Vulnerabilities > Fedoraproject

DATE CVE VULNERABILITY TITLE RISK
2010-12-29 CVE-2010-3874 Out-Of-Bounds Write vulnerability in multiple products
Heap-based buffer overflow in the bcm_connect function in net/can/bcm.c (aka the Broadcast Manager) in the Controller Area Network (CAN) implementation in the Linux kernel before 2.6.36.2 on 64-bit platforms might allow local users to cause a denial of service (memory corruption) via a connect operation.
local
high complexity
linux fedoraproject opensuse suse debian CWE-787
4.0
2010-12-22 CVE-2010-4577 Out-Of-Bounds Read vulnerability in Google Chrome
The CSSParser::parseFontFaceSrc function in WebCore/css/CSSParser.cpp in WebKit, as used in Google Chrome before 8.0.552.224, Chrome OS before 8.0.552.343, webkitgtk before 1.2.6, and other products does not properly parse Cascading Style Sheets (CSS) token sequences, which allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted local font, related to "Type Confusion."
network
low complexity
google webkitgtk fedoraproject debian CWE-125
5.0
2010-12-10 CVE-2010-4157 Integer Overflow OR Wraparound vulnerability in multiple products
Integer overflow in the ioc_general function in drivers/scsi/gdth.c in the Linux kernel before 2.6.36.1 on 64-bit platforms allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact via a large argument in an ioctl call.
local
high complexity
linux fedoraproject opensuse suse CWE-190
6.2
2010-12-07 CVE-2010-4494 Double Free vulnerability in Google Chrome
Double free vulnerability in libxml2 2.7.8 and other versions, as used in Google Chrome before 8.0.552.215 and other products, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to XPath handling.
7.5
2010-11-29 CVE-2010-4249 Resource Exhaustion vulnerability in multiple products
The wait_for_unix_gc function in net/unix/garbage.c in the Linux kernel before 2.6.37-rc3-next-20101125 does not properly select times for garbage collection of inflight sockets, which allows local users to cause a denial of service (system hang) via crafted use of the socketpair and sendmsg system calls for SOCK_SEQPACKET sockets.
local
low complexity
linux fedoraproject CWE-400
4.9
2010-11-26 CVE-2010-3705 Resource Exhaustion vulnerability in multiple products
The sctp_auth_asoc_get_hmac function in net/sctp/auth.c in the Linux kernel before 2.6.36 does not properly validate the hmac_ids array of an SCTP peer, which allows remote attackers to cause a denial of service (memory corruption and panic) via a crafted value in the last element of this array.
8.3
2010-11-26 CVE-2010-3698 Resource Exhaustion vulnerability in multiple products
The KVM implementation in the Linux kernel before 2.6.36 does not properly reload the FS and GS segment registers, which allows host OS users to cause a denial of service (host OS crash) via a KVM_RUN ioctl call in conjunction with a modified Local Descriptor Table (LDT).
local
low complexity
linux fedoraproject CWE-400
4.9
2010-11-26 CVE-2010-2963 Improper Input Validation vulnerability in multiple products
drivers/media/video/v4l2-compat-ioctl32.c in the Video4Linux (V4L) implementation in the Linux kernel before 2.6.36 on 64-bit platforms does not validate the destination of a memory copy operation, which allows local users to write to arbitrary kernel memory locations, and consequently gain privileges, via a VIDIOCSTUNER ioctl call on a /dev/video device, followed by a VIDIOCSMICROCODE ioctl call on this device.
6.2
2010-11-26 CVE-2010-2962 Improper Input Validation vulnerability in multiple products
drivers/gpu/drm/i915/i915_gem.c in the Graphics Execution Manager (GEM) in the Intel i915 driver in the Direct Rendering Manager (DRM) subsystem in the Linux kernel before 2.6.36 does not properly validate pointers to blocks of memory, which allows local users to write to arbitrary kernel memory locations, and consequently gain privileges, via crafted use of the ioctl interface, related to (1) pwrite and (2) pread operations.
7.2
2010-11-22 CVE-2010-4169 USE After Free vulnerability in multiple products
Use-after-free vulnerability in mm/mprotect.c in the Linux kernel before 2.6.37-rc2 allows local users to cause a denial of service via vectors involving an mprotect system call.
local
low complexity
linux fedoraproject opensuse suse CWE-416
4.9