| 2005-01-10 | CVE-2004-1058 | Race condition in Linux kernel 2.6 allows local users to read the environment variables of another process that is still spawning via /proc/.../cmdline. | 1.2 |
| 2005-01-10 | CVE-2004-1016 | Local Denial of Service vulnerability in Linux Kernel SCM_SEND
The scm_send function in the scm layer for Linux kernel 2.4.x up to 2.4.28, and 2.6.x up to 2.6.9, allows local users to cause a denial of service (system hang) via crafted auxiliary messages that are passed to the sendmsg function, which causes a deadlock condition. | 2.1 |
| 2004-12-31 | CVE-2004-2607 | Unspecified vulnerability in Linux Kernel
A numeric casting discrepancy in sdla_xfer in Linux kernel 2.6.x up to 2.6.5 and 2.4 up to 2.4.29-rc1 allows local users to read portions of kernel memory via a large len argument, which is received as an int but cast to a short, which prevents a read loop from filling a buffer. local low complexity linux | 2.1 |
| 2004-12-31 | CVE-2004-2302 | Local Integer Overflow vulnerability in Linux Kernel 2.6.10
Race condition in the sysfs_read_file and sysfs_write_file functions in Linux kernel before 2.6.10 allows local users to read kernel memory and cause a denial of service (crash) via large offsets in sysfs files. local high complexity linux | 2.6 |
| 2004-12-23 | CVE-2004-0814 | Multiple race conditions in the terminal layer in Linux 2.4.x, and 2.6.x before 2.6.9, allow (1) local users to obtain portions of kernel data via a TIOCSETD ioctl call to a terminal interface that is being accessed by another thread, or (2) remote attackers to cause a denial of service (panic) by switching from console to PPP line discipline, then quickly sending data that is received during the switch. | 1.2 |
| 2004-12-06 | CVE-2004-0565 | Floating point information leak in the context switch code for Linux 2.4.x only checks the MFH bit but does not verify the FPH owner, which allows local users to read register values of other processes by setting the MFH bit. | 2.1 |
| 2004-12-06 | CVE-2004-0497 | Unknown vulnerability in Linux kernel 2.x may allow local users to modify the group ID of files, such as NFS exported files in kernel 2.4. | 2.1 |
| 2004-11-23 | CVE-2004-0415 | Linux kernel does not properly convert 64-bit file offset pointers to 32 bits, which allows local users to access portions of kernel memory. | 2.1 |
| 2004-08-18 | CVE-2004-0394 | Buffer Overflow vulnerability in Linux Kernel 2.6.20.1
A "potential" buffer overflow exists in the panic() function in Linux 2.4.x, although it may not be exploitable due to the functionality of panic. local low complexity linux | 2.1 |
| 2004-08-06 | CVE-2004-0554 | Local Denial Of Service vulnerability in Linux Kernel Floating Point Exception Handler
Linux kernel 2.4.x and 2.6.x for x86 allows local users to cause a denial of service (system crash), possibly via an infinite loop that triggers a signal handler with a certain sequence of fsave and frstor instructions, as originally demonstrated using a "crash.c" program. | 2.1 |