Search CVE reports
61 – 70 of 220 results
CVE-2007-1353
Unknown priorityThe setsockopt function in the L2CAP and HCI Bluetooth support in the Linux kernel before 2.4.34.3 allows context-dependent attackers to read kernel memory and obtain sensitive information via unspecified vectors involving the...
3 affected packages
linux-source-2.6.15, linux-source-2.6.17, linux-source-2.6.20
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux-source-2.6.15 | — | — | — | — | — |
| linux-source-2.6.17 | — | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — | — |
CVE-2007-2172
Unknown priorityA typo in Linux kernel 2.6 before 2.6.21-rc6 and 2.4 before 2.4.35 causes RTA_MAX to be used as an array size instead of RTN_MAX, which leads to an "out of bound access" by the (1) dn_fib_props (dn_fib.c, DECNet) and (2) fib_props...
3 affected packages
linux-source-2.6.15, linux-source-2.6.17, linux-source-2.6.20
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux-source-2.6.15 | — | — | — | — | — |
| linux-source-2.6.17 | — | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — | — |
CVE-2007-1357
Unknown priorityThe atalk_sum_skb function in AppleTalk for Linux kernel 2.6.x before 2.6.21, and possibly 2.4.x, allows remote attackers to cause a denial of service (crash) via an AppleTalk frame that is shorter than the specified length, which...
3 affected packages
linux-source-2.6.15, linux-source-2.6.17, linux-source-2.6.20
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux-source-2.6.15 | — | — | — | — | — |
| linux-source-2.6.17 | — | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — | — |
CVE-2007-1734
Medium priorityThe DCCP support in the do_dccp_getsockopt function in net/dccp/proto.c in Linux kernel 2.6.20 and later does not verify the upper bounds of the optlen value, which allows local users running on certain architectures to read...
5 affected packages
linux, linux-source-2.6.15, linux-source-2.6.17, linux-source-2.6.20, linux-source-2.6.22
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux | — | — | — | — | — |
| linux-source-2.6.15 | — | — | — | — | — |
| linux-source-2.6.17 | — | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — | — |
| linux-source-2.6.22 | — | — | — | — | — |
CVE-2007-1592
Unknown prioritynet/ipv6/tcp_ipv6.c in Linux kernel 2.6.x up to 2.6.21-rc3 inadvertently copies the ipv6_fl_socklist from a listening TCP socket to child sockets, which allows local users to cause a denial of service (OOPS) or double free by...
3 affected packages
linux-source-2.6.15, linux-source-2.6.17, linux-source-2.6.20
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux-source-2.6.15 | — | — | — | — | — |
| linux-source-2.6.17 | — | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — | — |
CVE-2007-1497
Unknown prioritynf_conntrack in netfilter in the Linux kernel before 2.6.20.3 does not set nfctinfo during reassembly of fragmented packets, which leaves the default value as IP_CT_ESTABLISHED and might allow remote attackers to bypass certain...
3 affected packages
linux-source-2.6.15, linux-source-2.6.17, linux-source-2.6.20
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux-source-2.6.15 | — | — | — | — | — |
| linux-source-2.6.17 | — | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — | — |
CVE-2007-1496
Unknown prioritynfnetlink_log in netfilter in the Linux kernel before 2.6.20.3 allows attackers to cause a denial of service (crash) via unspecified vectors involving the (1) nfulnl_recv_config function, (2) using "multiple packets per netlink...
3 affected packages
linux-source-2.6.15, linux-source-2.6.17, linux-source-2.6.20
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux-source-2.6.15 | — | — | — | — | — |
| linux-source-2.6.17 | — | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — | — |
CVE-2007-1000
Unknown priorityThe ipv6_getsockopt_sticky function in net/ipv6/ipv6_sockglue.c in the Linux kernel before 2.6.20.2 allows local users to read arbitrary kernel memory via certain getsockopt calls that trigger a NULL dereference.
3 affected packages
linux-source-2.6.15, linux-source-2.6.17, linux-source-2.6.20
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux-source-2.6.15 | — | — | — | — | — |
| linux-source-2.6.17 | — | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — | — |
CVE-2007-1388
Unknown priorityThe do_ipv6_setsockopt function in net/ipv6/ipv6_sockglue.c in Linux kernel before 2.6.20, and possibly other versions, allows local users to cause a denial of service (oops) by calling setsockopt with the IPV6_RTHDR option name...
3 affected packages
linux-source-2.6.15, linux-source-2.6.17, linux-source-2.6.20
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux-source-2.6.15 | — | — | — | — | — |
| linux-source-2.6.17 | — | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — | — |
CVE-2007-0005
Unknown priorityMultiple buffer overflows in the (1) read and (2) write handlers in the Omnikey CardMan 4040 driver in the Linux kernel before 2.6.21-rc3 allow local users to gain privileges.
3 affected packages
linux-source-2.6.15, linux-source-2.6.17, linux-source-2.6.20
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| linux-source-2.6.15 | — | — | — | — | — |
| linux-source-2.6.17 | — | — | — | — | — |
| linux-source-2.6.20 | — | — | — | — | — |