Vulnerabilities > Linux > Linux Kernel > 2.6.16.13

DATE CVE VULNERABILITY TITLE RISK
2007-05-29 CVE-2007-2451 Unspecified vulnerability in Linux Kernel GEODE-AES
Unspecified vulnerability in drivers/crypto/geode-aes.c in GEODE-AES in the Linux kernel before 2.6.21.3 allows attackers to obtain sensitive information via unspecified vectors.
network
low complexity
linux
5.0
2007-05-07 CVE-2007-1861 Resource Management Errors vulnerability in Linux Kernel
The nl_fib_lookup function in net/ipv4/fib_frontend.c in Linux Kernel before 2.6.20.8 allows attackers to cause a denial of service (kernel panic) via NETLINK_FIB_LOOKUP replies, which trigger infinite recursion and a stack overflow.
local
low complexity
linux CWE-399
4.9
2007-04-11 CVE-2007-1357 Denial Of Service vulnerability in Linux Kernel AppleTalk ATalk_Sum_SKB Function
The atalk_sum_skb function in AppleTalk for Linux kernel 2.6.x before 2.6.21, and possibly 2.4.x, allows remote attackers to cause a denial of service (crash) via an AppleTalk frame that is shorter than the specified length, which triggers a BUG_ON call when an attempt is made to perform a checksum.
network
low complexity
linux
7.8
2007-03-16 CVE-2007-1497 Unspecified vulnerability in Linux Kernel
nf_conntrack in netfilter in the Linux kernel before 2.6.20.3 does not set nfctinfo during reassembly of fragmented packets, which leaves the default value as IP_CT_ESTABLISHED and might allow remote attackers to bypass certain rulesets using IPv6 fragments.
network
low complexity
linux
5.0
2007-03-16 CVE-2007-1496 NULL Pointer Dereference vulnerability in Linux Kernel Netfilter NFNetLink_Log
nfnetlink_log in netfilter in the Linux kernel before 2.6.20.3 allows attackers to cause a denial of service (crash) via unspecified vectors involving the (1) nfulnl_recv_config function, (2) using "multiple packets per netlink message", and (3) bridged packets, which trigger a NULL pointer dereference.
local
low complexity
linux
4.9
2007-03-12 CVE-2007-1000 Information Disclosure vulnerability in Linux Kernel IPV6_Getsockopt_Sticky Memory Leak
The ipv6_getsockopt_sticky function in net/ipv6/ipv6_sockglue.c in the Linux kernel before 2.6.20.2 allows local users to read arbitrary kernel memory via certain getsockopt calls that trigger a NULL dereference.
local
low complexity
linux
7.2
2007-03-10 CVE-2007-1388 Resource Management Errors vulnerability in Linux Kernel
The do_ipv6_setsockopt function in net/ipv6/ipv6_sockglue.c in Linux kernel before 2.6.20, and possibly other versions, allows local users to cause a denial of service (oops) by calling setsockopt with the IPV6_RTHDR option name and possibly a zero option length or invalid option value, which triggers a NULL pointer dereference.
local
linux CWE-399
4.4
2007-03-02 CVE-2007-1217 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Linux Kernel
Buffer overflow in the bufprint function in capiutil.c in libcapi, as used in Linux kernel 2.6.9 to 2.6.20 and isdn4k-utils, allows local users to cause a denial of service (crash) and possibly gain privileges via a crafted CAPI packet.
local
linux CWE-119
6.9
2007-02-20 CVE-2007-0772 Resource Management Errors vulnerability in Linux Kernel
The Linux kernel 2.6.13 and other versions before 2.6.20.1 allows remote attackers to cause a denial of service (oops) via a crafted NFSACL 2 ACCESS request that triggers a free of an incorrect pointer.
network
low complexity
linux CWE-399
7.8
2007-02-15 CVE-2007-0958 Local Information Disclosure vulnerability in Linux Kernel BINFMT_ELF PT_INTERP
Linux kernel 2.6.x before 2.6.20 allows local users to read unreadable binaries by using the interpreter (PT_INTERP) functionality and triggering a core dump, a variant of CVE-2004-1073.
local
low complexity
linux
2.1