Novell Suse_linux_enterprise_live_patching
22 CVEs affecting Novell Suse_linux_enterprise_live_patching. Latest disclosed: 2016-07-03. Critical: 0, High: 5.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2016-3134 | High | 8.4 | 2016-04-27 | The netfilter subsystem in the Linux kernel through 4.5.2 does not validate certain offset fields, which allows local users to gain privileges or cause a denia… |
CVE-2016-4997 | High | 7.8 | 2016-07-03 | The compat IPT_SO_SET_REPLACE and IP6T_SO_SET_REPLACE setsockopt implementations in the netfilter subsystem in the Linux kernel before 4.6.3 allow local users… |
CVE-2016-1583 | High | 7.8 | 2016-06-27 | The ecryptfs_privileged_open function in fs/ecryptfs/kthread.c in the Linux kernel before 4.6.3 allows local users to gain privileges or cause a denial of serv… |
CVE-2016-4805 | High | 7.8 | 2016-05-23 | Use-after-free vulnerability in drivers/net/ppp/ppp_generic.c in the Linux kernel before 4.5.2 allows local users to cause a denial of service (memory corrupti… |
CVE-2016-3672 | High | 7.8 | 2016-04-27 | The arch_pick_mmap_layout function in arch/x86/mm/mmap.c in the Linux kernel through 4.5.2 does not properly randomize the legacy base address, which makes it… |
CVE-2015-8816 | Medium | 6.8 | 2016-04-27 | The hub_activate function in drivers/usb/core/hub.c in the Linux kernel before 4.3.5 does not properly maintain a hub-interface data structure, which allows ph… |
CVE-2016-4482 | Medium | 6.2 | 2016-05-23 | The proc_connectinfo function in drivers/usb/core/devio.c in the Linux kernel through 4.6 does not initialize a certain data structure, which allows local user… |
CVE-2016-2847 | Medium | 6.2 | 2016-04-27 | fs/pipe.c in the Linux kernel before 4.5 does not limit the amount of unread data in pipes, which allows local users to cause a denial of service (memory consu… |
CVE-2016-4569 | Medium | 5.5 | 2016-05-23 | The snd_timer_user_params function in sound/core/timer.c in the Linux kernel through 4.6 does not initialize a certain data structure, which allows local users… |
CVE-2016-3156 | Medium | 5.5 | 2016-04-27 | The IPv4 implementation in the Linux kernel before 4.5.2 mishandles destruction of device objects, which allows guest OS users to cause a denial of service (ho… |
CVE-2016-3951 | Medium | 4.6 | 2016-05-02 | Double free vulnerability in drivers/net/usb/cdc_ncm.c in the Linux kernel before 4.5 allows physically proximate attackers to cause a denial of service (syste… |
CVE-2016-3689 | Medium | 4.6 | 2016-05-02 | The ims_pcu_parse_cdc_data function in drivers/input/misc/ims-pcu.c in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of… |
CVE-2016-3140 | Medium | 4.6 | 2016-05-02 | The digi_port_init function in drivers/usb/serial/digi_acceleport.c in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of… |
CVE-2016-3138 | Medium | 4.6 | 2016-05-02 | The acm_probe function in drivers/usb/class/cdc-acm.c in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of service (NULL… |
CVE-2016-3137 | Medium | 4.6 | 2016-05-02 | drivers/usb/serial/cypress_m8.c in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of service (NULL pointer dereference a… |
CVE-2016-3136 | Medium | 4.6 | 2016-05-02 | The mct_u232_msr_to_state function in drivers/usb/serial/mct_u232.c in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of… |
CVE-2016-2188 | Medium | 4.6 | 2016-05-02 | The iowarrior_probe function in drivers/usb/misc/iowarrior.c in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of servic… |
CVE-2016-2186 | Medium | 4.6 | 2016-05-02 | The powermate_probe function in drivers/input/misc/powermate.c in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of serv… |
CVE-2016-2185 | Medium | 4.6 | 2016-05-02 | The ati_remote2_probe function in drivers/input/misc/ati_remote2.c in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of… |
CVE-2016-3139 | Medium | 4.6 | 2016-04-27 | The wacom_probe function in drivers/input/tablet/wacom_sys.c in the Linux kernel before 3.17 allows physically proximate attackers to cause a denial of service… |