Vulnerabilities > Linux > Linux Kernel > 2.3.12

DATE CVE VULNERABILITY TITLE RISK
2007-01-30 CVE-2006-5754 Local Denial of Service vulnerability in Linux Kernel AIO_Setup_Ring
The aio_setup_ring function in Linux kernel does not properly initialize a variable, which allows local users to cause a denial of service (crash) via an unspecified error path that causes an incorrect free operation.
local
low complexity
linux
4.9
2006-12-20 CVE-2006-4814 Resource Management Errors vulnerability in Linux Kernel
The mincore function in the Linux kernel before 2.4.33.6 does not properly lock access to user space, which has unspecified impact and attack vectors, possibly related to a deadlock.
local
low complexity
linux CWE-399
4.6
2006-10-10 CVE-2006-4997 Use After Free vulnerability in multiple products
The clip_mkip function in net/atm/clip.c of the ATM subsystem in Linux kernel allows remote attackers to cause a denial of service (panic) via unknown vectors that cause the ATM subsystem to access the memory of socket buffers after they are freed (freed pointer dereference).
network
low complexity
linux canonical redhat CWE-416
7.5
2006-10-05 CVE-2006-5158 Improper Locking vulnerability in multiple products
The nlmclnt_mark_reclaim in clntlock.c in NFS lockd in Linux kernel before 2.6.16 allows remote attackers to cause a denial of service (process crash) and deny access to NFS exports via unspecified vectors that trigger a kernel oops (null dereference) and a deadlock.
network
low complexity
linux redhat canonical CWE-667
7.5
2006-08-23 CVE-2006-3745 Buffer Overflow vulnerability in Linux Kernel SCTP_Make_Abort_User Function
Unspecified vulnerability in the sctp_make_abort_user function in the SCTP implementation in Linux 2.6.x before 2.6.17.10 and 2.4.23 up to 2.4.33 allows local users to cause a denial of service (panic) and possibly gain root privileges via unknown attack vectors.
local
low complexity
linux
7.2
2006-08-21 CVE-2006-4145 Resource Management Errors vulnerability in Linux Kernel
The Universal Disk Format (UDF) filesystem driver in Linux kernel 2.6.17 and earlier allows local users to cause a denial of service (hang and crash) via certain operations involving truncated files, as demonstrated via the dd command.
local
low complexity
linux CWE-399
4.9
2006-07-05 CVE-2006-2935 Classic Buffer Overflow vulnerability in multiple products
The dvd_read_bca function in the DVD handling code in drivers/cdrom/cdrom.c in Linux kernel 2.2.16, and later versions, assigns the wrong value to a length variable, which allows local users to execute arbitrary code via a crafted USB Storage device that triggers a buffer overflow.
local
low complexity
linux debian canonical CWE-120
4.6
2006-04-20 CVE-2006-1056 Cryptographic Issues vulnerability in multiple products
The Linux kernel before 2.6.16.9 and the FreeBSD kernel, when running on AMD64 and other 7th and 8th generation AuthenticAMD processors, only save/restore the FOP, FIP, and FDP x87 registers in FXSAVE/FXRSTOR when an exception is pending, which allows one process to determine portions of the state of floating point instructions of other processes, which can be leveraged to obtain sensitive information such as cryptographic keys.
local
low complexity
freebsd linux CWE-310
2.1
2005-12-31 CVE-2005-4351 Local Security vulnerability in kernel
The securelevels implementation in FreeBSD 7.0 and earlier, OpenBSD up to 3.8, DragonFly up to 1.2, and Linux up to 2.6.15 allows root users to bypass immutable settings for files by mounting another filesystem that masks the immutable files while the system is running.
local
low complexity
dragonfly freebsd linux openbsd
4.3
2005-11-20 CVE-2005-2709 Resource Management Errors vulnerability in Linux Kernel
The sysctl functionality (sysctl.c) in Linux kernel before 2.6.14.1 allows local users to cause a denial of service (kernel oops) and possibly execute code by opening an interface file in /proc/sys/net/ipv4/conf/, waiting until the interface is unregistered, then obtaining and modifying function pointers in memory that was used for the ctl_table.
local
low complexity
linux CWE-399
4.6