CVE-1999-0894
Red Hat Linux screen program does not use Unix98 ptys, allowing local users to write to other termin
Red Hat Linux screen program does not use Unix98 ptys, allowing local users to write to other termin
get_it program in Corel Linux Update allows local users to gain root access by specifying an alterna
modprobe in the modutils 2.3.x package on Linux systems allows a local user to execute arbitrary com
in.identd ident server in SuSE Linux 6.x and 7.0 allows remote attackers to cause a denial of servic
restore 0.4b15 and earlier in Red Hat Linux 6.2 trusts the pathname specified by the RSH environment
elvis-tiny before 1.4-10 in Debian GNU/Linux, and possibly other Linux operating systems, allows loc
Buffer overflow in socks5 server on Linux allows attackers to execute arbitrary commands via a long
Buffer overflow in pam_localuser PAM module in Red Hat Linux 7.x and 6.x allows attackers to gain pr
The line printer daemon (lpd) in the lpr package in multiple Linux operating systems allows local us
The line printer daemon (lpd) in the lpr package in multiple Linux operating systems authenticates b
Real time clock (RTC) routines in Linux kernel 2.4.23 and earlier do not properly initialize their s
Multiple vulnerabilities in the samba filesystem (smbfs) in Linux kernel 2.4 and 2.6 allow remote sa
The smb_recv_trans2 function call in the samba filesystem (smbfs) in Linux kernel 2.4 and 2.6 does n
The scm_send function in the scm layer for Linux kernel 2.4.x up to 2.4.28, and 2.6.x up to 2.6.9, a
Direct Rendering Manager (DRM) driver in Linux kernel 2.6 does not properly check the DMA lock, whic
Race condition in Linux kernel 2.6 allows local users to read the environment variables of another p
A 'missing serialization' error in the unix_dgram_recvmsg function in Linux 2.4.27 and earlier, and
The load_elf_binary function in the binfmt_elf loader (binfmt_elf.c) in Linux kernel 2.4.x up to 2.4
The binfmt_elf loader (binfmt_elf.c) in Linux kernel 2.4.x up to 2.4.27, and 2.6.x up to 2.6.8, does
The binfmt_elf loader (binfmt_elf.c) in Linux kernel 2.4.x up to 2.4.27, and 2.6.x up to 2.6.8, may
The open_exec function in the execve functionality (exec.c) in Linux kernel 2.4.x up to 2.4.27, and
The binfmt functionality in the Linux kernel, when 'memory overcommit' is enabled, allows local user
Multiple vulnerabilities in the IGMP functionality for Linux kernel 2.4.22 to 2.4.28, and 2.6.x to 2
Multiple buffer overflows in the (1) sys32_ni_syscall and (2) sys32_vm86_warning functions in sys_ia
SUSE Linux before 9.1 and SUSE Linux Enterprise Server before 9 do not properly check commands sent
Race condition in SuSE Linux 8.1 through 9.2, when run on SMP systems that have more than 4GB of mem
The netlink_rcv_skb function in af_netlink.c in Linux kernel 2.6.14 and 2.6.15 allows local users to
The ebuild for pinentry before 0.7.2-r2 on Gentoo Linux sets setgid bits for pinentry programs, whic
dm-crypt in Linux kernel 2.6.15 and earlier does not clear a structure before it is freed, which lea
wan/sdla.c in Linux kernel 2.6.x before 2.6.11 and 2.4.x before 2.4.29 does not require the CAP_SYS_
rxvt-unicode before 6.3, on certain platforms that use openpty and non-Unix pty devices such as Linu
Unspecified versions of the Linux kernel allow local users to cause a denial of service (unrecoverab
Kaspersky Labs Antivirus Engine 6.0 for Windows and 5.5-10 for Linux before 20070102 enter an infini
ssh-signer in SSH Tectia Client and Server 5.x before 5.2.4, and 5.3.x before 5.3.6, on Unix and Lin
Buffer overflow in net/sctp/sm_statefuns.c in the Stream Control Transmission Protocol (sctp) implem
drivers/net/e1000/e1000_main.c in the e1000 driver in the Linux kernel 2.6.32.3 and earlier handles
drivers/net/r8169.c in the r8169 driver in the Linux kernel 2.6.32.3 and earlier does not properly c
drivers/net/e1000e/netdev.c in the e1000e driver in the Linux kernel 2.6.32.3 and earlier does not p
Heap-based buffer overflow in Sun Java System Web Server 7.0 Update 6 on Linux allows remote attacke
Unspecified vulnerability in Sun Java System Web Server 7.0 Update 6 on Linux allows remote attacker
drivers/platform/x86/thinkpad_acpi.c in the Linux kernel before 2.6.34 on ThinkPad devices, when the
Integer overflow in the rds_rdma_pages function in net/rds/rdma.c in the Linux kernel allows local u
The X.25 implementation in the Linux kernel before 2.6.36.2 does not properly parse facilities, whic
The ax25_getname function in net/ax25/af_ax25.c in the Linux kernel before 2.6.37-rc2 does not initi
net/packet/af_packet.c in the Linux kernel before 2.6.37-rc2 does not properly initialize certain st
The get_name function in net/tipc/socket.c in the Linux kernel before 2.6.37-rc2 does not initialize
The supportconfig script in supportutils in SUSE Linux Enterprise 11 SP1 and 10 SP3 does not 'disgui
Multiple integer overflows in the (1) pppol2tp_sendmsg function in net/l2tp/l2tp_ppp.c, and the (2)
Multiple integer overflows in fs/bio.c in the Linux kernel before 2.6.36.2 allow local users to caus
The blk_rq_map_user_iov function in block/blk-map.c in the Linux kernel before 2.6.36.2 allows local
Multiple integer underflows in the x25_parse_facilities function in net/x25/x25_facilities.c in the
Integer overflow in the rds_cmsg_rdma_args function (net/rds/rdma.c) in Linux kernel 2.6.35 allows l
The hci_uart_tty_open function in the HCI UART driver (drivers/bluetooth/hci_ldisc.c) in the Linux k
The do_block_io_op function in (1) drivers/xen/blkback/blkback.c and (2) drivers/xen/blktap/blktap.c
Race condition in the sctp_icmp_proto_unreachable function in net/sctp/input.c in Linux kernel 2.6.1
The blk_rq_map_user_iov function in block/blk-map.c in the Linux kernel before 2.6.37-rc7 allows loc
Stack-based buffer overflow in NetSupport Manager Agent for Linux 11.00, for Solaris 9.50, and for M
Snare for Linux before 1.7.0 has password disclosure because the rendered page contains the field Re
Snare for Linux before 1.7.0 has CSRF in the web interface.
base/pkit.py in HP Linux Imaging and Printing (HPLIP) through 3.13.11 allows local users to overwrit
The Linux kernel before 3.12.4 updates certain length values before ensuring that associated data st
The l2tp_ip_recvmsg function in net/l2tp/l2tp_ip.c in the Linux kernel before 3.12.4 updates a certa
The pn_recvmsg function in net/phonet/datagram.c in the Linux kernel before 3.12.4 updates a certain
The mISDN_sock_recvmsg function in drivers/isdn/mISDN/socket.c in the Linux kernel before 3.12.4 doe
The atalk_recvmsg function in net/appletalk/ddp.c in the Linux kernel before 3.12.4 updates a certai
The ipx_recvmsg function in net/ipx/af_ipx.c in the Linux kernel before 3.12.4 updates a certain len
The nr_recvmsg function in net/netrom/af_netrom.c in the Linux kernel before 3.12.4 updates a certai
The packet_recvmsg function in net/packet/af_packet.c in the Linux kernel before 3.12.4 updates a ce
The x25_recvmsg function in net/x25/af_x25.c in the Linux kernel before 3.12.4 updates a certain len
The dgram_recvmsg function in net/ieee802154/dgram.c in the Linux kernel before 3.12.4 updates a cer
Race condition in the libreswan.spec files for Red Hat Enterprise Linux (RHEL) and Fedora packages i
The batadv_frag_merge_packets function in net/batman-adv/fragmentation.c in the B.A.T.M.A.N. impleme
Race condition in the key_gc_unused_keys function in security/keys/gc.c in the Linux kernel through
The parse_rock_ridge_inode_internal function in fs/isofs/rock.c in the Linux kernel before 3.18.2 do
The vdso_addr function in arch/x86/vdso/vma.c in the Linux kernel through 3.18.2 does not properly c
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Li
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Li
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Li
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Li
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Li
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Li
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Li
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Li
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Li
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Li
A use-after-free vulnerability was found in network namespaces code affecting the Linux kernel befor
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Li
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Li
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Li
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Li
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Li
The tcpmss_mangle_packet function in net/netfilter/xt_TCPMSS.c in the Linux kernel before 4.11, and
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Li
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Li
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Li
Windows Subsystem for Linux in Windows 10 version 1703, Windows 10 version 1709, and Windows Server,
A use-after-free issue was found in the way the Linux kernel's KVM hypervisor processed posted inter
A flaw was found in the Linux kernel that allows the userspace to call memcpy_fromiovecend() and sim
The Code42 app before 6.8.4, as used in Code42 for Enterprise, on Linux installs with overly permiss
In the Linux kernel through 3.2, the rds_message_alloc_sgs() function does not validate a value that
In the Linux kernel through 4.14.13, the rds_cmsg_atomic function in net/rds/rdma.c mishandles cases
In the Linux kernel through 4.14.13, drivers/block/loop.c mishandles lo_release serialization, which
An out-of-bounds memory write issue was found in the Linux Kernel, version 3.13 through 5.4, in the
There is a DoS vulnerability in Pillow before 6.2.2 caused by FpxImagePlugin.py calling the range fu
A mutation cross-site scripting (XSS) issue in Typora through 0.9.9.31.2 on macOS and through 0.9.81
An issue was discovered in can_can_gw_rcv in net/can/gw.c in the Linux kernel through 4.19.13. The C
The mincore() implementation in mm/mincore.c in the Linux kernel through 4.19.13 allowed local attac
bgpd in FRRouting FRR (aka Free Range Routing) 2.x and 3.x before 3.0.4, 4.x before 4.0.1, 5.x befor
Vela is a Pipeline Automation (CI/CD) framework built on Linux container technology written in Golan
A use after free in the Linux kernel infiniband hfi1 driver in versions prior to 5.10-rc6 was found
In drivers/target/target_core_xcopy.c in the Linux kernel before 5.10.7, insufficient identifier che
The fileop module of the NXLog service in NXLog Community Edition 2.10.2150 allows remote attackers
mwifiex_cmd_802_11_ad_hoc_start in drivers/net/wireless/marvell/mwifiex/join.c in the Linux kernel t
Use after free in drag and drop in Google Chrome on Linux prior to 87.0.4280.141 allowed a remote at
Guest can force Linux netback driver to hog large amounts of kernel memory T Incoming data packets f
Guest can force Linux netback driver to hog large amounts of kernel memory T Incoming data packets f
It was discovered that the eBPF implementation in the Linux kernel did not properly track bounds inf
Flatpak is a Linux application sandboxing and distribution framework. Prior to versions 1.12.3 and 1
nf_tables_newset in net/netfilter/nf_tables_api.c in the Linux kernel before 5.12.13 allows local us
A regression exists in the Linux Kernel within KVM: nVMX that allowed for speculative execution atta
The zabbix-agent2 package before 5.4.9-r1 for Alpine Linux sometimes allows privilege escalation to
It was discovered that the cls_route filter implementation in the Linux kernel would not remove an o
A buffer overflow flaw was found in the Linux kernel Broadcom Full MAC Wi-Fi driver. This issue occu
A use-after-free flaw was found in the Linux kernel MCTP (Management Component Transport Protocol) f
A vulnerability in the ClearPass OnGuard Linux agent could allow malicious users on a Linux instance
A stack overflow flaw was found in the Linux kernel's SYSCTL subsystem in how a user changes certain
A use-after-free vulnerability was found in __nfs42_ssc_open() in fs/nfs/nfs4file.c in the Linux ker
A use-after-free flaw caused by a race among the superblock operations in the gadgetfs Linux driver
A buffer overflow vulnerability exists in Linksys WRT54GL Wireless-G Broadband Router with firmware
An arbitrary code exection vulnerability exists in Linksys WUMC710 Wireless-AC Universal Media Conne
An arbitrary code execution vulnerability exisits in Linksys WRT54GL Wireless-G Broadband Router wit
There exists a use-after-free vulnerability in the Linux kernel through io_uring and the IORING_OP_S
A flaw NULL Pointer Dereference in the Linux kernel NTFS3 driver function attr_punch_hole() was foun
An issue was discovered in drivers/input/input.c in the Linux kernel before 5.17.10. An attacker can
The Linux kernel io_uring IORING_OP_SOCKET operation contained a double free in function __sys_socke
cbq_classify in net/sched/sch_cbq.c in the Linux kernel through 6.1.4 allows attackers to cause a de
atm_tc_enqueue in net/sched/sch_atm.c in the Linux kernel through 6.1.4 allows attackers to cause a
In rndis_query_oid in drivers/net/wireless/rndis_wlan.c in the Linux kernel through 6.1.5, there is
NVIDIA Triton Inference Server for Linux and Windows contains a vulnerability where, when it is laun
Closing of an event channel in the Linux kernel can result in a deadlock.This happens when the clos
An issue was discovered in the Linux kernel before 6.6.8. do_vcc_ioctl in net/atm/ioctl.c has a use-
An issue was discovered in the Linux kernel before 6.6.8. atalk_ioctl in net/appletalk/ddp.c has a u
An issue was discovered in the Linux kernel before 6.6.8. rose_ioctl in net/rose/af_rose.c has a use
A flaw was found in the ATA over Ethernet (AoE) driver in the Linux kernel. The aoecmd_cfg_pkts() fu
A memory leak problem was found in ctnetlink_create_conntrack in net/netfilter/nf_conntrack_netlink.
A use-after-free flaw was found in the netfilter subsystem of the Linux kernel. If the catchall elem
A buffer overflow vulnerability in TA for Linux and TA for MacOS prior to 5.8.1 allows a local user
A vulnerability was found in vhost_new_msg in drivers/vhost/vhost.c in the Linux kernel, which does
A flaw was found in the blkgs destruction path in block/blk-cgroup.c in the Linux kernel, leading to
Windows Subsystem for Linux Elevation of Privilege Vulnerability