Approved changes feed: RSS · Atom
cpe:2.3:a:[unknown]:kernel:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | [Unknown] (5b07108a-8f0c-5d28-ab99-c4ff62adb460) |
|---|---|
| Product | Kernel (2592caf9-d501-5f2b-9adc-c2645a373a21) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2020-10773 |
vulnerable | 2026-06-03 14:41:00.547849 |
Details available
MEDIUM (4.4)
A stack information leak flaw was found in s390/s390x in the Linux kernel’s memory manager functionality, where it incorrectly writes to the /proc/sys/vm/cmm_timeout file. This flaw allows a local user to see the kernel data.
Published: 2020-09-10T16:07:48.000Z
Updated: 2024-08-04T11:14:14.957Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2018-1120 |
vulnerable | 2026-06-03 14:38:30.325939 |
Details available
LOW (2.8)
A flaw was found affecting the Linux kernel before version 4.17. By mmap()ing a FUSE-backed file onto a process's memory containing command line arguments (or environment strings), an attacker can cause utilities from psutils or procps (such as ps, w) or any other program which makes a read() call to the /proc/<pid>/cmdline (or /proc/<pid>/environ) files to block indefinitely (denial of service) or for some controlled time (as a synchronization primitive for other attacks).
Published: 2018-06-20T13:00:00.000Z
Updated: 2024-08-05T03:51:48.863Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2018-14656 |
vulnerable | 2026-06-03 14:38:12.384296 |
Details available
HIGH (7)
A missing address check in the callers of the show_opcodes() in the Linux kernel allows an attacker to dump the kernel memory at an arbitrary kernel address into the dmesg log.
Published: 2018-10-08T22:00:00.000Z
Updated: 2024-08-05T09:38:12.828Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2018-14625 |
vulnerable | 2026-06-03 14:38:12.285505 |
Details available
MEDIUM (5.3)
A flaw was found in the Linux Kernel where an attacker may be able to have an uncontrolled read to kernel-memory from within a vm guest. A race condition between connect() and close() function may allow an attacker using the AF_VSOCK protocol to gather a 4 byte information leak or possibly intercept or corrupt AF_VSOCK messages destined to other clients.
Published: 2018-09-10T13:00:00.000Z
Updated: 2024-08-05T09:29:51.690Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2018-14619 |
vulnerable | 2026-06-03 14:38:12.267834 |
Details available
MEDIUM (6.2)
A flaw was found in the crypto subsystem of the Linux kernel before version kernel-4.15-rc4. The "null skcipher" was being dropped when each af_alg_ctx was freed instead of when the aead_tfm was freed. This can cause the null skcipher to be freed while it is still in use leading to a local user being able to crash the system or possibly escalate privileges.
Published: 2018-08-30T12:00:00.000Z
Updated: 2024-08-05T09:29:51.723Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2018-10902 |
vulnerable | 2026-06-03 14:38:00.404826 |
Details available
HIGH (7.8)
It was found that the raw midi kernel driver does not protect against concurrent access which leads to a double realloc (double free) in snd_rawmidi_input_params() and snd_rawmidi_output_status() which are part of snd_rawmidi_ioctl() handler in rawmidi.c file. A malicious local attacker could possibly use this for privilege escalation.
Published: 2018-08-21T19:00:00.000Z
Updated: 2024-08-05T07:54:35.823Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2018-10883 |
vulnerable | 2026-06-03 14:38:00.368412 |
Details available
MEDIUM (4.8)
A flaw was found in the Linux kernel's ext4 filesystem. A local user can cause an out-of-bounds write in jbd2_journal_dirty_metadata(), a denial of service, and a system crash by mounting and operating on a crafted ext4 filesystem image.
Published: 2018-07-30T15:00:00.000Z
Updated: 2024-08-05T07:54:34.854Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2018-10882 |
vulnerable | 2026-06-03 14:38:00.367755 |
Details available
MEDIUM (4.8)
A flaw was found in the Linux kernel's ext4 filesystem. A local user can cause an out-of-bound write in in fs/jbd2/transaction.c code, a denial of service, and a system crash by unmounting a crafted ext4 filesystem image.
Published: 2018-07-27T18:00:00.000Z
Updated: 2024-08-05T07:54:34.712Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2018-10881 |
vulnerable | 2026-06-03 14:38:00.362793 |
Details available
MEDIUM (4.2)
A flaw was found in the Linux kernel's ext4 filesystem. A local user can cause an out-of-bound access in ext4_get_group_info function, a denial of service, and a system crash by mounting and operating on a crafted ext4 filesystem image.
Published: 2018-07-26T18:00:00.000Z
Updated: 2024-08-05T07:54:34.835Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2018-10880 |
vulnerable | 2026-06-03 14:38:00.362035 |
Details available
MEDIUM (5.5)
Linux kernel is vulnerable to a stack-out-of-bounds write in the ext4 filesystem code when mounting and writing to a crafted ext4 image in ext4_update_inline_data(). An attacker could use this to cause a system crash and a denial of service.
Published: 2018-07-25T13:00:00.000Z
Updated: 2024-08-05T07:54:34.830Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2018-10879 |
vulnerable | 2026-06-03 14:38:00.361373 |
Details available
MEDIUM (4.2)
A flaw was found in the Linux kernel's ext4 filesystem. A local user can cause a use-after-free in ext4_xattr_set_entry function and a denial of service or unspecified other impact may occur by renaming a file in a crafted ext4 filesystem image.
Published: 2018-07-26T18:00:00.000Z
Updated: 2024-08-05T07:46:46.964Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2018-10878 |
vulnerable | 2026-06-03 14:38:00.360639 |
Details available
MEDIUM (4.8)
A flaw was found in the Linux kernel's ext4 filesystem. A local user can cause an out-of-bounds write and a denial of service or unspecified other impact is possible by mounting and operating a crafted ext4 filesystem image.
Published: 2018-07-26T18:00:00.000Z
Updated: 2024-08-05T07:46:47.494Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2018-10877 |
vulnerable | 2026-06-03 14:38:00.357796 |
Details available
HIGH (7.3)
Linux kernel ext4 filesystem is vulnerable to an out-of-bound access in the ext4_ext_drop_refs() function when operating on a crafted ext4 filesystem image.
Published: 2018-07-18T15:00:00.000Z
Updated: 2024-08-05T07:46:47.469Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2018-10876 |
vulnerable | 2026-06-03 14:38:00.357106 |
Details available
MEDIUM (5)
A flaw was found in Linux kernel in the ext4 filesystem code. A use-after-free is possible in ext4_ext_remove_space() function when mounting and operating a crafted ext4 image.
Published: 2018-07-26T18:00:00.000Z
Updated: 2024-08-05T07:46:47.413Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.