This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Linux First view 1995-09-07
Product Linux Kernel Last view 2021-07-21
Version Type Os
Update  
Edition  
Language  
Sofware Edition  
Target Software  
Target Hardware  
Other  

Activity : Overall

COMMON PLATFORM ENUMERATION: Repartition per Version

CPE Name Affected CVE
cpe:2.3:o:linux:linux_kernel:2.6.0:-:*:*:*:*:*:* 2018
cpe:2.3:o:linux:linux_kernel:2.6.1:-:*:*:*:*:*:* 1995
cpe:2.3:o:linux:linux_kernel:2.6.2:-:*:*:*:*:*:* 1989
cpe:2.3:o:linux:linux_kernel:2.6.3:-:*:*:*:*:*:* 1986
cpe:2.3:o:linux:linux_kernel:2.6.5:-:*:*:*:*:*:* 1985
cpe:2.3:o:linux:linux_kernel:2.6.4:-:*:*:*:*:*:* 1985
cpe:2.3:o:linux:linux_kernel:2.6.6:-:*:*:*:*:*:* 1981
cpe:2.3:o:linux:linux_kernel:2.6.7:-:*:*:*:*:*:* 1980
cpe:2.3:o:linux:linux_kernel:2.6.10:-:*:*:*:*:*:* 1979
cpe:2.3:o:linux:linux_kernel:2.6.8:*:*:*:*:*:*:* 1976
cpe:2.3:o:linux:linux_kernel:2.6.11:-:*:*:*:*:*:* 1970
cpe:2.3:o:linux:linux_kernel:2.6.1:rc2:*:*:*:*:*:* 1964
cpe:2.3:o:linux:linux_kernel:2.6.1:rc1:*:*:*:*:*:* 1964
cpe:2.3:o:linux:linux_kernel:2.6.9:2.6.20:*:*:*:*:*:* 1963
cpe:2.3:o:linux:linux_kernel:2.6.11.5:*:*:*:*:*:*:* 1960
cpe:2.3:o:linux:linux_kernel:2.6.11.6:*:*:*:*:*:*:* 1960
cpe:2.3:o:linux:linux_kernel:2.6.11.7:*:*:*:*:*:*:* 1958
cpe:2.3:o:linux:linux_kernel:2.4.0:-:*:*:*:*:*:* 1957
cpe:2.3:o:linux:linux_kernel:2.6.11.8:*:*:*:*:*:*:* 1957
cpe:2.3:o:linux:linux_kernel:2.6.6:rc1:*:*:*:*:*:* 1950
cpe:2.3:o:linux:linux_kernel:2.4.10:*:*:*:*:*:*:* 1948
cpe:2.3:o:linux:linux_kernel:2.6.7:rc1:*:*:*:*:*:* 1948
cpe:2.3:o:linux:linux_kernel:2.6.0:test7:*:*:*:*:*:* 1946
cpe:2.3:o:linux:linux_kernel:2.6.0:test9:*:*:*:*:*:* 1946
cpe:2.3:o:linux:linux_kernel:2.6.0:test8:*:*:*:*:*:* 1946
cpe:2.3:o:linux:linux_kernel:2.6.0:test1:*:*:*:*:*:* 1946
cpe:2.3:o:linux:linux_kernel:2.6.8:rc3:*:*:*:*:*:* 1946
cpe:2.3:o:linux:linux_kernel:2.6.0:test2:*:*:*:*:*:* 1946
cpe:2.3:o:linux:linux_kernel:2.6.0:test3:*:*:*:*:*:* 1946
cpe:2.3:o:linux:linux_kernel:2.6.8:rc2:*:*:*:*:*:* 1946
cpe:2.3:o:linux:linux_kernel:2.6.0:test6:*:*:*:*:*:* 1946
cpe:2.3:o:linux:linux_kernel:2.6.0:test5:*:*:*:*:*:* 1946
cpe:2.3:o:linux:linux_kernel:2.6.0:test4:*:*:*:*:*:* 1946
cpe:2.3:o:linux:linux_kernel:2.6.8:rc1:*:*:*:*:*:* 1946
cpe:2.3:o:linux:linux_kernel:2.4.2:*:*:*:*:*:*:* 1945
cpe:2.3:o:linux:linux_kernel:2.6.0:test11:*:*:*:*:*:* 1945
cpe:2.3:o:linux:linux_kernel:2.4.3:-:*:*:*:*:*:* 1945
cpe:2.3:o:linux:linux_kernel:2.6.0:test10:*:*:*:*:*:* 1945
cpe:2.3:o:linux:linux_kernel:2.4.11:-:*:*:*:*:*:* 1945
cpe:2.3:o:linux:linux_kernel:2.4.15:*:*:*:*:*:*:* 1944
cpe:2.3:o:linux:linux_kernel:2.4.14:*:*:*:*:*:*:* 1944
cpe:2.3:o:linux:linux_kernel:2.4.13:*:*:*:*:*:*:* 1944
cpe:2.3:o:linux:linux_kernel:2.4.12:*:*:*:*:*:*:* 1944
cpe:2.3:o:linux:linux_kernel:2.4.18:-:*:*:*:*:*:* 1944
cpe:2.3:o:linux:linux_kernel:2.4.16:*:*:*:*:*:*:* 1944
cpe:2.3:o:linux:linux_kernel:2.4.7:*:*:*:*:*:*:* 1944
cpe:2.3:o:linux:linux_kernel:2.4.9:*:*:*:*:*:*:* 1944
cpe:2.3:o:linux:linux_kernel:2.4.8:*:*:*:*:*:*:* 1944
cpe:2.3:o:linux:linux_kernel:2.4.1:*:*:*:*:*:*:* 1944
cpe:2.3:o:linux:linux_kernel:2.6.11.11:*:*:*:*:*:*:* 1944

Related : CVE

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
  Date Alert Description
7.8 2021-07-21 CVE-2021-37159

hso_free_net_device in drivers/net/usb/hso.c in the Linux kernel through 5.13.4 calls unregister_netdev without checking for the NETREG_REGISTERED state, leading to a use-after-free and a double free.

7.8 2021-07-20 CVE-2021-33909

fs/seq_file.c in the Linux kernel 3.16 through 5.13.x before 5.13.4 does not properly restrict seq buffer allocations, leading to an integer overflow, an Out-of-bounds Write, and escalation to root by an unprivileged user, aka CID-8cae8cd89f05.

7.8 2021-07-09 CVE-2021-3612

An out-of-bounds memory write flaw was found in the Linux kernel's joystick devices subsystem in versions before 5.9-rc1, in the way the user calls ioctl JSIOCSBTNMAP. This flaw allows a local user to crash the system or possibly escalate their privileges on the system. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.

7.8 2021-07-07 CVE-2021-35039

kernel/module.c in the Linux kernel before 5.12.14 mishandles Signature Verification, aka CID-0c18f29aae7c. Without CONFIG_MODULE_SIG, verification that a kernel module is signed, for loading via init_module, does not occur for a module.sig_enforce=1 command-line argument.

7.8 2021-07-07 CVE-2021-22555

A heap out-of-bounds write affecting Linux since v2.6.19-rc1 was discovered in net/netfilter/x_tables.c. This allows an attacker to gain privileges or cause a DoS (via heap memory corruption) through user name space

7.8 2021-06-29 CVE-2021-28691

Guest triggered use-after-free in Linux xen-netback A malicious or buggy network PV frontend can force Linux netback to disable the interface and terminate the receive kernel thread associated with queue 0 in response to the frontend sending a malformed packet. Such kernel thread termination will lead to a use-after-free in Linux netback when the backend is destroyed, as the kernel thread associated with queue 0 will have already exited and thus the call to kthread_stop will be performed against a stale pointer.

5.9 2021-06-24 CVE-2020-28097

The vgacon subsystem in the Linux kernel before 5.8.10 mishandles software scrollback. There is a vgacon_scrolldelta out-of-bounds read, aka CID-973c096f6a85.

4.7 2021-06-23 CVE-2021-33624

In kernel/bpf/verifier.c in the Linux kernel before 5.12.13, a branch can be mispredicted (e.g., because of type confusion) and consequently an unprivileged BPF program can read arbitrary memory locations via a side-channel attack, aka CID-9183671af6db.

7.8 2021-06-22 CVE-2010-2525

A flaw was discovered in gfs2 file system’s handling of acls (access control lists). An unprivileged local attacker could exploit this flaw to gain access or execute any file stored in the gfs2 file system.

7.1 2021-06-17 CVE-2021-32078

An Out-of-Bounds Read was discovered in arch/arm/mach-footbridge/personal-pci.c in the Linux kernel through 5.12.11 because of the lack of a check for a value that shouldn't be negative, e.g., access to element -2 of an array, aka CID-298a58e165e4.

5.5 2021-06-14 CVE-2021-34693

net/can/bcm.c in the Linux kernel through 5.12.10 allows local users to obtain sensitive information from kernel stack memory because parts of a data structure are uninitialized.

5.7 2021-06-09 CVE-2021-0129

Improper access control in BlueZ may allow an authenticated user to potentially enable information disclosure via adjacent access.

5.5 2021-06-08 CVE-2021-3564

A flaw double-free memory corruption in the Linux kernel HCI device initialization subsystem was found in the way user attach malicious HCI TTY Bluetooth device. A local user could use this flaw to crash the system. This flaw affects all the Linux kernel versions starting from 3.13.

7.8 2021-06-07 CVE-2020-36387

An issue was discovered in the Linux kernel before 5.8.2. fs/io_uring.c has a use-after-free related to io_async_task_func and ctx reference holding, aka CID-6d816e088c35.

7.1 2021-06-07 CVE-2020-36386

An issue was discovered in the Linux kernel before 5.8.1. net/bluetooth/hci_event.c has a slab out-of-bounds read in hci_extended_inquiry_result_evt, aka CID-51c19bf3d5cf.

7.8 2021-06-07 CVE-2020-36385

An issue was discovered in the Linux kernel before 5.10. drivers/infiniband/core/ucma.c has a use-after-free because the ctx is reached via the ctx_list in some ucma_migrate_id situations where ucma_close is called, aka CID-f5449e74802c.

7.8 2021-06-07 CVE-2019-25045

An issue was discovered in the Linux kernel before 5.0.19. The XFRM subsystem has a use-after-free, related to an xfrm_state_fini panic, aka CID-dbb2483b2a46.

7.8 2021-06-07 CVE-2018-25015

An issue was discovered in the Linux kernel before 4.14.16. There is a use-after-free in net/sctp/socket.c for a held lock after a peel off, aka CID-a0ff660058b8.

8.8 2021-06-04 CVE-2021-3491

The io_uring subsystem in the Linux kernel allowed the MAX_RW_COUNT limit to be bypassed in the PROVIDE_BUFFERS operation, which led to negative values being usedin mem_rw when reading /proc//mem. This could be used to create a heap overflow leading to arbitrary code execution in the kernel. It was addressed via commit d1f82808877b ("io_uring: truncate lengths larger than MAX_RW_COUNT on provide buffers") (v5.13-rc1) and backported to the stable kernels in v5.12.4, v5.11.21, and v5.10.37. It was introduced in ddf0322db79c ("io_uring: add IORING_OP_PROVIDE_BUFFERS") (v5.7-rc1).

7.8 2021-06-04 CVE-2021-3490

The eBPF ALU32 bounds tracking for bitwise ops (AND, OR and XOR) in the Linux kernel did not properly update 32-bit bounds, which could be turned into out of bounds reads and writes in the Linux kernel and therefore, arbitrary code execution. This issue was fixed via commit 049c4e13714e ("bpf: Fix alu32 const subreg bound tracking on bitwise operations") (v5.13-rc4) and backported to the stable kernels in v5.12.4, v5.11.21, and v5.10.37. The AND/OR issues were introduced by commit 3f50f132d840 ("bpf: Verifier, do explicit ALU32 bounds tracking") (5.7-rc1) and the XOR variant was introduced by 2921c90d4718 ("bpf:Fix a verifier failure with xor") ( 5.10-rc1).

7.8 2021-06-04 CVE-2021-3489

The eBPF RINGBUF bpf_ringbuf_reserve() function in the Linux kernel did not check that the allocated size was smaller than the ringbuf size, allowing an attacker to perform out-of-bounds writes within the kernel and therefore, arbitrary code execution. This issue was fixed via commit 4b81ccebaeee ("bpf, ringbuf: Deny reserve of buffers larger than ringbuf") (v5.13-rc4) and backported to the stable kernels in v5.12.4, v5.11.21, and v5.10.37. It was introduced via 457f44363a88 ("bpf: Implement BPF ring buffer and verifier support for it") (v5.8-rc1).

6 2021-06-02 CVE-2020-10742

A flaw was found in the Linux kernel. An index buffer overflow during Direct IO write leading to the NFS client to crash. In some cases, a reach out of the index after one memory allocation by kmalloc will cause a kernel panic. The highest threat from this vulnerability is to data confidentiality and system availability.

6.7 2021-05-28 CVE-2021-20292

There is a flaw reported in the Linux kernel in versions before 5.9 in drivers/gpu/drm/nouveau/nouveau_sgdma.c in nouveau_sgdma_create_ttm in Nouveau DRM subsystem. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker with a local account with a root privilege, can leverage this vulnerability to escalate privileges and execute code in the context of the kernel.

3.3 2021-05-28 CVE-2021-20239

A flaw was found in the Linux kernel in versions before 5.4.92 in the BPF protocol. This flaw allows an attacker with a local account to leak information about kernel internal addresses. The highest threat from this vulnerability is to confidentiality.

7.8 2021-05-27 CVE-2021-33200

kernel/bpf/verifier.c in the Linux kernel through 5.12.7 enforces incorrect limits for pointer arithmetic operations, aka CID-bb01a1bba579. This can be abused to perform out-of-bounds reads and writes in kernel memory, leading to local privilege escalation to root. In particular, there is a corner case where the off reg causes a masking direction change, which then results in an incorrect final aux->alu_limit.

CWE : Common Weakness Enumeration

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
%idName
11% (255) CWE-200 Information Exposure
10% (214) CWE-119 Failure to Constrain Operations within the Bounds of a Memory Buffer
8% (175) CWE-20 Improper Input Validation
7% (170) CWE-264 Permissions, Privileges, and Access Controls
7% (162) CWE-416 Use After Free
7% (157) CWE-399 Resource Management Errors
7% (155) CWE-476 NULL Pointer Dereference
6% (137) CWE-362 Race Condition
3% (84) CWE-787 Out-of-bounds Write
3% (70) CWE-125 Out-of-bounds Read
3% (65) CWE-189 Numeric Errors
2% (60) CWE-401 Failure to Release Memory Before Removing Last Reference ('Memory L...
2% (54) CWE-190 Integer Overflow or Wraparound
2% (51) CWE-400 Uncontrolled Resource Consumption ('Resource Exhaustion')
1% (37) CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflo...
1% (36) CWE-284 Access Control (Authorization) Issues
1% (30) CWE-269 Improper Privilege Management
0% (19) CWE-772 Missing Release of Resource after Effective Lifetime
0% (16) CWE-415 Double Free
0% (13) CWE-310 Cryptographic Issues
0% (13) CWE-17 Code
0% (10) CWE-369 Divide By Zero
0% (8) CWE-19 Data Handling
0% (8) CWE-16 Configuration
0% (7) CWE-665 Improper Initialization

CAPEC : Common Attack Pattern Enumeration & Classification

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
id Name
CAPEC-1 Accessing Functionality Not Properly Constrained by ACLs
CAPEC-3 Using Leading 'Ghost' Character Sequences to Bypass Input Filters
CAPEC-7 Blind SQL Injection
CAPEC-8 Buffer Overflow in an API Call
CAPEC-9 Buffer Overflow in Local Command-Line Utilities
CAPEC-10 Buffer Overflow via Environment Variables
CAPEC-13 Subverting Environment Variable Values
CAPEC-14 Client-side Injection-induced Buffer Overflow
CAPEC-17 Accessing, Modifying or Executing Executable Files
CAPEC-18 Embedding Scripts in Nonscript Elements
CAPEC-22 Exploiting Trust in Client (aka Make the Client Invisible)
CAPEC-24 Filter Failure through Buffer Overflow
CAPEC-28 Fuzzing
CAPEC-31 Accessing/Intercepting/Modifying HTTP Cookies
CAPEC-32 Embedding Scripts in HTTP Query Strings
CAPEC-39 Manipulating Opaque Client-based Data Tokens
CAPEC-42 MIME Conversion
CAPEC-43 Exploiting Multiple Input Interpretation Layers
CAPEC-44 Overflow Binary Resource File
CAPEC-45 Buffer Overflow via Symbolic Links
CAPEC-46 Overflow Variables and Tags
CAPEC-47 Buffer Overflow via Parameter Expansion
CAPEC-51 Poison Web Service Registry
CAPEC-52 Embedding NULL Bytes
CAPEC-53 Postfix, Null Terminate, and Backslash

Oval Markup Language : Definitions

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
OvalID Name
oval:org.mitre.oval:def:2665 Data Leak in NIC
oval:org.mitre.oval:def:28706 Critical Patch Update January 2015
oval:org.mitre.oval:def:254 Linux Kernel ptrace Privilege Escalation Vulnerability
oval:org.mitre.oval:def:260 Netfilter Denial of Service
oval:org.mitre.oval:def:261 Linux Route Cache / Netfilter Denial of Service
oval:org.mitre.oval:def:278 Linux ioperm Privilege Restriction Vulnerability
oval:org.mitre.oval:def:309 Linux Kernel execve Race Condition Vulnerability
oval:org.mitre.oval:def:10285 The kernel strncpy function in Linux 2.4 and 2.5 does not %NUL pad the buffer...
oval:org.mitre.oval:def:327 Linux Kernel execve Read Access to Restricted File Descriptors
oval:org.mitre.oval:def:328 Linux Kernel /proc/self setuid Vulnerability
oval:org.mitre.oval:def:386 Lunix Kernel NFSv3 Procedure Kernel Panic Vulnerability
oval:org.mitre.oval:def:9406 Real time clock (RTC) routines in Linux kernel 2.4.23 and earlier do not prop...
oval:org.mitre.oval:def:859 Red Hat Kernel Real Time Clock Data Leakage
oval:org.mitre.oval:def:1013 Red Hat Enterprise 3 Kernel Real Time Clock Data Leakage
oval:org.mitre.oval:def:867 Red Hat Enterprise 3 Linux Kernel do_mremap Denial of Service Vulnerability
oval:org.mitre.oval:def:860 Red Hat Linux Kernel do_mremap Denial of Service Vulnerability
oval:org.mitre.oval:def:10189 The mremap system call (do_mremap) in Linux kernel 2.4.x before 2.4.21, and p...
oval:org.mitre.oval:def:9707 Various routines for the ppc64 architecture on Linux kernel 2.6 prior to 2.6....
oval:org.mitre.oval:def:9423 kmod in the Linux kernel does not set its uid, suid, gid, or sgid to 0, which...
oval:org.mitre.oval:def:868 Linux Kernel eflags Checking Privilege Escalation Vulnerability
oval:org.mitre.oval:def:10910 Unknown vulnerability in the eflags checking in the 32-bit ptrace emulation f...
oval:org.mitre.oval:def:9204 Unknown vulnerability in Linux kernel before 2.4.22 allows local users to gai...
oval:org.mitre.oval:def:834 Red Hat Kernel R128 DRI Limits Checking Vulnerability
oval:org.mitre.oval:def:1017 Red Hat Enterprise 3 Kernel R128 DRI Limits Checking Vulnerability
oval:org.mitre.oval:def:835 Red Hat Kernel ncp_lookup Function BO

SAINT Exploits

Description Link
Linux kernel ptrace privilege elevation vulnerability More info here
Linux kernel __sock_diag_rcv_msg Netlink message privilege elevation More info here
Ubuntu overlayfs privilege elevation More info here
Linux kernel futex_requeue privilege elevation More info here
Linux Dirty COW Local File Overwrite More info here

Open Source Vulnerability Database (OSVDB)

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
id Description
78509 Linux Kernel /proc/<pid>/mem Access Restriction Weakness Local Privileg...
78303 Linux Kernel sctp_rcv() / sctp_accept() Socket Lock Race Remote DoS
78302 Linux Kernel m_stop() Implementation Local DoS
78301 Linux Kernel NSF O_Direct Implementation Local DoS
78264 Linux Kernel KVM syscall Instruction Executable Handling Local DoS
78226 Linux Kernel fs/xfs/xfs_acl.c xfs_acl_from_disk() Function Memory Corruption
78225 Linux Kernel net/ipv4/igmp.c igmp_heard_query() Function IGMP Query Parsing R...
78014 Linux Kernel SG_IO SCSI IOCTL Command Parsing Local Privilege Escalation
77780 Linux Kernel B.A.T.M.A.N. net/batman/icmp_socket.c bat_socket_read() Packet P...
77684 Linux Kernel OMAP4 Bridge Networking Interface Network Packet Parsing Remote DoS
77683 Linux Kernel HFS File System Mount Local Privilege Escalation
77658 Linux Kernel hfs_find_init() Function NULL Pointer Dereference Local DoS
77626 Linux Kernel kvm_vm_ioctl_assign_device Function /dev/kym Local DoS
77625 Linux Kernel NFSv4 Mount mknod(2) Syscall Local DoS
77485 Linux Kernel /mm/oom_kill.c Local Overflow
77452 OpenFabrics Enterprise Distribution (OFED) RDS_FLAG_CONG_BITMAP Flagged RDS M...
77450 Linux Kernel security/keys/user_defined.c user_update() Function NULL Pointer...
77360 Linux Kernel TX_SKB_SHARING Local DoS
77355 Linux Kernel clock_gettime() Call Parsing Local DoS
77295 Linux Kernel UFO IPv6 UDP Datagram Parsing Remote DoS
77294 Linux Kernel VLAN 0 Frame Priority Tag Parsing Remote DoS
77293 Linux Kernel b43 Driver Wireless Interface Frame Parsing Remote DoS
77292 Linux Kernel tpm_read() Local TPM Command Result Disclosure
77100 Linux Kernel ACL Attribute Request NFSv4 Response Parsing Local DoS
77092 Linux Kernel fs/jbd/journal.c journal_get_superblock() ext3 Image Handling Lo...

ExploitDB Exploits

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
id Description
35370 Linux Kernel libfutex Local Root for RHEL/CentOS 7.0.1406
35161 Linux Local Root => 2.6.39 (32-bit & 64-bit) - Mempodipper #2
34923 Linux Kernel remount FUSE Exploit
34134 Linux Kernel ptrace/sysret - Local Privilege Escalation
33824 Linux Kernel <= 3.13 - Local Privilege Escalation PoC (gid)
33516 Linux kernel 3.14-rc1 <= 3.15-rc4 - Raw Mode PTY Local Echo Race Condition...
33336 Linux Kernel 3.3-3.8 - SOCK_DIAG Local Root Exploit
32926 Linux group_info refcounter - Overflow Memory Corruption
31574 Linux ARM - Local Root Exploit
31347 linux 3.4+ local root (CONFIG_X86_X32=y)
31346 Linux 3.4+ Arbitrary write with CONFIG_X86_X32
30605 Linux Kernel 2.6.x ALSA snd-page-alloc Local Proc File Information Disclosure...
29822 Man Command -H Flag Local Buffer Overflow Vulnerability
26489 Linux Kernel 2.6.x Sysctl Unregistration Local Denial of Service Vulnerability
26382 Linux Kernel 2.6.x IPV6 Local Denial of Service Vulnerability
26131 Linux kernel perf_swevent_init - Local root Exploit
26076 Cisco ASA < 8.4.4.6|8.2.5.32 Ethernet Information Leak
25375 KDE KMail 1.7.1 HTML EMail Remote Email Content Spoofing Vulnerability
24696 Linux Kernel 2.6.x IPTables Logging Rules Integer Underflow Vulnerability
24459 Linux Kernel /dev/ptmx Key Stroke Timing Local Disclosure
22131 Linux Kernel 2.0.x/2.2.x/2.4.x,FreeBSD 4.x Network Device Driver Frame Paddin...
18411 Mempodipper - Linux Local Root for >=2.6.39, 32-bit and 64-bit
18378 Linux IGMP Remote Denial Of Service (Introduced in linux-2.6.36)
17787 Linux Kernel < 2.6.36.2 Econet Privilege Escalation Exploit
16973 Linux <= 2.6.37-rc1 serial_core TIOCGICOUNT Leak Exploit

OpenVAS Exploits

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
id Description
2013-09-18 Name : Debian Security Advisory DSA 2389-1 (linux-2.6 - privilege escalation/denial ...
File : nvt/deb_2389_1.nasl
2013-09-18 Name : Debian Security Advisory DSA 2443-1 (linux-2.6 - privilege escalation/denial ...
File : nvt/deb_2443_1.nasl
2013-09-18 Name : Debian Security Advisory DSA 2469-1 (linux-2.6 - privilege escalation/denial ...
File : nvt/deb_2469_1.nasl
2012-12-26 Name : CentOS Update for kernel CESA-2012:1580 centos6
File : nvt/gb_CESA-2012_1580_kernel_centos6.nasl
2012-12-26 Name : RedHat Update for kernel RHSA-2012:1580-01
File : nvt/gb_RHSA-2012_1580-01_kernel.nasl
2012-12-26 Name : Ubuntu Update for linux USN-1669-1
File : nvt/gb_ubuntu_USN_1669_1.nasl
2012-12-26 Name : Ubuntu Update for linux-ti-omap4 USN-1670-1
File : nvt/gb_ubuntu_USN_1670_1.nasl
2012-12-26 Name : Ubuntu Update for linux USN-1671-1
File : nvt/gb_ubuntu_USN_1671_1.nasl
2012-12-26 Name : Ubuntu Update for linux-ti-omap4 USN-1673-1
File : nvt/gb_ubuntu_USN_1673_1.nasl
2012-12-26 Name : Ubuntu Update for linux USN-1677-1
File : nvt/gb_ubuntu_USN_1677_1.nasl
2012-12-26 Name : Ubuntu Update for linux-lts-backport-oneiric USN-1678-1
File : nvt/gb_ubuntu_USN_1678_1.nasl
2012-12-26 Name : Ubuntu Update for linux-ti-omap4 USN-1679-1
File : nvt/gb_ubuntu_USN_1679_1.nasl
2012-12-18 Name : Fedora Update for kernel FEDORA-2012-20240
File : nvt/gb_fedora_2012_20240_kernel_fc16.nasl
2012-12-14 Name : Ubuntu Update for linux-ec2 USN-1664-1
File : nvt/gb_ubuntu_USN_1664_1.nasl
2012-12-11 Name : Ubuntu Update for linux USN-1660-1
File : nvt/gb_ubuntu_USN_1660_1.nasl
2012-12-11 Name : Ubuntu Update for linux USN-1661-1
File : nvt/gb_ubuntu_USN_1661_1.nasl
2012-12-06 Name : CentOS Update for kernel CESA-2012:1540 centos5
File : nvt/gb_CESA-2012_1540_kernel_centos5.nasl
2012-12-06 Name : RedHat Update for kernel RHSA-2012:1540-01
File : nvt/gb_RHSA-2012_1540-01_kernel.nasl
2012-12-06 Name : Ubuntu Update for linux-ec2 USN-1653-1
File : nvt/gb_ubuntu_USN_1653_1.nasl
2012-12-04 Name : Fedora Update for kernel FEDORA-2012-19337
File : nvt/gb_fedora_2012_19337_kernel_fc17.nasl
2012-12-04 Name : Ubuntu Update for linux USN-1644-1
File : nvt/gb_ubuntu_USN_1644_1.nasl
2012-12-04 Name : Ubuntu Update for linux-ti-omap4 USN-1645-1
File : nvt/gb_ubuntu_USN_1645_1.nasl
2012-12-04 Name : Ubuntu Update for linux USN-1646-1
File : nvt/gb_ubuntu_USN_1646_1.nasl
2012-12-04 Name : Ubuntu Update for linux-ti-omap4 USN-1647-1
File : nvt/gb_ubuntu_USN_1647_1.nasl
2012-12-04 Name : Ubuntu Update for linux USN-1648-1
File : nvt/gb_ubuntu_USN_1648_1.nasl

Information Assurance Vulnerability Management (IAVM)

id Description
2015-A-0150 Multiple Security Vulnerabilities in Juniper Networks CTPView
Severity: Category I - VMSKEY: V0061073
2014-B-0145 HP Operations Manager Remote Code Execution Vulnerabilities
Severity: Category I - VMSKEY: V0056563
2012-A-0153 Multiple Vulnerabilities in VMware ESX 4.0 and ESXi 4.0
Severity: Category I - VMSKEY: V0033884
2012-A-0148 Multiple Vulnerabilities in VMware ESXi 4.1 and ESX 4.1
Severity: Category I - VMSKEY: V0033794
2012-A-0136 Multiple Vulnerabilities in Juniper Network Management Products
Severity: Category I - VMSKEY: V0033662
2012-A-0073 Multiple Vulnerabilities in VMware ESXi 4.1 and ESX 4.1
Severity: Category I - VMSKEY: V0032171
2012-A-0056 Multiple Vulnerabilities in VMWare ESX 4.0 and ESXi 4.0
Severity: Category I - VMSKEY: V0031979
2012-A-0020 Multiple Vulnerabilities in VMware ESX 4.1 and ESXi 4.1
Severity: Category I - VMSKEY: V0031252
2011-A-0147 Multiple Vulnerabilities in VMware ESX and ESXi
Severity: Category I - VMSKEY: V0030545
2011-A-0075 Multiple Vulnerabilities in VMware Products
Severity: Category I - VMSKEY: V0028311
2011-A-0066 Multiple Vulnerabilities in VMware Products
Severity: Category I - VMSKEY: V0027158
2010-B-0085 Linux Kernel Privilege Escalation Vulnerability
Severity: Category I - VMSKEY: V0025410
2010-A-0037 Multiple Vulnerabilities in Linux Kernel
Severity: Category I - VMSKEY: V0022704
2010-A-0015 Multiple Vulnerabilities in Red Hat Linux Kernel
Severity: Category I - VMSKEY: V0022631
2010-A-0001 Multiple Vulnerabilities in Linux Kernel
Severity: Category I - VMSKEY: V0022180
2009-A-0105 Multiple Vulnerabilities in VMware Products
Severity: Category I - VMSKEY: V0021867
2009-T-0024 Multiple Vulnerabilities in Linux Kernel
Severity: Category I - VMSKEY: V0018983

Snort® IPS/IDS

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
Date Description
2014-01-10 record route rr denial of service attempt
RuleID : 8730 - Type : PROTOCOL-ICMP - Revision : 6
2014-01-10 IPv6 packets encapsulated in IPv4
RuleID : 8446 - Type : POLICY-OTHER - Revision : 8
2014-01-10 kernel SCTP chunkless packet denial of service attempt
RuleID : 7021 - Type : OS-LINUX - Revision : 9
2020-11-19 Linux kernel af_packet tpacket_rcv integer overflow attempt
RuleID : 56052 - Type : OS-LINUX - Revision : 1
2020-11-19 Linux kernel af_packet tpacket_rcv integer overflow attempt
RuleID : 56051 - Type : OS-LINUX - Revision : 1
2014-01-10 root directory
RuleID : 520-community - Type : PROTOCOL-TFTP - Revision : 13
2014-01-10 root directory
RuleID : 520 - Type : PROTOCOL-TFTP - Revision : 13
2014-01-10 parent directory
RuleID : 519-community - Type : PROTOCOL-TFTP - Revision : 15
2014-01-10 parent directory
RuleID : 519 - Type : PROTOCOL-TFTP - Revision : 15
2014-01-10 Put
RuleID : 518-community - Type : PROTOCOL-TFTP - Revision : 16
2014-01-10 Put
RuleID : 518 - Type : PROTOCOL-TFTP - Revision : 16
2019-09-26 Google Android Kernel local denial of service attempt
RuleID : 51291 - Type : OS-MOBILE - Revision : 1
2019-09-26 Google Android Kernel local denial of service attempt
RuleID : 51290 - Type : OS-MOBILE - Revision : 1
2019-01-15 (tcp)TCPdataoffsetislessthan5
RuleID : 46 - Type : - Revision : 2
2014-01-10 (icmp4)LinuxICMPheaderDOSattempt
RuleID : 452 - Type : - Revision : 2
2017-11-21 Linux kernel nfsd nfsd4_layout_verify out of bounds read attempt
RuleID : 44638 - Type : PROTOCOL-RPC - Revision : 1
2017-11-21 Linux kernel nfsd nfsd4_layout_verify out of bounds read attempt
RuleID : 44637 - Type : PROTOCOL-RPC - Revision : 1
2017-10-10 Linux kernel sctp_rcv_ootb invalid chunk length DoS attempt
RuleID : 44309 - Type : OS-LINUX - Revision : 1
2017-10-10 Linux kernel sctp_rcv_ootb invalid chunk length DoS attempt
RuleID : 44308 - Type : OS-LINUX - Revision : 1
2017-08-24 Linux kernel SCTP invalid chunk length denial of service attempt
RuleID : 43692 - Type : OS-LINUX - Revision : 1
2017-07-18 Linux kernel NFSv3 malformed WRITE arbitrary memory read attempt
RuleID : 43189 - Type : PROTOCOL-RPC - Revision : 2
2017-07-18 Linux kernel NFSv2 malformed WRITE arbitrary memory read attempt
RuleID : 43188 - Type : PROTOCOL-RPC - Revision : 2
2017-05-04 Foscam IP Camera command injection attempt
RuleID : 42434 - Type : SERVER-WEBAPP - Revision : 7
2017-05-04 Foscam IP Camera command injection attempt
RuleID : 42433 - Type : SERVER-WEBAPP - Revision : 7
2017-05-04 Foscam IP Camera command injection attempt
RuleID : 42432 - Type : SERVER-WEBAPP - Revision : 8

Nessus® Vulnerability Scanner

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
id Description
2019-01-17 Name: The remote Fedora host is missing one or more security updates.
File: fedora_2019-509c133845.nasl - Type: ACT_GATHER_INFO
2019-01-17 Name: The remote Fedora host is missing one or more security updates.
File: fedora_2019-f812c9fb22.nasl - Type: ACT_GATHER_INFO
2019-01-15 Name: The remote Fedora host is missing one or more security updates.
File: fedora_2019-337484d88b.nasl - Type: ACT_GATHER_INFO
2019-01-15 Name: The remote Fedora host is missing one or more security updates.
File: fedora_2019-b0f7a7b74b.nasl - Type: ACT_GATHER_INFO
2019-01-14 Name: The remote Virtuozzo host is missing multiple security updates.
File: Virtuozzo_VZA-2016-104.nasl - Type: ACT_GATHER_INFO
2019-01-14 Name: The remote Amazon Linux AMI host is missing a security update.
File: ala_ALAS-2019-1145.nasl - Type: ACT_GATHER_INFO
2019-01-11 Name: The remote Virtuozzo host is missing a security update.
File: Virtuozzo_VZA-2018-072.nasl - Type: ACT_GATHER_INFO
2019-01-11 Name: The remote Virtuozzo host is missing multiple security updates.
File: Virtuozzo_VZA-2018-075.nasl - Type: ACT_GATHER_INFO
2019-01-11 Name: The remote Virtuozzo host is missing a security update.
File: Virtuozzo_VZA-2018-077.nasl - Type: ACT_GATHER_INFO
2019-01-11 Name: The remote Virtuozzo host is missing a security update.
File: Virtuozzo_VZA-2018-085.nasl - Type: ACT_GATHER_INFO
2019-01-11 Name: The remote Virtuozzo host is missing a security update.
File: Virtuozzo_VZA-2018-089.nasl - Type: ACT_GATHER_INFO
2019-01-10 Name: The remote Amazon Linux 2 host is missing a security update.
File: al2_ALAS-2019-1145.nasl - Type: ACT_GATHER_INFO
2019-01-10 Name: The remote device is affected by multiple vulnerabilities.
File: juniper_space_jsa10917_183R1.nasl - Type: ACT_GATHER_INFO
2019-01-10 Name: The remote device is affected by multiple vulnerabilities.
File: juniper_space_jsa10917_184R1.nasl - Type: ACT_GATHER_INFO
2019-01-03 Name: The remote Fedora host is missing one or more security updates.
File: fedora_2018-0edb45d9db.nasl - Type: ACT_GATHER_INFO
2019-01-03 Name: The remote Fedora host is missing one or more security updates.
File: fedora_2018-1621b2204a.nasl - Type: ACT_GATHER_INFO
2019-01-03 Name: The remote Fedora host is missing one or more security updates.
File: fedora_2018-2645eb8dab.nasl - Type: ACT_GATHER_INFO
2019-01-03 Name: The remote Fedora host is missing one or more security updates.
File: fedora_2018-272cf2f9f4.nasl - Type: ACT_GATHER_INFO
2019-01-03 Name: The remote Fedora host is missing one or more security updates.
File: fedora_2018-2c6bd93875.nasl - Type: ACT_GATHER_INFO
2019-01-03 Name: The remote Fedora host is missing one or more security updates.
File: fedora_2018-3857a8b41a.nasl - Type: ACT_GATHER_INFO
2019-01-03 Name: The remote Fedora host is missing a security update.
File: fedora_2018-50075276e8.nasl - Type: ACT_GATHER_INFO
2019-01-03 Name: The remote Fedora host is missing a security update.
File: fedora_2018-537c8312fc.nasl - Type: ACT_GATHER_INFO
2019-01-03 Name: The remote Fedora host is missing one or more security updates.
File: fedora_2018-5453baa4af.nasl - Type: ACT_GATHER_INFO
2019-01-03 Name: The remote Fedora host is missing one or more security updates.
File: fedora_2018-5904d0794d.nasl - Type: ACT_GATHER_INFO
2019-01-03 Name: The remote Fedora host is missing a security update.
File: fedora_2018-5926c0ffc8.nasl - Type: ACT_GATHER_INFO