Vulnerabilities > Linux > Linux Kernel > 3.18
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-02-06 | CVE-2017-2583 | Unspecified vulnerability in Linux Kernel The load_segment_descriptor implementation in arch/x86/kvm/emulate.c in the Linux kernel before 4.9.5 improperly emulates a "MOV SS, NULL selector" instruction, which allows guest OS users to cause a denial of service (guest OS crash) or gain guest OS privileges via a crafted application. | 8.4 |
| 2017-02-06 | CVE-2016-10208 | Out-of-bounds Read vulnerability in Linux Kernel The ext4_fill_super function in fs/ext4/super.c in the Linux kernel through 4.9.8 does not properly validate meta block groups, which allows physically proximate attackers to cause a denial of service (out-of-bounds read and system crash) via a crafted ext4 image. | 4.3 |
| 2017-01-18 | CVE-2016-10147 | NULL Pointer Dereference vulnerability in Linux Kernel crypto/mcryptd.c in the Linux kernel before 4.8.15 allows local users to cause a denial of service (NULL pointer dereference and system crash) by using an AF_ALG socket with an incompatible algorithm, as demonstrated by mcryptd(md5). | 5.5 |
| 2017-01-15 | CVE-2017-2584 | Use After Free vulnerability in Linux Kernel arch/x86/kvm/emulate.c in the Linux kernel through 4.9.3 allows local users to obtain sensitive information from kernel memory or cause a denial of service (use-after-free) via a crafted application that leverages instruction emulation for fxrstor, fxsave, sgdt, and sidt. | 7.1 |
| 2017-01-12 | CVE-2017-0404 | Unspecified vulnerability in Linux Kernel 3.10/3.18 An elevation of privilege vulnerability in the kernel sound subsystem could enable a local malicious application to execute arbitrary code within the context of the kernel. | 7.0 |
| 2017-01-12 | CVE-2017-0403 | Unspecified vulnerability in Linux Kernel 3.10/3.18 An elevation of privilege vulnerability in the kernel performance subsystem could enable a local malicious application to execute arbitrary code within the context of the kernel. | 7.0 |
| 2017-01-12 | CVE-2016-8475 | Information Exposure vulnerability in Linux Kernel 3.18 An information disclosure vulnerability in the HTC input driver could enable a local malicious application to access data outside of its permission levels. | 4.7 |
| 2017-01-12 | CVE-2016-8468 | Permissions, Privileges, and Access Controls vulnerability in Linux Kernel 3.18 An elevation of privilege vulnerability in Binder could enable a local malicious application to execute arbitrary code within the context of a privileged process. | 7.0 |
| 2017-01-12 | CVE-2016-8466 | Permissions, Privileges, and Access Controls vulnerability in Linux Kernel 3.10/3.18 An elevation of privilege vulnerability in the Broadcom Wi-Fi driver could enable a local malicious application to execute arbitrary code within the context of the kernel. | 7.0 |
| 2017-01-12 | CVE-2016-8465 | Permissions, Privileges, and Access Controls vulnerability in Linux Kernel 3.10/3.18 An elevation of privilege vulnerability in the Broadcom Wi-Fi driver could enable a local malicious application to execute arbitrary code within the context of the kernel. | 7.0 |