CVSS: 4.9EPSS: 0%CPEs: 1EXPL: 0CVE-2010-5321
https://notcve.org/view.php?id=CVE-2010-5321
24 Apr 2017 — Memory leak in drivers/media/video/videobuf-core.c in the videobuf subsystem in the Linux kernel 2.6.x through 4.x allows local users to cause a denial of service (memory consumption) by leveraging /dev/video access for a series of mmap calls that require new allocations, a different vulnerability than CVE-2007-6761. NOTE: as of 2016-06-18, this affects only 11 drivers that have not been updated to use videobuf2 instead of videobuf. La pérdida de memoria en drivers/media/video/videobuf-core.c en el subsiste... • http://linuxtv.org/irc/v4l/index.php?date=2010-07-29 • CWE-772: Missing Release of Resource after Effective Lifetime •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2017-8063 – Ubuntu Security Notice USN-3314-1
https://notcve.org/view.php?id=CVE-2017-8063
23 Apr 2017 — drivers/media/usb/dvb-usb/cxusb.c in the Linux kernel 4.9.x and 4.10.x before 4.10.12 interacts incorrectly with the CONFIG_VMAP_STACK option, which allows local users to cause a denial of service (system crash) or possibly have unspecified other impact by leveraging use of more than one virtual page for a DMA scatterlist. drivers/media/usb/dvb-usb/cxusb.c en el kernel de Linux 4.9.x y 4.10.x en versiones anteriores a 4.10.12 interactúa incorrectamente con la opción CONFIG_VMAP_STACK, que permite a usuarios... • http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.10.12 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2017-8067 – Ubuntu Security Notice USN-3314-1
https://notcve.org/view.php?id=CVE-2017-8067
23 Apr 2017 — drivers/char/virtio_console.c in the Linux kernel 4.9.x and 4.10.x before 4.10.12 interacts incorrectly with the CONFIG_VMAP_STACK option, which allows local users to cause a denial of service (system crash or memory corruption) or possibly have unspecified other impact by leveraging use of more than one virtual page for a DMA scatterlist. drivers/char/virtio_console.c en el kernel de Linux 4.9.x y 4.10.x en versiones anteriores a 4.10.12 interactúa incorrectamente con la opción CONFIG_VMAP_STACK, que permi... • http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.10.12 • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 21EXPL: 0CVE-2017-8066
https://notcve.org/view.php?id=CVE-2017-8066
23 Apr 2017 — drivers/net/can/usb/gs_usb.c in the Linux kernel 4.9.x and 4.10.x before 4.10.2 interacts incorrectly with the CONFIG_VMAP_STACK option, which allows local users to cause a denial of service (system crash or memory corruption) or possibly have unspecified other impact by leveraging use of more than one virtual page for a DMA scatterlist. drivers/net/can/usb/gs_usb.c en el kernel de Linux 4.9.x y 4.10.x en versiones anteriores a 4.10.2 interactúa incorrectamente con la opción CONFIG_VMAP_STACK, que permite a... • http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.10.2 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 32EXPL: 0CVE-2017-8065
https://notcve.org/view.php?id=CVE-2017-8065
23 Apr 2017 — crypto/ccm.c in the Linux kernel 4.9.x and 4.10.x through 4.10.12 interacts incorrectly with the CONFIG_VMAP_STACK option, which allows local users to cause a denial of service (system crash or memory corruption) or possibly have unspecified other impact by leveraging use of more than one virtual page for a DMA scatterlist. crypto/ccm.c en el kernel de Linux 4.9.x y 4.10.x hasta la versión 4.10.12 interactúa incorrectamente con la opción CONFIG_VMAP_STACK, que permite a usuarios locales provocar una denegac... • http://www.openwall.com/lists/oss-security/2017/04/16/4 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2017-8064 – Ubuntu Security Notice USN-3314-1
https://notcve.org/view.php?id=CVE-2017-8064
23 Apr 2017 — drivers/media/usb/dvb-usb-v2/dvb_usb_core.c in the Linux kernel 4.9.x and 4.10.x before 4.10.12 interacts incorrectly with the CONFIG_VMAP_STACK option, which allows local users to cause a denial of service (system crash or memory corruption) or possibly have unspecified other impact by leveraging use of more than one virtual page for a DMA scatterlist. drivers/media/usb/dvb-usb-v2/dvb_usb_core.cen el kernel de Linux 4.9.x y 4.10.x en versiones anteriores a 4.10.12 interactúa incorrectamente con la opción C... • http://www.debian.org/security/2017/dsa-3886 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2017-8062
https://notcve.org/view.php?id=CVE-2017-8062
23 Apr 2017 — drivers/media/usb/dvb-usb/dw2102.c in the Linux kernel 4.9.x and 4.10.x before 4.10.4 interacts incorrectly with the CONFIG_VMAP_STACK option, which allows local users to cause a denial of service (system crash or memory corruption) or possibly have unspecified other impact by leveraging use of more than one virtual page for a DMA scatterlist. drivers/media/usb/dvb-usb/dw2102.c en el kernel de Linux 4.9.x y 4.10.x en versiones anteriores a 4.10.4 interactúa incorrectamente con la opción CONFIG_VMAP_STACK, q... • http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.10.4 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 25EXPL: 0CVE-2017-8061
https://notcve.org/view.php?id=CVE-2017-8061
23 Apr 2017 — drivers/media/usb/dvb-usb/dvb-usb-firmware.c in the Linux kernel 4.9.x and 4.10.x before 4.10.7 interacts incorrectly with the CONFIG_VMAP_STACK option, which allows local users to cause a denial of service (system crash or memory corruption) or possibly have unspecified other impact by leveraging use of more than one virtual page for a DMA scatterlist. drivers/media/usb/dvb-usb/dvb-usb-firmware.c en el kernel de Linux 4.9.x y 4.10.x en versiones anteriores a 4.10.7 interactúa incorrectamente con la opción ... • http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.10.7 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 7EXPL: 0CVE-2017-7979 – Ubuntu Security Notice USN-3314-1
https://notcve.org/view.php?id=CVE-2017-7979
19 Apr 2017 — The cookie feature in the packet action API implementation in net/sched/act_api.c in the Linux kernel 4.11.x through 4.11-rc7 mishandles the tb nlattr array, which allows local users to cause a denial of service (uninitialized memory access and refcount underflow, and system hang or crash) or possibly have unspecified other impact via "tc filter add" commands in certain contexts. NOTE: this does not affect stable kernels, such as 4.10.x, from kernel.org. La característica cookie en la implementación del paq... • http://marc.info/?l=linux-netdev&m=149200742616349 • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 2%CPEs: 12EXPL: 0CVE-2017-7645 – kernel: nfsd: Incorrect handling of long RPC replies
https://notcve.org/view.php?id=CVE-2017-7645
18 Apr 2017 — The NFSv2/NFSv3 server in the nfsd subsystem in the Linux kernel through 4.10.11 allows remote attackers to cause a denial of service (system crash) via a long RPC reply, related to net/sunrpc/svc.c, fs/nfsd/nfs3xdr.c, and fs/nfsd/nfsxdr.c. El servidor NFSv2/NFSv3 en el subsistema nfsd en el Kernel de Linux hasta la versión 4.10.11 permite a atacantes remotos provocar una denegación de servicio (caída de sistema) a través de una respuesta RPC larga, relacionada con net/sunrpc/svc.c, fs/nfsd/nfs3xdr.c y fs/n... • http://www.debian.org/security/2017/dsa-3886 • CWE-20: Improper Input Validation CWE-130: Improper Handling of Length Parameter Inconsistency •