CVSS: 5.5EPSS: 0%CPEs: 126EXPL: 0CVE-2012-4398 – kernel: request_module() OOM local DoS
https://notcve.org/view.php?id=CVE-2012-4398
18 Feb 2013 — The __request_module function in kernel/kmod.c in the Linux kernel before 3.4 does not set a certain killable attribute, which allows local users to cause a denial of service (memory consumption) via a crafted application. La función __request_module en kernel/kmod.c en el kernel de Linux anterior a v3.4 no establece un atributo "killable", lo que permite a usuarios locales provocar una denegación de servicio (consumo de memoria) a través de una aplicación especialmente diseñada. The kernel packages contain... • http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00010.html • CWE-20: Improper Input Validation •
CVSS: 5.5EPSS: 0%CPEs: 169EXPL: 1CVE-2012-4530 – Linux Kernel (Ubuntu 11.10/12.04) - binfmt_script Stack Data Disclosure
https://notcve.org/view.php?id=CVE-2012-4530
18 Feb 2013 — The load_script function in fs/binfmt_script.c in the Linux kernel before 3.7.2 does not properly handle recursion, which allows local users to obtain sensitive information from kernel stack memory via a crafted application. La función load_script en fs/binfmt_script.c en el kernel de Linux anterior a v3.7.2 no controla correctamente la recursividad, permitiendo a usuarios locales obtener información sensible de la memoria de pila del kernl a través de una aplicación especialmente diseñada. • https://www.exploit-db.com/exploits/41767 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 5.5EPSS: 0%CPEs: 171EXPL: 1CVE-2013-0160 – Linux Kernel 2.6.32-5 (Debian 6.0.5) - '/dev/ptmx' Key Stroke Timing Local Disclosure
https://notcve.org/view.php?id=CVE-2013-0160
18 Feb 2013 — The Linux kernel through 3.7.9 allows local users to obtain sensitive information about keystroke timing by using the inotify API on the /dev/ptmx device. El kernel de Linux hasta v3.7.9 permite a usuarios locales obtener información sensible mediante el "keystroke timing" con la API inotify en el dispositivo /dev/ptmx Kees Cook discovered a flaw in the Linux kernel's iSCSI subsystem. A remote unauthenticated attacker could exploit this flaw to cause a denial of service (system crash) or potentially gain ad... • https://www.exploit-db.com/exploits/24459 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 5.5EPSS: 0%CPEs: 170EXPL: 1CVE-2013-0216 – kernel: xen: Linux netback DoS via malicious guest ring.
https://notcve.org/view.php?id=CVE-2013-0216
18 Feb 2013 — The Xen netback functionality in the Linux kernel before 3.7.8 allows guest OS users to cause a denial of service (loop) by triggering ring pointer corruption. La funcionalidad Xen netback en el kernel de Linux anterior a v3.7.8 permite a usuarios invitados del OS generar una denegación de servicio (bucle) mediante una corrupción de puntero. Unisphere Central versions prior to 4.0 suffer from a large amount of security vulnerabilities and an update has been released that includes a fix for an unvalidated re... • http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=48856286b64e4b66ec62b94e504d0b29c1ade664 • CWE-20: Improper Input Validation •
CVSS: 5.5EPSS: 0%CPEs: 170EXPL: 0CVE-2013-0217 – Mandriva Linux Security Advisory 2013-176
https://notcve.org/view.php?id=CVE-2013-0217
18 Feb 2013 — Memory leak in drivers/net/xen-netback/netback.c in the Xen netback functionality in the Linux kernel before 3.7.8 allows guest OS users to cause a denial of service (memory consumption) by triggering certain error conditions. Fuga de memoria (memory leaks) en drivers/net/xen-netback/netback.c en la funcionalidad Xen netback en el kernel de Linux anterior a v3.7.8 permite a usuarios invitados generar una denegación de servicio (corrupción de memoria) cuando se producen determinados errores de condición. Mul... • http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=7d5145d8eb2b9791533ffe4dc003b129b9696c48 • CWE-399: Resource Management Errors •
CVSS: 7.8EPSS: 0%CPEs: 167EXPL: 2CVE-2013-0268 – Linux Kernel 3.7.6 (RedHat x86/x64) - 'MSR' Driver Privilege Escalation
https://notcve.org/view.php?id=CVE-2013-0268
18 Feb 2013 — The msr_open function in arch/x86/kernel/msr.c in the Linux kernel before 3.7.6 allows local users to bypass intended capability restrictions by executing a crafted application as root, as demonstrated by msr32.c. La funcion msr_open en arch/x86/kernel/msr.c en el kernel de Linux anterior a v3.7.6 permite a usuarios locales eludir las capacidades de restricción mediante la ejecución de una aplicación manipulada como root, como se demostró con msr32.c. Unisphere Central versions prior to 4.0 suffer from a la... • https://packetstorm.news/files/id/122678 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.1EPSS: 0%CPEs: 11EXPL: 0CVE-2013-0231 – kernel: xen: pciback DoS via not rate limited log messages
https://notcve.org/view.php?id=CVE-2013-0231
13 Feb 2013 — The pciback_enable_msi function in the PCI backend driver (drivers/xen/pciback/conf_space_capability_msi.c) in Xen for the Linux kernel 2.6.18 and 3.8 allows guest OS users with PCI device access to cause a denial of service via a large number of kernel log messages. NOTE: some of these details are obtained from third party information. La función pciback_enable_msi en el controlador PCI backend (drivers/xen/pciback/conf_space_capability_msi.c) en Xen para Linux kernel v2.6.18 y v3.8, permite que los usuari... • http://lists.opensuse.org/opensuse-security-announce/2013-03/msg00004.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 6.5EPSS: 0%CPEs: 5EXPL: 0CVE-2012-2119 – kernel: macvtap: zerocopy: vector length is not validated before pinning user pages
https://notcve.org/view.php?id=CVE-2012-2119
22 Jan 2013 — Buffer overflow in the macvtap device driver in the Linux kernel before 3.4.5, when running in certain configurations, allows privileged KVM guest users to cause a denial of service (crash) via a long descriptor with a long vector length. Desbordamiento de búfer en el controlador de dispositivo macvtap en el kernel de Linux anteriores a v3.4.5, cuando se ejecuta en ciertas configuraciones, permite a los usuarios invitados KVM privilegiados causar una denegación de servicio (caída) a través de un descriptor ... • http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=814278 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 5.5EPSS: 0%CPEs: 9EXPL: 0CVE-2012-4461 – kernel: kvm: invalid opcode oops on SET_SREGS with OSXSAVE bit set
https://notcve.org/view.php?id=CVE-2012-4461
22 Jan 2013 — The KVM subsystem in the Linux kernel before 3.6.9, when running on hosts that use qemu userspace without XSAVE, allows local users to cause a denial of service (kernel OOPS) by using the KVM_SET_SREGS ioctl to set the X86_CR4_OSXSAVE bit in the guest cr4 register, then calling the KVM_RUN ioctl. El subsistema de KVM en el kernel de Linux antes de v3.6.9, cuando se ejecuta en máquinas que utilizan el espacio de usuario qemu sin XSAVE, permite a usuarios locales provocar una denegación de servicio (kernel oo... • http://article.gmane.org/gmane.comp.emulators.kvm.devel/100742 •
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2012-2137 – kernel: kvm: buffer overflow in kvm_set_irq()
https://notcve.org/view.php?id=CVE-2012-2137
22 Jan 2013 — Buffer overflow in virt/kvm/irq_comm.c in the KVM subsystem in the Linux kernel before 3.2.24 allows local users to cause a denial of service (crash) and possibly execute arbitrary code via vectors related to Message Signaled Interrupts (MSI), irq routing entries, and an incorrect check by the setup_routing_entry function before invoking the kvm_set_irq function. Desbordamiento de búfer en virt/KVM/irq_comm.c en el subsistema de KVM en el kernel de Linux antes de v3.2.24 que permite a usuarios locales provo... • http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commitdiff%3Bh=f2ebd422f71cda9c791f76f85d2ca102ae34a1ed • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •