Vulnerabilities > Linux > Linux Kernel > 3.12.5

DATE CVE VULNERABILITY TITLE RISK
2014-04-01 CVE-2014-2678 Null Pointer Dereference vulnerability in multiple products
The rds_iw_laddr_check function in net/rds/iw.c in the Linux kernel through 3.14 allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via a bind system call for an RDS socket on a system that lacks RDS transports.
4.7
2014-03-24 CVE-2014-2568 USE After Free vulnerability in Linux Kernel
Use-after-free vulnerability in the nfqnl_zcopy function in net/netfilter/nfnetlink_queue_core.c in the Linux kernel through 3.13.6 allows attackers to obtain sensitive information from kernel memory by leveraging the absence of a certain orphaning operation.
2.9
2014-03-11 CVE-2014-2309 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in multiple products
The ip6_route_add function in net/ipv6/route.c in the Linux kernel through 3.13.6 does not properly count the addition of routes, which allows remote attackers to cause a denial of service (memory consumption) via a flood of ICMPv6 Router Advertisement packets.
low complexity
linux opensuse suse CWE-119
6.1
2014-03-11 CVE-2014-0102 Cryptographic Issues vulnerability in Linux Kernel
The keyring_detect_cycle_iterator function in security/keys/keyring.c in the Linux kernel through 3.13.6 does not properly determine whether keyrings are identical, which allows local users to cause a denial of service (OOPS) via crafted keyctl commands.
5.2