CVSS: 5.5EPSS: 0%CPEs: 338EXPL: 0CVE-2009-4138 – kernel: firewire: ohci: handle receive packets with a data length of zero
https://notcve.org/view.php?id=CVE-2009-4138
16 Dec 2009 — drivers/firewire/ohci.c in the Linux kernel before 2.6.32-git9, when packet-per-buffer mode is used, allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unknown other impact via an unspecified ioctl associated with receiving an ISO packet that contains zero in the payload-length field. drivers/firewire/ohci.c en el kernel de Linux anterior a v2.6.32-git9, cuando se usa el modo packet-per-buffer, permite a usuarios locales provocar una denegación de se... • http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=8c0c0cc2d9f4c523fde04bdfe41e4380dec8ee54 • CWE-399: Resource Management Errors •
CVSS: 5.5EPSS: 0%CPEs: 340EXPL: 0CVE-2009-4306
https://notcve.org/view.php?id=CVE-2009-4306
13 Dec 2009 — Unspecified vulnerability in the EXT4_IOC_MOVE_EXT (aka move extents) ioctl implementation in the ext4 filesystem in the Linux kernel 2.6.32-git6 and earlier allows local users to cause a denial of service (filesystem corruption) via unknown vectors, a different vulnerability than CVE-2009-4131. Vulnerabilidad sin especificar en la implementación EXT4_IOC_MOVE_EXT (también conocido como "move extents") ioctl en el sistema de ficheros ext4 en el kernel de Linux v2.6.32-git6 y anteriores permite a usuarios lo... • http://grsecurity.org/test/grsecurity-2.1.14-2.6.32-200912112157.patch •
CVSS: 7.8EPSS: 3%CPEs: 331EXPL: 0CVE-2009-4308 – kernel: ext4: Avoid null pointer dereference when decoding EROFS w/o a journal
https://notcve.org/view.php?id=CVE-2009-4308
13 Dec 2009 — The ext4_decode_error function in fs/ext4/super.c in the ext4 filesystem in the Linux kernel before 2.6.32 allows user-assisted remote attackers to cause a denial of service (NULL pointer dereference), and possibly have unspecified other impact, via a crafted read-only filesystem that lacks a journal. La funcion ext4_decode_error en fs/ext4/super.c en el sistema de ficheros ext4 en el kernel de Linux anteriores a v2.6.32 permite a atacantes remotos asistidos por el usuario producir una denegación de servici... • http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=78f1ddbb498283c2445c11b0dfa666424c301803 • CWE-399: Resource Management Errors CWE-476: NULL Pointer Dereference •
CVSS: 7.1EPSS: 2%CPEs: 332EXPL: 1CVE-2009-4307 – kernel: ext4: avoid divide by zero when trying to mount a corrupted file system
https://notcve.org/view.php?id=CVE-2009-4307
13 Dec 2009 — The ext4_fill_flex_info function in fs/ext4/super.c in the Linux kernel before 2.6.32-git6 allows user-assisted remote attackers to cause a denial of service (divide-by-zero error and panic) via a malformed ext4 filesystem containing a super block with a large FLEX_BG group size (aka s_log_groups_per_flex value). La funcion ext4_fill_flex_info en fs/ext4/super.c en el kernel de Linux anteriores a v2.6.32-git6 permite a atacantes remotos asistidos por el usuario producir una denegación de servicio (error de ... • http://bugzilla.kernel.org/show_bug.cgi?id=14287 • CWE-189: Numeric Errors •
CVSS: 7.2EPSS: 0%CPEs: 340EXPL: 1CVE-2009-4131 – Linux Kernel 2.6.x - Ext4 'move extents' ioctl Privilege Escalation
https://notcve.org/view.php?id=CVE-2009-4131
13 Dec 2009 — The EXT4_IOC_MOVE_EXT (aka move extents) ioctl implementation in the ext4 filesystem in the Linux kernel before 2.6.32-git6 allows local users to overwrite arbitrary files via a crafted request, related to insufficient checks for file permissions. La implementación ioctl EXT4_IOC_MOVE_EXT (tambien conocido como move extents) en el sistema de ficheros ext4 en el kernel de Linux en versiones anteriores a v2.6.32-git6 permite a usuarios locales sobrescribir ficheros arbitrariamente a través de peticiones manip... • https://www.exploit-db.com/exploits/33395 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.8EPSS: 11%CPEs: 68EXPL: 0CVE-2009-1298
https://notcve.org/view.php?id=CVE-2009-1298
08 Dec 2009 — The ip_frag_reasm function in net/ipv4/ip_fragment.c in the Linux kernel 2.6.32-rc8, and 2.6.29 and later versions before 2.6.32, calls IP_INC_STATS_BH with an incorrect argument, which allows remote attackers to cause a denial of service (NULL pointer dereference and hang) via long IP packets, possibly related to the ip_defrag function. La función ip_frag_reasm en el archivo net/ipv4/ip_fragment.c en el kernel de Linux versiones 2.6.32-rc8, y 2.6.29 y versiones posteriores anteriores a 2.6.32, llama a IP_I... • http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commitdiff%3Bh=bbf31bf18d34caa87dd01f08bf713635593697f2 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 4%CPEs: 1EXPL: 0CVE-2009-4020 – kernel: hfs buffer overflow
https://notcve.org/view.php?id=CVE-2009-4020
04 Dec 2009 — Stack-based buffer overflow in the hfs subsystem in the Linux kernel 2.6.32 allows remote attackers to have an unspecified impact via a crafted Hierarchical File System (HFS) filesystem, related to the hfs_readdir function in fs/hfs/dir.c. Desbordamiento de búfer basado en pila en el subsistema hfs de el kernel Linux v2.6.32 permite a atacantes remotos tener un impacto no especificado mediante un sistema de ficheros Hierarchical File System (HFS) modificado, relacionado con la función hfs_readdir en fs/hfs/... • http://lists.opensuse.org/opensuse-security-announce/2010-01/msg00005.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 3%CPEs: 335EXPL: 0CVE-2009-4026
https://notcve.org/view.php?id=CVE-2009-4026
02 Dec 2009 — The mac80211 subsystem in the Linux kernel before 2.6.32-rc8-next-20091201 allows remote attackers to cause a denial of service (panic) via a crafted Delete Block ACK (aka DELBA) packet, related to an erroneous "code shuffling patch." El subsistema mac80211 en el kernel de linux anterior a 2.6.32-rc8-next-20091201, permite a atacantes remotos provocar una denegación de servicio (panic) a través de un un Delete Block ACK (también conocido como DELBA) manipulado. Relacionado con un "code shuffling patch" erró... • http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=827d42c9ac91ddd728e4f4a31fefb906ef2ceff7 •
CVSS: 7.8EPSS: 5%CPEs: 335EXPL: 0CVE-2009-4027 – kernel: mac80211: fix spurious delBA handling
https://notcve.org/view.php?id=CVE-2009-4027
02 Dec 2009 — Race condition in the mac80211 subsystem in the Linux kernel before 2.6.32-rc8-next-20091201 allows remote attackers to cause a denial of service (system crash) via a Delete Block ACK (aka DELBA) packet that triggers a certain state change in the absence of an aggregation session. Condición de carrera en el subsistema mac80211 en el kernel de Linux anteriores a 2.6.32-rc8-next-20091201 permite a atacantes remotos producir una denegación de servicio (caída de sistema) a través de un paquete de bloque de borr... • http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=827d42c9ac91ddd728e4f4a31fefb906ef2ceff7 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') CWE-617: Reachable Assertion •
CVSS: 7.8EPSS: 0%CPEs: 9EXPL: 0CVE-2009-4031 – kernel: KVM: x86 emulator: limit instructions to 15 bytes
https://notcve.org/view.php?id=CVE-2009-4031
27 Nov 2009 — The do_insn_fetch function in arch/x86/kvm/emulate.c in the x86 emulator in the KVM subsystem in the Linux kernel before 2.6.32-rc8-next-20091125 tries to interpret instructions that contain too many bytes to be valid, which allows guest OS users to cause a denial of service (increased scheduling latency) on the host OS via unspecified manipulations related to SMP support. La función do_insn_fetch en arch/x86/kvm/emulate.c en el emulador x86 KVM en el subsystem del kernel de Linux anterior a 2.6.32-rc8-next... • http://git.kernel.org/?p=linux/kernel/git/avi/kvm.git%3Ba=commit%3Bh=e42d9b8141d1f54ff72ad3850bb110c95a5f3b88 • CWE-20: Improper Input Validation •