Vulnerabilities > Linux > Linux Kernel > 2.6.15
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-10-04 | CVE-2007-4133 | Local Denial Of Service vulnerability in Linux Kernel HugeTLB The (1) hugetlb_vmtruncate_list and (2) hugetlb_vmtruncate functions in fs/hugetlbfs/inode.c in the Linux kernel before 2.6.19-rc4 perform certain prio_tree calculations using HPAGE_SIZE instead of PAGE_SIZE units, which allows local users to cause a denial of service (panic) via unspecified vectors. local linux | 4.7 |
2007-09-14 | CVE-2007-3740 | Permissions, Privileges, and Access Controls vulnerability in Linux Kernel The CIFS filesystem in the Linux kernel before 2.6.22, when Unix extension support is enabled, does not honor the umask of a process, which allows local users to gain privileges. | 4.4 |
2007-08-13 | CVE-2007-3851 | Resource Management Errors vulnerability in Linux Kernel The drm/i915 component in the Linux kernel before 2.6.22.2, when used with i965G and later chipsets, allows local users with access to an X11 session and Direct Rendering Manager (DRM) to write to arbitrary memory locations and gain privileges via a crafted batchbuffer. | 6.0 |
2007-08-09 | CVE-2007-3843 | Unspecified vulnerability in Linux Kernel The Linux kernel before 2.6.23-rc1 checks the wrong global variable for the CIFS sec mount option, which might allow remote attackers to spoof CIFS network traffic that the client configured for security signatures, as demonstrated by lack of signing despite sec=ntlmv2i in a SetupAndX request. network linux | 4.3 |
2007-07-20 | CVE-2007-3380 | Configuration vulnerability in Linux Kernel 2.6.15 The Distributed Lock Manager (DLM) in the cluster manager for Linux kernel 2.6.15 allows remote attackers to cause a denial of service (loss of lock services) by connecting to the DLM port, which probably prevents other processes from accessing the service. | 5.0 |
2007-07-10 | CVE-2007-3107 | Local Denial of Service vulnerability in Linux PowerPC Kernel Restore_Sigcontext The signal handling in the Linux kernel before 2.6.22, including 2.6.2, when running on PowerPC systems using HTX, allows local users to cause a denial of service via unspecified vectors involving floating point corruption and concurrency, related to clearing of MSR bits. | 2.1 |
2007-07-03 | CVE-2007-3513 | Denial Of Service vulnerability in Linux Kernel USBLCD Memory Consumption The lcd_write function in drivers/usb/misc/usblcd.c in the Linux kernel before 2.6.22-rc7 does not limit the amount of memory used by a caller, which allows local users to cause a denial of service (memory consumption). | 4.9 |
2007-06-11 | CVE-2007-2876 | Denial Of Service vulnerability in Linux Kernel SCTP Connection The sctp_new function in (1) ip_conntrack_proto_sctp.c and (2) nf_conntrack_proto_sctp.c in Netfilter in Linux kernel 2.6 before 2.6.20.13, and 2.6.21.x before 2.6.21.4, allows remote attackers to cause a denial of service by causing certain invalid states that trigger a NULL pointer dereference. low complexity linux | 6.1 |
2007-06-11 | CVE-2007-2453 | Unspecified vulnerability in Linux Kernel The random number feature in Linux kernel 2.6 before 2.6.20.13, and 2.6.21.x before 2.6.21.4, (1) does not properly seed pools when there is no entropy, or (2) uses an incorrect cast when extracting entropy, which might cause the random number generator to provide the same values after reboots on systems without an entropy source. | 1.2 |
2007-06-11 | CVE-2007-2875 | Numeric Errors vulnerability in Linux Kernel Integer underflow in the cpuset_tasks_read function in the Linux kernel before 2.6.20.13, and 2.6.21.x before 2.6.21.4, when the cpuset filesystem is mounted, allows local users to obtain kernel memory contents by using a large offset when reading the /dev/cpuset/tasks file. | 2.1 |