux-ti-omap4
Show all 31 packages Show less packages

CVE-2013-0268

Medium priority

Some fixes available 12 of 43

The msr_open function in arch/x86/kernel/msr.c in the Linux kernel before 3.7.6 allows local users to bypass intended capability restrictions by executing a crafted application as root, as demonstrated by msr32.c.

31 affected packages

linux-aws, linux, linux-ec2, linux-lts-backport-maverick, linux-armadaxp...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
linux-aws
linux
linux-ec2
linux-lts-backport-maverick
linux-armadaxp
linux-flo
linux-fsl-imx51
linux-gke
linux-goldfish
linux-grouper
linux-hwe
linux-hwe-edge
linux-linaro-omap
linux-linaro-shared
linux-linaro-vexpress
linux-lts-backport-oneiric
linux-lts-quantal
linux-lts-raring
linux-lts-trusty
linux-lts-utopic
linux-lts-vivid
linux-lts-wily
linux-lts-xenial
linux-maguro
linux-mako
linux-manta
linux-mvl-dove
linux-qcm-msm
linux-raspi2
linux-snapdragon
linux-ti-omap4
Show all 31 packages Show less packages

CVE-2013-0160

Low priority

Some fixes available 11 of 49

The Linux kernel through 3.7.9 allows local users to obtain sensitive information about keystroke timing by using the inotify API on the /dev/ptmx device.

32 affected packages

linux, linux-ec2, linux-lts-backport-maverick, linux-mvl-dove, linux-armadaxp...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
linux
linux-ec2
linux-lts-backport-maverick
linux-mvl-dove
linux-armadaxp
linux-aws
linux-flo
linux-fsl-imx51
linux-gke
linux-goldfish
linux-grouper
linux-hwe
linux-hwe-edge
linux-linaro-omap
linux-linaro-shared
linux-linaro-vexpress
linux-lts-backport-oneiric
linux-lts-quantal
linux-lts-raring
linux-lts-saucy
linux-lts-trusty
linux-lts-utopic
linux-lts-vivid
linux-lts-wily
linux-lts-xenial
linux-maguro
linux-mako
linux-manta
linux-qcm-msm
linux-raspi2
linux-snapdragon
linux-ti-omap4
Show all 32 packages Show less packages

CVE-2013-0190

Medium priority

Some fixes available 7 of 38

The xen_failsafe_callback function in Xen for the Linux kernel 2.6.23 and other versions, when running a 32-bit PVOPS guest, allows local users to cause a denial of service (guest crash) by triggering an iret fault, leading to use...

31 affected packages

linux-flo, linux, linux-armadaxp, linux-aws, linux-ec2...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
linux-flo
linux
linux-armadaxp
linux-aws
linux-ec2
linux-fsl-imx51
linux-gke
linux-goldfish
linux-grouper
linux-hwe
linux-hwe-edge
linux-linaro-omap
linux-linaro-shared
linux-linaro-vexpress
linux-lts-backport-maverick
linux-lts-backport-oneiric
linux-lts-quantal
linux-lts-raring
linux-lts-trusty
linux-lts-utopic
linux-lts-vivid
linux-lts-wily
linux-lts-xenial
linux-maguro
linux-mako
linux-manta
linux-mvl-dove
linux-qcm-msm
linux-raspi2
linux-snapdragon
linux-ti-omap4
Show all 31 packages Show less packages

CVE-2012-6689

Medium priority

Some fixes available 3 of 22

The netlink_sendmsg function in net/netlink/af_netlink.c in the Linux kernel before 3.5.5 does not validate the dst_pid field, which allows local users to have an unspecified impact by spoofing Netlink messages.

30 affected packages

linux, linux-ec2, linux-fsl-imx51, linux-linaro-omap, linux-mvl-dove...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
linux
linux-ec2
linux-fsl-imx51
linux-linaro-omap
linux-mvl-dove
linux-armadaxp
linux-linaro-shared
linux-linaro-vexpress
linux-lts-quantal
linux-qcm-msm
linux-aws
linux-flo
linux-gke
linux-goldfish
linux-grouper
linux-hwe
linux-hwe-edge
linux-lts-raring
linux-lts-saucy
linux-lts-trusty
linux-lts-utopic
linux-lts-vivid
linux-lts-wily
linux-lts-xenial
linux-maguro
linux-mako
linux-manta
linux-raspi2
linux-snapdragon
linux-ti-omap4
Show all 30 packages Show less packages

CVE-2012-2669

Medium priority

Some fixes available 6 of 36

The main function in tools/hv/hv_kvp_daemon.c in hypervkvpd, as distributed in the Linux kernel before 3.4.5, does not validate the origin of Netlink messages, which allows local users to spoof Netlink communication via a crafted...

31 affected packages

linux-aws, linux-gke, linux-mvl-dove, linux-lts-backport-maverick, linux-ti-omap4...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
linux-aws
linux-gke
linux-mvl-dove
linux-lts-backport-maverick
linux-ti-omap4
linux
linux-armadaxp
linux-ec2
linux-flo
linux-fsl-imx51
linux-goldfish
linux-grouper
linux-hwe
linux-hwe-edge
linux-linaro-omap
linux-linaro-shared
linux-linaro-vexpress
linux-lts-backport-oneiric
linux-lts-quantal
linux-lts-raring
linux-lts-trusty
linux-lts-utopic
linux-lts-vivid
linux-lts-wily
linux-lts-xenial
linux-maguro
linux-mako
linux-manta
linux-qcm-msm
linux-raspi2
linux-snapdragon
Show all 31 packages Show less packages

CVE-2012-4508

Medium priority

Some fixes available 12 of 49

Race condition in fs/ext4/extents.c in the Linux kernel before 3.4.16 allows local users to obtain sensitive information from a deleted file by reading an extent that was not properly marked as uninitialized.

32 affected packages

linux, linux-ec2, linux-armadaxp, linux-aws, linux-flo...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
linux
linux-ec2
linux-armadaxp
linux-aws
linux-flo
linux-fsl-imx51
linux-gke
linux-goldfish
linux-grouper
linux-hwe
linux-hwe-edge
linux-linaro-omap
linux-linaro-shared
linux-linaro-vexpress
linux-lts-backport-maverick
linux-lts-backport-natty
linux-lts-backport-oneiric
linux-lts-quantal
linux-lts-raring
linux-lts-trusty
linux-lts-utopic
linux-lts-vivid
linux-lts-wily
linux-lts-xenial
linux-maguro
linux-mako
linux-manta
linux-mvl-dove
linux-qcm-msm
linux-raspi2
linux-snapdragon
linux-ti-omap4
Show all 32 packages Show less packages

CVE-2012-5055

Low priority
Ignored

DaoAuthenticationProvider in VMware SpringSource Spring Security before 2.0.8, 3.0.x before 3.0.8, and 3.1.x before 3.1.3 does not check the password if the user is not found, which makes the response delay shorter and might allow...

1 affected package

libspring-security-2.0-java

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
libspring-security-2.0-java Not in release
Show less packages

CVE-2011-2732

Medium priority
Ignored

CRLF injection vulnerability in the logout functionality in VMware SpringSource Spring Security before 2.0.7 and 3.0.x before 3.0.6 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting...

1 affected package

libspring-security-2.0-java

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
libspring-security-2.0-java
Show less packages

CVE-2011-2731

Medium priority
Ignored

Race condition in the RunAsManager mechanism in VMware SpringSource Spring Security before 2.0.7 and 3.0.x before 3.0.6 stores the Authentication object in the shared security context, which allows attackers to gain privileges via...

1 affected package

libspring-security-2.0-java

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
libspring-security-2.0-java
Show less packages
  1. Previous page
  2. 128
  3. 129
  4. 130
  5. 131
  6. 132
  7. Next page
Export to JSON