Search CVE reports
471 – 480 of 595 results
CVE-2017-7487
Medium prioritySome fixes available 13 of 24
The ipxitf_ioctl function in net/ipx/af_ipx.c in the Linux kernel through 4.11.1 mishandles reference counts, which allows local users to cause a denial of service (use-after-free) or possibly have unspecified other impact via a...
32 affected packages
linux, linux-armadaxp, linux-aws, linux-azure, linux-euclid...
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
linux | — | — | — | — | Fixed |
linux-armadaxp | — | — | — | — | Not in release |
linux-aws | — | — | — | — | Fixed |
linux-azure | — | — | — | — | Not affected |
linux-euclid | — | — | — | — | Ignored |
linux-flo | — | — | — | — | Ignored |
linux-gcp | — | — | — | — | Not affected |
linux-gke | — | — | — | — | Fixed |
linux-goldfish | — | — | — | — | Ignored |
linux-grouper | — | — | — | — | Not in release |
linux-hwe | — | — | — | — | Fixed |
linux-hwe-edge | — | — | — | — | Fixed |
linux-kvm | — | — | — | — | Not affected |
linux-linaro-omap | — | — | — | — | Not in release |
linux-linaro-shared | — | — | — | — | Not in release |
linux-linaro-vexpress | — | — | — | — | Not in release |
linux-lts-quantal | — | — | — | — | Not in release |
linux-lts-raring | — | — | — | — | Not in release |
linux-lts-saucy | — | — | — | — | Not in release |
linux-lts-trusty | — | — | — | — | Not in release |
linux-lts-utopic | — | — | — | — | Not in release |
linux-lts-vivid | — | — | — | — | Not in release |
linux-lts-wily | — | — | — | — | Not in release |
linux-lts-xenial | — | — | — | — | Not in release |
linux-maguro | — | — | — | — | Not in release |
linux-mako | — | — | — | — | Ignored |
linux-manta | — | — | — | — | Not in release |
linux-oem | — | — | — | — | Not affected |
linux-qcm-msm | — | — | — | — | Not in release |
linux-raspi2 | — | — | — | — | Fixed |
linux-snapdragon | — | — | — | — | Fixed |
linux-ti-omap4 | — | — | — | — | Not in release |
CVE-2017-8925
Medium prioritySome fixes available 14 of 23
The omninet_open function in drivers/usb/serial/omninet.c in the Linux kernel before 4.10.4 allows local users to cause a denial of service (tty exhaustion) by leveraging reference count mishandling.
32 affected packages
linux, linux-armadaxp, linux-aws, linux-azure, linux-euclid...
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
linux | — | — | — | Not affected | Fixed |
linux-armadaxp | — | — | — | Not in release | Not in release |
linux-aws | — | — | — | Not affected | Fixed |
linux-azure | — | — | — | Not affected | Not affected |
linux-euclid | — | — | — | Not in release | Ignored |
linux-flo | — | — | — | Not in release | Ignored |
linux-gcp | — | — | — | Not affected | Not affected |
linux-gke | — | — | — | Not in release | Fixed |
linux-goldfish | — | — | — | Not in release | Ignored |
linux-grouper | — | — | — | Not in release | Not in release |
linux-hwe | — | — | — | Not affected | Fixed |
linux-hwe-edge | — | — | — | Fixed | Fixed |
linux-kvm | — | — | — | Not affected | Not affected |
linux-linaro-omap | — | — | — | Not in release | Not in release |
linux-linaro-shared | — | — | — | Not in release | Not in release |
linux-linaro-vexpress | — | — | — | Not in release | Not in release |
linux-lts-quantal | — | — | — | Not in release | Not in release |
linux-lts-raring | — | — | — | Not in release | Not in release |
linux-lts-saucy | — | — | — | Not in release | Not in release |
linux-lts-trusty | — | — | — | Not in release | Not in release |
linux-lts-utopic | — | — | — | Not in release | Not in release |
linux-lts-vivid | — | — | — | Not in release | Not in release |
linux-lts-wily | — | — | — | Not in release | Not in release |
linux-lts-xenial | — | — | — | Not in release | Not in release |
linux-maguro | — | — | — | Not in release | Not in release |
linux-mako | — | — | — | Not in release | Ignored |
linux-manta | — | — | — | Not in release | Not in release |
linux-oem | — | — | — | Not affected | Not affected |
linux-qcm-msm | — | — | — | Not in release | Not in release |
linux-raspi2 | — | — | — | Not affected | Fixed |
linux-snapdragon | — | — | — | Not affected | Fixed |
linux-ti-omap4 | — | — | — | Not in release | Not in release |
CVE-2017-8924
Medium prioritySome fixes available 14 of 23
The edge_bulk_in_callback function in drivers/usb/serial/io_ti.c in the Linux kernel before 4.10.4 allows local users to obtain sensitive information (in the dmesg ringbuffer and syslog) from uninitialized kernel memory by using a...
32 affected packages
linux, linux-armadaxp, linux-aws, linux-azure, linux-euclid...
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
linux | — | — | — | Not affected | Fixed |
linux-armadaxp | — | — | — | Not in release | Not in release |
linux-aws | — | — | — | Not affected | Fixed |
linux-azure | — | — | — | Not affected | Not affected |
linux-euclid | — | — | — | Not in release | Ignored |
linux-flo | — | — | — | Not in release | Ignored |
linux-gcp | — | — | — | Not affected | Not affected |
linux-gke | — | — | — | Not in release | Fixed |
linux-goldfish | — | — | — | Not in release | Ignored |
linux-grouper | — | — | — | Not in release | Not in release |
linux-hwe | — | — | — | Not affected | Fixed |
linux-hwe-edge | — | — | — | Fixed | Fixed |
linux-kvm | — | — | — | Not affected | Not affected |
linux-linaro-omap | — | — | — | Not in release | Not in release |
linux-linaro-shared | — | — | — | Not in release | Not in release |
linux-linaro-vexpress | — | — | — | Not in release | Not in release |
linux-lts-quantal | — | — | — | Not in release | Not in release |
linux-lts-raring | — | — | — | Not in release | Not in release |
linux-lts-saucy | — | — | — | Not in release | Not in release |
linux-lts-trusty | — | — | — | Not in release | Not in release |
linux-lts-utopic | — | — | — | Not in release | Not in release |
linux-lts-vivid | — | — | — | Not in release | Not in release |
linux-lts-wily | — | — | — | Not in release | Not in release |
linux-lts-xenial | — | — | — | Not in release | Not in release |
linux-maguro | — | — | — | Not in release | Not in release |
linux-mako | — | — | — | Not in release | Ignored |
linux-manta | — | — | — | Not in release | Not in release |
linux-oem | — | — | — | Not affected | Not affected |
linux-qcm-msm | — | — | — | Not in release | Not in release |
linux-raspi2 | — | — | — | Not affected | Fixed |
linux-snapdragon | — | — | — | Not affected | Fixed |
linux-ti-omap4 | — | — | — | Not in release | Not in release |
CVE-2017-7472
Medium prioritySome fixes available 13 of 35
The KEYS subsystem in the Linux kernel before 4.10.13 allows local users to cause a denial of service (memory consumption) via a series of KEY_REQKEY_DEFL_THREAD_KEYRING keyctl_set_reqkey_keyring calls.
32 affected packages
linux, linux-armadaxp, linux-aws, linux-azure, linux-euclid...
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
linux | — | — | — | — | Fixed |
linux-armadaxp | — | — | — | — | Not in release |
linux-aws | — | — | — | — | Fixed |
linux-azure | — | — | — | — | Not affected |
linux-euclid | — | — | — | — | Ignored |
linux-flo | — | — | — | — | Ignored |
linux-gcp | — | — | — | — | Not affected |
linux-gke | — | — | — | — | Fixed |
linux-goldfish | — | — | — | — | Ignored |
linux-grouper | — | — | — | — | Not in release |
linux-hwe | — | — | — | — | Fixed |
linux-hwe-edge | — | — | — | — | Fixed |
linux-kvm | — | — | — | — | Not affected |
linux-linaro-omap | — | — | — | — | Not in release |
linux-linaro-shared | — | — | — | — | Not in release |
linux-linaro-vexpress | — | — | — | — | Not in release |
linux-lts-quantal | — | — | — | — | Not in release |
linux-lts-raring | — | — | — | — | Not in release |
linux-lts-saucy | — | — | — | — | Not in release |
linux-lts-trusty | — | — | — | — | Not in release |
linux-lts-utopic | — | — | — | — | Not in release |
linux-lts-vivid | — | — | — | — | Not in release |
linux-lts-wily | — | — | — | — | Not in release |
linux-lts-xenial | — | — | — | — | Not in release |
linux-maguro | — | — | — | — | Not in release |
linux-mako | — | — | — | — | Ignored |
linux-manta | — | — | — | — | Not in release |
linux-oem | — | — | — | — | Not affected |
linux-qcm-msm | — | — | — | — | Not in release |
linux-raspi2 | — | — | — | — | Fixed |
linux-snapdragon | — | — | — | — | Fixed |
linux-ti-omap4 | — | — | — | — | Not in release |
CVE-2017-8890
Medium prioritySome fixes available 15 of 24
The inet_csk_clone_lock function in net/ipv4/inet_connection_sock.c in the Linux kernel through 4.10.15 allows attackers to cause a denial of service (double free) or possibly have unspecified other impact by leveraging use of the...
32 affected packages
linux, linux-armadaxp, linux-aws, linux-azure, linux-euclid...
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
linux | — | — | — | — | Fixed |
linux-armadaxp | — | — | — | — | Not in release |
linux-aws | — | — | — | — | Fixed |
linux-azure | — | — | — | — | Not affected |
linux-euclid | — | — | — | — | Ignored |
linux-flo | — | — | — | — | Ignored |
linux-gcp | — | — | — | — | Not affected |
linux-gke | — | — | — | — | Fixed |
linux-goldfish | — | — | — | — | Ignored |
linux-grouper | — | — | — | — | Not in release |
linux-hwe | — | — | — | — | Fixed |
linux-hwe-edge | — | — | — | — | Fixed |
linux-kvm | — | — | — | — | Not affected |
linux-linaro-omap | — | — | — | — | Not in release |
linux-linaro-shared | — | — | — | — | Not in release |
linux-linaro-vexpress | — | — | — | — | Not in release |
linux-lts-quantal | — | — | — | — | Not in release |
linux-lts-raring | — | — | — | — | Not in release |
linux-lts-saucy | — | — | — | — | Not in release |
linux-lts-trusty | — | — | — | — | Not in release |
linux-lts-utopic | — | — | — | — | Not in release |
linux-lts-vivid | — | — | — | — | Not in release |
linux-lts-wily | — | — | — | — | Not in release |
linux-lts-xenial | — | — | — | — | Not in release |
linux-maguro | — | — | — | — | Not in release |
linux-mako | — | — | — | — | Ignored |
linux-manta | — | — | — | — | Not in release |
linux-oem | — | — | — | — | Not affected |
linux-qcm-msm | — | — | — | — | Not in release |
linux-raspi2 | — | — | — | — | Fixed |
linux-snapdragon | — | — | — | — | Fixed |
linux-ti-omap4 | — | — | — | — | Not in release |
CVE-2017-8831
Low prioritySome fixes available 13 of 38
The saa7164_bus_get function in drivers/media/pci/saa7164/saa7164-bus.c in the Linux kernel through 4.11.5 allows local users to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact by...
33 affected packages
linux, linux-armadaxp, linux-aws, linux-azure, linux-azure-edge...
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
linux | — | — | — | Not affected | Fixed |
linux-armadaxp | — | — | — | Not in release | Not in release |
linux-aws | — | — | — | Not affected | Fixed |
linux-azure | — | — | — | Not affected | Fixed |
linux-azure-edge | — | — | — | Not affected | Not affected |
linux-euclid | — | — | — | Not in release | Ignored |
linux-flo | — | — | — | Not in release | Ignored |
linux-gcp | — | — | — | Not affected | Fixed |
linux-gke | — | — | — | Not in release | Fixed |
linux-goldfish | — | — | — | Not in release | Ignored |
linux-grouper | — | — | — | Not in release | Not in release |
linux-hwe | — | — | — | Not affected | Fixed |
linux-hwe-edge | — | — | — | Not affected | Fixed |
linux-kvm | — | — | — | Not affected | Fixed |
linux-linaro-omap | — | — | — | Not in release | Not in release |
linux-linaro-shared | — | — | — | Not in release | Not in release |
linux-linaro-vexpress | — | — | — | Not in release | Not in release |
linux-lts-quantal | — | — | — | Not in release | Not in release |
linux-lts-raring | — | — | — | Not in release | Not in release |
linux-lts-saucy | — | — | — | Not in release | Not in release |
linux-lts-trusty | — | — | — | Not in release | Not in release |
linux-lts-utopic | — | — | — | Not in release | Not in release |
linux-lts-vivid | — | — | — | Not in release | Not in release |
linux-lts-wily | — | — | — | Not in release | Not in release |
linux-lts-xenial | — | — | — | Not in release | Not in release |
linux-maguro | — | — | — | Not in release | Not in release |
linux-mako | — | — | — | Not in release | Ignored |
linux-manta | — | — | — | Not in release | Not in release |
linux-oem | — | — | — | Not affected | Not affected |
linux-qcm-msm | — | — | — | Not in release | Not in release |
linux-raspi2 | — | — | — | Not affected | Fixed |
linux-snapdragon | — | — | — | Not affected | Fixed |
linux-ti-omap4 | — | — | — | Not in release | Not in release |
CVE-2014-9940
Low prioritySome fixes available 1 of 19
The regulator_ena_gpio_free function in drivers/regulator/core.c in the Linux kernel before 3.19 allows local users to gain privileges or cause a denial of service (use-after-free) via a crafted application.
32 affected packages
linux, linux-armadaxp, linux-aws, linux-azure, linux-euclid...
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
linux | — | — | — | — | Not affected |
linux-armadaxp | — | — | — | — | Not in release |
linux-aws | — | — | — | — | Not affected |
linux-azure | — | — | — | — | Not affected |
linux-euclid | — | — | — | — | Not affected |
linux-flo | — | — | — | — | Ignored |
linux-gcp | — | — | — | — | Not affected |
linux-gke | — | — | — | — | Not affected |
linux-goldfish | — | — | — | — | Ignored |
linux-grouper | — | — | — | — | Not in release |
linux-hwe | — | — | — | — | Not affected |
linux-hwe-edge | — | — | — | — | Not affected |
linux-kvm | — | — | — | — | Not affected |
linux-linaro-omap | — | — | — | — | Not in release |
linux-linaro-shared | — | — | — | — | Not in release |
linux-linaro-vexpress | — | — | — | — | Not in release |
linux-lts-quantal | — | — | — | — | Not in release |
linux-lts-raring | — | — | — | — | Not in release |
linux-lts-saucy | — | — | — | — | Not in release |
linux-lts-trusty | — | — | — | — | Not in release |
linux-lts-utopic | — | — | — | — | Not in release |
linux-lts-vivid | — | — | — | — | Not in release |
linux-lts-wily | — | — | — | — | Not in release |
linux-lts-xenial | — | — | — | — | Not in release |
linux-maguro | — | — | — | — | Not in release |
linux-mako | — | — | — | — | Ignored |
linux-manta | — | — | — | — | Not in release |
linux-oem | — | — | — | — | Not affected |
linux-qcm-msm | — | — | — | — | Not in release |
linux-raspi2 | — | — | — | — | Not affected |
linux-snapdragon | — | — | — | — | Not affected |
linux-ti-omap4 | — | — | — | — | Not in release |
CVE-2017-7895
Medium prioritySome fixes available 15 of 35
The NFSv2 and NFSv3 server implementations in the Linux kernel through 4.10.13 lack certain checks for the end of a buffer, which allows remote attackers to trigger pointer-arithmetic errors or possibly have unspecified other...
32 affected packages
linux, linux-armadaxp, linux-aws, linux-azure, linux-euclid...
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
linux | — | — | — | — | Fixed |
linux-armadaxp | — | — | — | — | Not in release |
linux-aws | — | — | — | — | Fixed |
linux-azure | — | — | — | — | Not affected |
linux-euclid | — | — | — | — | Ignored |
linux-flo | — | — | — | — | Ignored |
linux-gcp | — | — | — | — | Not affected |
linux-gke | — | — | — | — | Fixed |
linux-goldfish | — | — | — | — | Ignored |
linux-grouper | — | — | — | — | Not in release |
linux-hwe | — | — | — | — | Fixed |
linux-hwe-edge | — | — | — | — | Fixed |
linux-kvm | — | — | — | — | Not affected |
linux-linaro-omap | — | — | — | — | Not in release |
linux-linaro-shared | — | — | — | — | Not in release |
linux-linaro-vexpress | — | — | — | — | Not in release |
linux-lts-quantal | — | — | — | — | Not in release |
linux-lts-raring | — | — | — | — | Not in release |
linux-lts-saucy | — | — | — | — | Not in release |
linux-lts-trusty | — | — | — | — | Not in release |
linux-lts-utopic | — | — | — | — | Not in release |
linux-lts-vivid | — | — | — | — | Not in release |
linux-lts-wily | — | — | — | — | Not in release |
linux-lts-xenial | — | — | — | — | Not in release |
linux-maguro | — | — | — | — | Not in release |
linux-mako | — | — | — | — | Ignored |
linux-manta | — | — | — | — | Not in release |
linux-oem | — | — | — | — | Not affected |
linux-qcm-msm | — | — | — | — | Not in release |
linux-raspi2 | — | — | — | — | Fixed |
linux-snapdragon | — | — | — | — | Fixed |
linux-ti-omap4 | — | — | — | — | Not in release |
CVE-2017-8106
Medium prioritySome fixes available 1 of 16
The handle_invept function in arch/x86/kvm/vmx.c in the Linux kernel 3.12 through 3.15 allows privileged KVM guest OS users to cause a denial of service (NULL pointer dereference and host OS crash) via a single-context INVEPT...
32 affected packages
linux, linux-armadaxp, linux-aws, linux-azure, linux-euclid...
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
linux | — | — | — | — | Not affected |
linux-armadaxp | — | — | — | — | Not in release |
linux-aws | — | — | — | — | Not affected |
linux-azure | — | — | — | — | Not affected |
linux-euclid | — | — | — | — | Not affected |
linux-flo | — | — | — | — | Not affected |
linux-gcp | — | — | — | — | Not affected |
linux-gke | — | — | — | — | Not affected |
linux-goldfish | — | — | — | — | Not affected |
linux-grouper | — | — | — | — | Not in release |
linux-hwe | — | — | — | — | Not affected |
linux-hwe-edge | — | — | — | — | Not affected |
linux-kvm | — | — | — | — | Not affected |
linux-linaro-omap | — | — | — | — | Not in release |
linux-linaro-shared | — | — | — | — | Not in release |
linux-linaro-vexpress | — | — | — | — | Not in release |
linux-lts-quantal | — | — | — | — | Not in release |
linux-lts-raring | — | — | — | — | Not in release |
linux-lts-saucy | — | — | — | — | Not in release |
linux-lts-trusty | — | — | — | — | Not in release |
linux-lts-utopic | — | — | — | — | Not in release |
linux-lts-vivid | — | — | — | — | Not in release |
linux-lts-wily | — | — | — | — | Not in release |
linux-lts-xenial | — | — | — | — | Not in release |
linux-maguro | — | — | — | — | Not in release |
linux-mako | — | — | — | — | Not affected |
linux-manta | — | — | — | — | Not in release |
linux-oem | — | — | — | — | Not affected |
linux-qcm-msm | — | — | — | — | Not in release |
linux-raspi2 | — | — | — | — | Not affected |
linux-snapdragon | — | — | — | — | Not affected |
linux-ti-omap4 | — | — | — | — | Not in release |
CVE-2017-8067
Medium prioritySome fixes available 2 of 20
drivers/char/virtio_console.c in the Linux kernel 4.9.x and 4.10.x before 4.10.12 interacts incorrectly with the CONFIG_VMAP_STACK option, which allows local users to cause a denial of service (system crash or memory corruption)...
31 affected packages
linux, linux-armadaxp, linux-aws, linux-azure, linux-euclid...
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
linux | — | — | — | — | Not affected |
linux-armadaxp | — | — | — | — | Not in release |
linux-aws | — | — | — | — | Not affected |
linux-azure | — | — | — | — | Not affected |
linux-euclid | — | — | — | — | Not affected |
linux-flo | — | — | — | — | Ignored |
linux-gcp | — | — | — | — | Not affected |
linux-gke | — | — | — | — | Not affected |
linux-goldfish | — | — | — | — | Ignored |
linux-grouper | — | — | — | — | Not in release |
linux-hwe | — | — | — | — | Not affected |
linux-hwe-edge | — | — | — | — | Not affected |
linux-kvm | — | — | — | — | Not affected |
linux-linaro-omap | — | — | — | — | Not in release |
linux-linaro-shared | — | — | — | — | Not in release |
linux-linaro-vexpress | — | — | — | — | Not in release |
linux-lts-quantal | — | — | — | — | Not in release |
linux-lts-raring | — | — | — | — | Not in release |
linux-lts-saucy | — | — | — | — | Not in release |
linux-lts-trusty | — | — | — | — | Not in release |
linux-lts-utopic | — | — | — | — | Not in release |
linux-lts-vivid | — | — | — | — | Not in release |
linux-lts-wily | — | — | — | — | Not in release |
linux-lts-xenial | — | — | — | — | Not in release |
linux-maguro | — | — | — | — | Not in release |
linux-mako | — | — | — | — | Ignored |
linux-manta | — | — | — | — | Not in release |
linux-qcm-msm | — | — | — | — | Not in release |
linux-raspi2 | — | — | — | — | Not affected |
linux-snapdragon | — | — | — | — | Not affected |
linux-ti-omap4 | — | — | — | — | Not in release |