Search CVE reports

31 – 40 of 749 results

Detailed view

Sort by:

CVE-2016-2085

Low priority

Some fixes available 8 of 30

The evm_verify_hmac function in security/integrity/evm/evm_main.c in the Linux kernel before 4.5 does not properly copy data, which makes it easier for local users to forge MAC values via a timing side-channel attack.

28 affected packages

linux, linux-armadaxp, linux-aws, linux-flo, linux-fsl-imx51...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
linux	—	—	—	—	Not affected
linux-armadaxp	—	—	—	—	Not in release
linux-aws	—	—	—	—	Not affected
linux-flo	—	—	—	—	Ignored
linux-fsl-imx51	—	—	—	—	Not in release
linux-gke	—	—	—	—	Not affected
linux-goldfish	—	—	—	—	Ignored
linux-grouper	—	—	—	—	Not in release
linux-hwe	—	—	—	—	Not affected
linux-hwe-edge	—	—	—	—	Not affected
linux-linaro-omap	—	—	—	—	Not in release
linux-linaro-shared	—	—	—	—	Not in release
linux-linaro-vexpress	—	—	—	—	Not in release
linux-lts-quantal	—	—	—	—	Not in release
linux-lts-raring	—	—	—	—	Not in release
linux-lts-saucy	—	—	—	—	Not in release
linux-lts-trusty	—	—	—	—	Not in release
linux-lts-utopic	—	—	—	—	Not in release
linux-lts-vivid	—	—	—	—	Not in release
linux-lts-wily	—	—	—	—	Not in release
linux-lts-xenial	—	—	—	—	Not in release
linux-maguro	—	—	—	—	Not in release
linux-mako	—	—	—	—	Ignored
linux-manta	—	—	—	—	Not in release
linux-qcm-msm	—	—	—	—	Not in release
linux-raspi2	—	—	—	—	Not affected
linux-snapdragon	—	—	—	—	Not affected
linux-ti-omap4	—	—	—	—	Not in release

CVE-2016-0723

Medium priority

Some fixes available 10 of 33

Race condition in the tty_ioctl function in drivers/tty/tty_io.c in the Linux kernel through 4.4.1 allows local users to obtain sensitive information from kernel memory or cause a denial of service (use-after-free and system...

28 affected packages

linux, linux-armadaxp, linux-aws, linux-flo, linux-fsl-imx51...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
linux	—	—	—	—	Not affected
linux-armadaxp	—	—	—	—	Not in release
linux-aws	—	—	—	—	Not affected
linux-flo	—	—	—	—	Ignored
linux-fsl-imx51	—	—	—	—	Not in release
linux-gke	—	—	—	—	Not affected
linux-goldfish	—	—	—	—	Ignored
linux-grouper	—	—	—	—	Not in release
linux-hwe	—	—	—	—	Not affected
linux-hwe-edge	—	—	—	—	Not affected
linux-linaro-omap	—	—	—	—	Not in release
linux-linaro-shared	—	—	—	—	Not in release
linux-linaro-vexpress	—	—	—	—	Not in release
linux-lts-quantal	—	—	—	—	Not in release
linux-lts-raring	—	—	—	—	Not in release
linux-lts-saucy	—	—	—	—	Not in release
linux-lts-trusty	—	—	—	—	Not in release
linux-lts-utopic	—	—	—	—	Not in release
linux-lts-vivid	—	—	—	—	Not in release
linux-lts-wily	—	—	—	—	Not in release
linux-lts-xenial	—	—	—	—	Not in release
linux-maguro	—	—	—	—	Not in release
linux-mako	—	—	—	—	Ignored
linux-manta	—	—	—	—	Not in release
linux-qcm-msm	—	—	—	—	Not in release
linux-raspi2	—	—	—	—	Not affected
linux-snapdragon	—	—	—	—	Not affected
linux-ti-omap4	—	—	—	—	Not in release

CVE-2015-8767

Medium priority

Some fixes available 10 of 33

net/sctp/sm_sideeffect.c in the Linux kernel before 4.3 does not properly manage the relationship between a lock and a socket, which allows local users to cause a denial of service (deadlock) via a crafted sctp_accept call.

28 affected packages

linux, linux-armadaxp, linux-aws, linux-flo, linux-fsl-imx51...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
linux	—	—	—	—	Not affected
linux-armadaxp	—	—	—	—	Not in release
linux-aws	—	—	—	—	Not affected
linux-flo	—	—	—	—	Ignored
linux-fsl-imx51	—	—	—	—	Not in release
linux-gke	—	—	—	—	Not affected
linux-goldfish	—	—	—	—	Ignored
linux-grouper	—	—	—	—	Not in release
linux-hwe	—	—	—	—	Not affected
linux-hwe-edge	—	—	—	—	Not affected
linux-linaro-omap	—	—	—	—	Not in release
linux-linaro-shared	—	—	—	—	Not in release
linux-linaro-vexpress	—	—	—	—	Not in release
linux-lts-quantal	—	—	—	—	Not in release
linux-lts-raring	—	—	—	—	Not in release
linux-lts-saucy	—	—	—	—	Not in release
linux-lts-trusty	—	—	—	—	Not in release
linux-lts-utopic	—	—	—	—	Not in release
linux-lts-vivid	—	—	—	—	Not in release
linux-lts-wily	—	—	—	—	Not in release
linux-lts-xenial	—	—	—	—	Not in release
linux-maguro	—	—	—	—	Not in release
linux-mako	—	—	—	—	Ignored
linux-manta	—	—	—	—	Not in release
linux-qcm-msm	—	—	—	—	Not in release
linux-raspi2	—	—	—	—	Not affected
linux-snapdragon	—	—	—	—	Not affected
linux-ti-omap4	—	—	—	—	Not in release

CVE-2015-7566

Low priority

Some fixes available 10 of 33

The clie_5_attach function in drivers/usb/serial/visor.c in the Linux kernel through 4.4.1 allows physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified...

28 affected packages

linux, linux-armadaxp, linux-aws, linux-flo, linux-fsl-imx51...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
linux	—	—	—	—	Not affected
linux-armadaxp	—	—	—	—	Not in release
linux-aws	—	—	—	—	Not affected
linux-flo	—	—	—	—	Ignored
linux-fsl-imx51	—	—	—	—	Not in release
linux-gke	—	—	—	—	Not affected
linux-goldfish	—	—	—	—	Ignored
linux-grouper	—	—	—	—	Not in release
linux-hwe	—	—	—	—	Not affected
linux-hwe-edge	—	—	—	—	Not affected
linux-linaro-omap	—	—	—	—	Not in release
linux-linaro-shared	—	—	—	—	Not in release
linux-linaro-vexpress	—	—	—	—	Not in release
linux-lts-quantal	—	—	—	—	Not in release
linux-lts-raring	—	—	—	—	Not in release
linux-lts-saucy	—	—	—	—	Not in release
linux-lts-trusty	—	—	—	—	Not in release
linux-lts-utopic	—	—	—	—	Not in release
linux-lts-vivid	—	—	—	—	Not in release
linux-lts-wily	—	—	—	—	Not in release
linux-lts-xenial	—	—	—	—	Not in release
linux-maguro	—	—	—	—	Not in release
linux-mako	—	—	—	—	Ignored
linux-manta	—	—	—	—	Not in release
linux-qcm-msm	—	—	—	—	Not in release
linux-raspi2	—	—	—	—	Not affected
linux-snapdragon	—	—	—	—	Not affected
linux-ti-omap4	—	—	—	—	Not in release

CVE-2013-4312

Low priority

Some fixes available 10 of 33

The Linux kernel before 4.4.1 allows local users to bypass file-descriptor limits and cause a denial of service (memory consumption) by sending each descriptor over a UNIX socket before closing it, related to net/unix/af_unix.c...

28 affected packages

linux, linux-armadaxp, linux-aws, linux-flo, linux-fsl-imx51...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
linux	—	—	—	—	Not affected
linux-armadaxp	—	—	—	—	Not in release
linux-aws	—	—	—	—	Not affected
linux-flo	—	—	—	—	Ignored
linux-fsl-imx51	—	—	—	—	Not in release
linux-gke	—	—	—	—	Not affected
linux-goldfish	—	—	—	—	Ignored
linux-grouper	—	—	—	—	Not in release
linux-hwe	—	—	—	—	Not affected
linux-hwe-edge	—	—	—	—	Not affected
linux-linaro-omap	—	—	—	—	Not in release
linux-linaro-shared	—	—	—	—	Not in release
linux-linaro-vexpress	—	—	—	—	Not in release
linux-lts-quantal	—	—	—	—	Not in release
linux-lts-raring	—	—	—	—	Not in release
linux-lts-saucy	—	—	—	—	Not in release
linux-lts-trusty	—	—	—	—	Not in release
linux-lts-utopic	—	—	—	—	Not in release
linux-lts-vivid	—	—	—	—	Not in release
linux-lts-wily	—	—	—	—	Not in release
linux-lts-xenial	—	—	—	—	Not in release
linux-maguro	—	—	—	—	Not in release
linux-mako	—	—	—	—	Ignored
linux-manta	—	—	—	—	Not in release
linux-qcm-msm	—	—	—	—	Not in release
linux-raspi2	—	—	—	—	Not affected
linux-snapdragon	—	—	—	—	Not affected
linux-ti-omap4	—	—	—	—	Not in release

CVE-2016-2069

Medium priority

Some fixes available 10 of 33

Race condition in arch/x86/mm/tlb.c in the Linux kernel before 4.4.1 allows local users to gain privileges by triggering access to a paging structure by a different CPU.

29 affected packages

linux, linux-2.6, linux-armadaxp, linux-aws, linux-flo...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
linux	—	—	—	—	Not affected
linux-2.6	—	—	—	—	Not in release
linux-armadaxp	—	—	—	—	Not in release
linux-aws	—	—	—	—	Not affected
linux-flo	—	—	—	—	Ignored
linux-fsl-imx51	—	—	—	—	Not in release
linux-gke	—	—	—	—	Not affected
linux-goldfish	—	—	—	—	Ignored
linux-grouper	—	—	—	—	Not in release
linux-hwe	—	—	—	—	Not affected
linux-hwe-edge	—	—	—	—	Not affected
linux-linaro-omap	—	—	—	—	Not in release
linux-linaro-shared	—	—	—	—	Not in release
linux-linaro-vexpress	—	—	—	—	Not in release
linux-lts-quantal	—	—	—	—	Not in release
linux-lts-raring	—	—	—	—	Not in release
linux-lts-saucy	—	—	—	—	Not in release
linux-lts-trusty	—	—	—	—	Not in release
linux-lts-utopic	—	—	—	—	Not in release
linux-lts-vivid	—	—	—	—	Not in release
linux-lts-wily	—	—	—	—	Not in release
linux-lts-xenial	—	—	—	—	Not in release
linux-maguro	—	—	—	—	Not in release
linux-mako	—	—	—	—	Ignored
linux-manta	—	—	—	—	Not in release
linux-qcm-msm	—	—	—	—	Not in release
linux-raspi2	—	—	—	—	Not affected
linux-snapdragon	—	—	—	—	Not affected
linux-ti-omap4	—	—	—	—	Not in release

CVE-2016-0728

High priority

Some fixes available 8 of 15

The join_session_keyring function in security/keys/process_keys.c in the Linux kernel before 4.4.1 mishandles object references in a certain error case, which allows local users to gain privileges or cause a denial of service...

28 affected packages

linux, linux-armadaxp, linux-aws, linux-flo, linux-fsl-imx51...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
linux	—	—	—	—	Not affected
linux-armadaxp	—	—	—	—	Not in release
linux-aws	—	—	—	—	Not affected
linux-flo	—	—	—	—	Not affected
linux-fsl-imx51	—	—	—	—	Not in release
linux-gke	—	—	—	—	Not affected
linux-goldfish	—	—	—	—	Not affected
linux-grouper	—	—	—	—	Not in release
linux-hwe	—	—	—	—	Not affected
linux-hwe-edge	—	—	—	—	Not affected
linux-linaro-omap	—	—	—	—	Not in release
linux-linaro-shared	—	—	—	—	Not in release
linux-linaro-vexpress	—	—	—	—	Not in release
linux-lts-quantal	—	—	—	—	Not in release
linux-lts-raring	—	—	—	—	Not in release
linux-lts-saucy	—	—	—	—	Not in release
linux-lts-trusty	—	—	—	—	Not in release
linux-lts-utopic	—	—	—	—	Not in release
linux-lts-vivid	—	—	—	—	Not in release
linux-lts-wily	—	—	—	—	Not in release
linux-lts-xenial	—	—	—	—	Not in release
linux-maguro	—	—	—	—	Not in release
linux-mako	—	—	—	—	Not affected
linux-manta	—	—	—	—	Not in release
linux-qcm-msm	—	—	—	—	Not in release
linux-raspi2	—	—	—	—	Not affected
linux-snapdragon	—	—	—	—	Not affected
linux-ti-omap4	—	—	—	—	Not in release

CVE-2015-6646

Medium priority

Ignored

The System V IPC implementation in the kernel in Android before 6.0 2016-01-01 allows attackers to cause a denial of service (global kernel resource consumption) by leveraging improper interaction between IPC resource allocation...

34 affected packages

android, linux, linux-armadaxp, linux-aws, linux-azure...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
android	—	—	—	Not in release	Ignored
linux	—	—	—	Not affected	Not affected
linux-armadaxp	—	—	—	Not in release	Not in release
linux-aws	—	—	—	Not affected	Not affected
linux-azure	—	—	—	Not affected	Not affected
linux-euclid	—	—	—	Not in release	Not affected
linux-flo	—	—	—	Not in release	Not affected
linux-fsl-imx51	—	—	—	Not in release	Not in release
linux-gcp	—	—	—	Not affected	Not affected
linux-gke	—	—	—	Not in release	Not affected
linux-goldfish	—	—	—	Not in release	Not affected
linux-grouper	—	—	—	Not in release	Not in release
linux-hwe	—	—	—	Not affected	Not affected
linux-hwe-edge	—	—	—	Not affected	Not affected
linux-kvm	—	—	—	Not affected	Not affected
linux-linaro-omap	—	—	—	Not in release	Not in release
linux-linaro-shared	—	—	—	Not in release	Not in release
linux-linaro-vexpress	—	—	—	Not in release	Not in release
linux-lts-quantal	—	—	—	Not in release	Not in release
linux-lts-raring	—	—	—	Not in release	Not in release
linux-lts-saucy	—	—	—	Not in release	Not in release
linux-lts-trusty	—	—	—	Not in release	Not in release
linux-lts-utopic	—	—	—	Not in release	Not in release
linux-lts-vivid	—	—	—	Not in release	Not in release
linux-lts-wily	—	—	—	Not in release	Not in release
linux-lts-xenial	—	—	—	Not in release	Not in release
linux-maguro	—	—	—	Not in release	Not in release
linux-mako	—	—	—	Not in release	Not affected
linux-manta	—	—	—	Not in release	Not in release
linux-oem	—	—	—	Not affected	Not affected
linux-qcm-msm	—	—	—	Not in release	Not in release
linux-raspi2	—	—	—	Not affected	Not affected
linux-snapdragon	—	—	—	Not affected	Not affected
linux-ti-omap4	—	—	—	Not in release	Not in release

CVE-2015-6642

Medium priority

Ignored

The kernel in Android before 5.1.1 LMY49F and 6.0 before 2016-01-01 allows attackers to obtain sensitive information, and consequently bypass an unspecified protection mechanism, via unknown vectors, as demonstrated by obtaining...

23 affected packages

linux, linux-armadaxp, linux-flo, linux-fsl-imx51, linux-goldfish...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
linux	—	—	—	—	—
linux-armadaxp	—	—	—	—	—
linux-flo	—	—	—	—	—
linux-fsl-imx51	—	—	—	—	—
linux-goldfish	—	—	—	—	—
linux-grouper	—	—	—	—	—
linux-linaro-omap	—	—	—	—	—
linux-linaro-shared	—	—	—	—	—
linux-linaro-vexpress	—	—	—	—	—
linux-lts-quantal	—	—	—	—	—
linux-lts-raring	—	—	—	—	—
linux-lts-saucy	—	—	—	—	—
linux-lts-trusty	—	—	—	—	—
linux-lts-utopic	—	—	—	—	—
linux-lts-vivid	—	—	—	—	—
linux-lts-wily	—	—	—	—	—
linux-lts-xenial	—	—	—	—	—
linux-maguro	—	—	—	—	—
linux-mako	—	—	—	—	—
linux-manta	—	—	—	—	—
linux-qcm-msm	—	—	—	—	—
linux-raspi2	—	—	—	—	—
linux-ti-omap4	—	—	—	—	—

CVE-2015-6640

Medium priority

Ignored

The prctl_set_vma_anon_name function in kernel/sys.c in Android before 5.1.1 LMY49F and 6.0 before 2016-01-01 does not ensure that only one vma is accessed in a certain update action, which allows attackers to gain privileges or...

34 affected packages

android, linux, linux-armadaxp, linux-aws, linux-azure...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
android	—	—	—	Not in release	Ignored
linux	—	—	—	Not affected	Not affected
linux-armadaxp	—	—	—	Not in release	Not in release
linux-aws	—	—	—	Not affected	Not affected
linux-azure	—	—	—	Not affected	Not affected
linux-euclid	—	—	—	Not in release	Not affected
linux-flo	—	—	—	Not in release	Not affected
linux-fsl-imx51	—	—	—	Not in release	Not in release
linux-gcp	—	—	—	Not affected	Not affected
linux-gke	—	—	—	Not in release	Not affected
linux-goldfish	—	—	—	Not in release	Not affected
linux-grouper	—	—	—	Not in release	Not in release
linux-hwe	—	—	—	Not affected	Not affected
linux-hwe-edge	—	—	—	Not affected	Not affected
linux-kvm	—	—	—	Not affected	Not affected
linux-linaro-omap	—	—	—	Not in release	Not in release
linux-linaro-shared	—	—	—	Not in release	Not in release
linux-linaro-vexpress	—	—	—	Not in release	Not in release
linux-lts-quantal	—	—	—	Not in release	Not in release
linux-lts-raring	—	—	—	Not in release	Not in release
linux-lts-saucy	—	—	—	Not in release	Not in release
linux-lts-trusty	—	—	—	Not in release	Not in release
linux-lts-utopic	—	—	—	Not in release	Not in release
linux-lts-vivid	—	—	—	Not in release	Not in release
linux-lts-wily	—	—	—	Not in release	Not in release
linux-lts-xenial	—	—	—	Not in release	Not in release
linux-maguro	—	—	—	Not in release	Not in release
linux-mako	—	—	—	Not in release	Not affected
linux-manta	—	—	—	Not in release	Not in release
linux-oem	—	—	—	Not affected	Not affected
linux-qcm-msm	—	—	—	Not in release	Not in release
linux-raspi2	—	—	—	Not affected	Not affected
linux-snapdragon	—	—	—	Not affected	Not affected
linux-ti-omap4	—	—	—	Not in release	Not in release

Export to JSON

Results by page: