Vulnerabilities > Linux > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-03-19 | CVE-2017-7184 | Unspecified vulnerability in Linux Kernel The xfrm_replay_verify_len function in net/xfrm/xfrm_user.c in the Linux kernel through 4.10.6 does not validate certain size data after an XFRM_MSG_NEWAE update, which allows local users to obtain root privileges or cause a denial of service (heap-based out-of-bounds access) by leveraging the CAP_NET_ADMIN capability, as demonstrated during a Pwn2Own competition at CanSecWest 2017 for the Ubuntu 16.10 linux-image-* package 4.8.0.41.52. | 7.8 |
| 2017-03-14 | CVE-2017-6874 | Use After Free vulnerability in Linux Kernel Race condition in kernel/ucount.c in the Linux kernel through 4.10.2 allows local users to cause a denial of service (use-after-free and system crash) or possibly have unspecified other impact via crafted system calls that leverage certain decrement behavior that causes incorrect interaction between put_ucounts and get_ucounts. | 7.0 |
| 2017-03-08 | CVE-2017-0528 | Unspecified vulnerability in Linux Kernel 3.18 An elevation of privilege vulnerability in the kernel security subsystem could enable a local malicious application to to execute code in the context of a privileged process. | 7.8 |
| 2017-03-08 | CVE-2017-0527 | Unspecified vulnerability in Linux Kernel 3.10/3.18 An elevation of privilege vulnerability in the HTC Sensor Hub Driver could enable a local malicious application to execute arbitrary code within the context of the kernel. | 7.0 |
| 2017-03-08 | CVE-2017-0526 | Unspecified vulnerability in Linux Kernel 3.10 An elevation of privilege vulnerability in the HTC Sensor Hub Driver could enable a local malicious application to execute arbitrary code within the context of the kernel. | 7.0 |
| 2017-03-08 | CVE-2017-0525 | Unspecified vulnerability in Linux Kernel 3.10/3.18 An elevation of privilege vulnerability in the Qualcomm IPA driver could enable a local malicious application to execute arbitrary code within the context of the kernel. | 7.0 |
| 2017-03-08 | CVE-2017-0524 | Unspecified vulnerability in Linux Kernel 3.10/3.18 An elevation of privilege vulnerability in the Synaptics touchscreen driver could enable a local malicious application to execute arbitrary code within the context of the kernel. | 7.0 |
| 2017-03-08 | CVE-2017-0523 | An elevation of privilege vulnerability in the Qualcomm Wi-Fi driver could enable a local malicious application to execute arbitrary code within the context of the kernel. | 7.0 |
| 2017-03-08 | CVE-2017-0521 | Integer Overflow or Wraparound vulnerability in Linux Kernel 3.10/3.18 An elevation of privilege vulnerability in the Qualcomm camera driver could enable a local malicious application to execute arbitrary code within the context of the kernel. | 7.0 |
| 2017-03-08 | CVE-2017-0520 | Classic Buffer Overflow vulnerability in Linux Kernel 3.10/3.18 An elevation of privilege vulnerability in the Qualcomm crypto engine driver could enable a local malicious application to execute arbitrary code within the context of the kernel. | 7.0 |