Search CVE reports
211 – 220 of 579 results
CVE-2009-3889
Low priorityThe dbg_lvl file for the megaraid_sas driver in the Linux kernel before 2.6.27 has world-writable permissions, which allows local users to change the (1) behavior and (2) logging level of the driver by modifying this file.
2 affected packages
linux, linux-source-2.6.15
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux | — | — | — | — | — |
| linux-source-2.6.15 | — | — | — | — | — |
CVE-2009-3888
Low priorityThe do_mmap_pgoff function in mm/nommu.c in the Linux kernel before 2.6.31.6, when the CPU lacks a memory management unit, allows local users to cause a denial of service (OOPS) via an application that attempts to allocate a large...
2 affected packages
linux, linux-source-2.6.15
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux | — | — | — | — | — |
| linux-source-2.6.15 | — | — | — | — | — |
CVE-2009-3726
Medium priorityThe nfs4_proc_lock function in fs/nfs/nfs4proc.c in the NFSv4 client in the Linux kernel before 2.6.31-rc4 allows remote NFS servers to cause a denial of service (NULL pointer dereference and panic) by sending a certain response...
2 affected packages
linux, linux-source-2.6.15
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux | — | — | — | — | — |
| linux-source-2.6.15 | — | — | — | — | — |
CVE-2009-3725
Medium priorityThe connector layer in the Linux kernel before 2.6.31.5 does not require the CAP_SYS_ADMIN capability for certain interaction with the (1) uvesafb, (2) pohmelfs, (3) dst, or (4) dm subsystem, which allows local users to bypass...
2 affected packages
linux, linux-source-2.6.15
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux | — | — | — | — | — |
| linux-source-2.6.15 | — | — | — | — | — |
CVE-2009-3547
Medium priorityMultiple race conditions in fs/pipe.c in the Linux kernel before 2.6.32-rc6 allow local users to cause a denial of service (NULL pointer dereference and system crash) or gain privileges by attempting to open an anonymous pipe via...
2 affected packages
linux, linux-source-2.6.15
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux | — | — | — | — | — |
| linux-source-2.6.15 | — | — | — | — | — |
CVE-2009-3624
Medium priorityThe get_instantiation_keyring function in security/keys/keyctl.c in the KEYS subsystem in the Linux kernel before 2.6.32-rc5 does not properly maintain the reference count of a keyring, which allows local users to gain privileges...
2 affected packages
linux, linux-source-2.6.15
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux | — | — | — | — | — |
| linux-source-2.6.15 | — | — | — | — | — |
CVE-2009-3722
Medium prioritySome fixes available 3 of 8
The handle_dr function in arch/x86/kvm/vmx.c in the KVM subsystem in the Linux kernel before 2.6.31.1 does not properly verify the Current Privilege Level (CPL) before accessing a debug register, which allows guest OS users to...
9 affected packages
kvm, linux, linux-ec2, linux-fsl-imx51, linux-lts-backport-maverick...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| kvm | — | — | — | — | — |
| linux | — | — | — | — | — |
| linux-ec2 | — | — | — | — | — |
| linux-fsl-imx51 | — | — | — | — | — |
| linux-lts-backport-maverick | — | — | — | — | — |
| linux-mvl-dove | — | — | — | — | — |
| linux-source-2.6.15 | — | — | — | — | — |
| linux-ti-omap4 | — | — | — | — | — |
| qemu-kvm | — | — | — | — | — |
CVE-2009-3623
Medium priorityThe lookup_cb_cred function in fs/nfsd/nfs4callback.c in the nfsd4 subsystem in the Linux kernel before 2.6.31.2 attempts to access a credentials cache even when a client specifies the AUTH_NULL authentication flavor, which allows...
2 affected packages
linux, linux-source-2.6.15
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux | — | — | — | — | — |
| linux-source-2.6.15 | — | — | — | — | — |
CVE-2009-3640
Medium priorityThe update_cr8_intercept function in arch/x86/kvm/x86.c in the KVM subsystem in the Linux kernel before 2.6.32-rc1 does not properly handle the absence of an Advanced Programmable Interrupt Controller (APIC), which allows local...
9 affected packages
kvm, linux, linux-ec2, linux-fsl-imx51, linux-lts-backport-maverick...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| kvm | — | — | — | — | — |
| linux | — | — | — | — | — |
| linux-ec2 | — | — | — | — | — |
| linux-fsl-imx51 | — | — | — | — | — |
| linux-lts-backport-maverick | — | — | — | — | — |
| linux-mvl-dove | — | — | — | — | — |
| linux-source-2.6.15 | — | — | — | — | — |
| linux-ti-omap4 | — | — | — | — | — |
| qemu-kvm | — | — | — | — | — |
CVE-2009-3638
Medium prioritySome fixes available 3 of 8
Integer overflow in the kvm_dev_ioctl_get_supported_cpuid function in arch/x86/kvm/x86.c in the KVM subsystem in the Linux kernel before 2.6.31.4 allows local users to have an unspecified impact via a KVM_GET_SUPPORTED_CPUID...
9 affected packages
kvm, linux, linux-ec2, linux-fsl-imx51, linux-lts-backport-maverick...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| kvm | — | — | — | — | — |
| linux | — | — | — | — | — |
| linux-ec2 | — | — | — | — | — |
| linux-fsl-imx51 | — | — | — | — | — |
| linux-lts-backport-maverick | — | — | — | — | — |
| linux-mvl-dove | — | — | — | — | — |
| linux-source-2.6.15 | — | — | — | — | — |
| linux-ti-omap4 | — | — | — | — | — |
| qemu-kvm | — | — | — | — | — |