Vulnerabilities > Linux
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-07-03 | CVE-2018-13093 | NULL Pointer Dereference vulnerability in Linux Kernel An issue was discovered in fs/xfs/xfs_icache.c in the Linux kernel through 4.17.3. | 5.5 |
| 2018-07-02 | CVE-2018-12896 | Integer Overflow or Wraparound vulnerability in multiple products An issue was discovered in the Linux kernel through 4.17.3. | 5.5 |
| 2018-07-02 | CVE-2018-13053 | Integer Overflow or Wraparound vulnerability in multiple products The alarm_timer_nsleep function in kernel/time/alarmtimer.c in the Linux kernel through 4.17.3 has an integer overflow via a large relative timeout because ktime_add_safe is not used. | 3.3 |
| 2018-06-28 | CVE-2018-12931 | Out-of-bounds Write vulnerability in multiple products ntfs_attr_find in the ntfs.ko filesystem driver in the Linux kernel 4.15.0 allows attackers to trigger a stack-based out-of-bounds write and cause a denial of service (kernel oops or panic) or possibly have unspecified other impact via a crafted ntfs filesystem. | 7.8 |
| 2018-06-28 | CVE-2018-12930 | Out-of-bounds Write vulnerability in multiple products ntfs_end_buffer_async_read in the ntfs.ko filesystem driver in the Linux kernel 4.15.0 allows attackers to trigger a stack-based out-of-bounds write and cause a denial of service (kernel oops or panic) or possibly have unspecified other impact via a crafted ntfs filesystem. | 7.8 |
| 2018-06-28 | CVE-2018-12929 | Use After Free vulnerability in multiple products ntfs_read_locked_inode in the ntfs.ko filesystem driver in the Linux kernel 4.15.0 allows attackers to trigger a use-after-free read and possibly cause a denial of service (kernel oops or panic) via a crafted ntfs filesystem. | 5.5 |
| 2018-06-28 | CVE-2018-12928 | NULL Pointer Dereference vulnerability in multiple products In the Linux kernel 4.15.0, a NULL pointer dereference was discovered in hfs_ext_read_extent in hfs.ko. | 5.5 |
| 2018-06-27 | CVE-2018-12904 | In arch/x86/kvm/vmx.c in the Linux kernel before 4.17.2, when nested virtualization is used, local attackers could cause L1 KVM guests to VMEXIT, potentially allowing privilege escalations and denial of service attacks due to lack of checking of CPL. | 4.9 |
| 2018-06-26 | CVE-2018-1000204 | Linux Kernel version 3.18 to 4.16 incorrectly handles an SG_IO ioctl on /dev/sg0 with dxfer_direction=SG_DXFER_FROM_DEV and an empty 6-byte cmdp. | 5.3 |
| 2018-06-24 | CVE-2018-12714 | Out-of-bounds Write vulnerability in Linux Kernel An issue was discovered in the Linux kernel through 4.17.2. | 9.8 |