Vulnerabilities > Linux > Linux Kernel > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-04-28 | CVE-2017-7895 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products The NFSv2 and NFSv3 server implementations in the Linux kernel through 4.10.13 lack certain checks for the end of a buffer, which allows remote attackers to trigger pointer-arithmetic errors or possibly have unspecified other impact via crafted requests, related to fs/nfsd/nfs3xdr.c and fs/nfsd/nfsxdr.c. | 9.8 |
| 2017-04-07 | CVE-2017-0561 | Out-of-bounds Write vulnerability in Linux Kernel 3.10/3.18 A remote code execution vulnerability in the Broadcom Wi-Fi firmware could enable a remote attacker to execute arbitrary code within the context of the Wi-Fi SoC. | 9.8 |
| 2017-04-04 | CVE-2016-10229 | Improperly Implemented Security Check for Standard vulnerability in multiple products udp.c in the Linux kernel before 4.5 allows remote attackers to execute arbitrary code via UDP traffic that triggers an unsafe second checksum calculation during execution of a recv system call with the MSG_PEEK flag. | 9.8 |
| 2017-03-23 | CVE-2017-5897 | Out-of-bounds Read vulnerability in multiple products The ip6gre_err function in net/ipv6/ip6_gre.c in the Linux kernel allows remote attackers to have unspecified impact via vectors involving GRE flags in an IPv6 packet, which trigger an out-of-bounds access. | 9.8 |
| 2017-02-06 | CVE-2016-10150 | Use After Free vulnerability in Linux Kernel Use-after-free vulnerability in the kvm_ioctl_create_device function in virt/kvm/kvm_main.c in the Linux kernel before 4.8.13 allows host OS users to cause a denial of service (host OS crash) or possibly gain privileges via crafted ioctl calls on the /dev/kvm device. | 9.8 |
| 2017-01-12 | CVE-2016-8398 | 7PK - Security Features vulnerability in Linux Kernel 3.18 Unauthenticated messages processed by the UE. | 9.8 |
| 2017-01-12 | CVE-2016-8437 | Improper Input Validation vulnerability in Linux Kernel 3.18 Improper input validation in Access Control APIs. | 9.8 |
| 2017-01-12 | CVE-2016-8438 | Integer Overflow or Wraparound vulnerability in Linux Kernel 3.18 Integer overflow leading to a TOCTOU condition in hypervisor PIL. | 9.8 |
| 2017-01-12 | CVE-2016-8439 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Linux Kernel 3.18 Possible buffer overflow in trust zone access control API. | 9.8 |
| 2017-01-12 | CVE-2016-8440 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Linux Kernel 3.18 Possible buffer overflow in SMMU system call. | 9.8 |