Vulnerabilities > Linux > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-01-12 | CVE-2016-8459 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Linux Kernel 3.18 Possible buffer overflow in storage subsystem. | 9.8 |
| 2017-01-12 | CVE-2016-8440 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Linux Kernel 3.18 Possible buffer overflow in SMMU system call. | 9.8 |
| 2017-01-12 | CVE-2016-8439 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Linux Kernel 3.18 Possible buffer overflow in trust zone access control API. | 9.8 |
| 2017-01-12 | CVE-2016-8438 | Integer Overflow or Wraparound vulnerability in Linux Kernel 3.18 Integer overflow leading to a TOCTOU condition in hypervisor PIL. | 9.8 |
| 2017-01-12 | CVE-2016-8437 | Improper Input Validation vulnerability in Linux Kernel 3.18 Improper input validation in Access Control APIs. | 9.8 |
| 2017-01-12 | CVE-2016-8398 | 7PK - Security Features vulnerability in Linux Kernel 3.18 Unauthenticated messages processed by the UE. | 9.8 |
| 2016-11-28 | CVE-2016-9555 | Out-of-bounds Read vulnerability in Linux Kernel The sctp_sf_ootb function in net/sctp/sm_statefuns.c in the Linux kernel before 4.8.8 lacks chunk-length checking for the first chunk, which allows remote attackers to cause a denial of service (out-of-bounds slab access) or possibly have unspecified other impact via crafted SCTP data. | 9.8 |
| 2016-10-10 | CVE-2016-7117 | Data Processing Errors vulnerability in multiple products Use-after-free vulnerability in the __sys_recvmmsg function in net/socket.c in the Linux kernel before 4.5.2 allows remote attackers to execute arbitrary code via vectors involving a recvmmsg system call that is mishandled during error processing. | 9.8 |
| 2016-10-10 | CVE-2016-5343 | Classic Buffer Overflow vulnerability in Linux Kernel drivers/soc/qcom/qdsp6v2/voice_svc.c in the QDSP6v2 Voice Service driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, allows attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a write request, as demonstrated by a voice_svc_send_req buffer overflow. | 9.8 |
| 2016-08-30 | CVE-2016-5344 | Integer Overflow or Wraparound vulnerability in multiple products Multiple integer overflows in the MDSS driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, allow attackers to cause a denial of service or possibly have unspecified other impact via a large size value, related to mdss_compat_utils.c, mdss_fb.c, and mdss_rotator.c. | 9.8 |