📦

linux_enterprise_software_development_kit

Vendor: suse

Actively Exploited 0 CISA KEV List

PoC / Exploits 7 Code Available

Total RCEs 0 Remote Access

Total CVEs 75 Total Indexed

Avg. EPSS 1.04% Exploit Prob.

Latest CVE CVE-2020-8025 Aug 07

Security Vulnerability Index

Page 4 / 8

6.6 CVSS

CVE-2010-3437

Exploit Found

Integer signedness error in the pkt_find_dev_from_minor function in drivers/block/pktcdvd.c in the Linux kernel before 2.6.36-rc6 allows local users to obtain sensitive information from kernel memory or cause a denial of service (invalid pointer dereference and system crash) via a crafted index value in a PKT_CTRL_CMD_STATUS ioctl call.

EPSS: 2.70%

Severity: MEDIUM

Oct 04, 2010

4.9 CVSS

CVE-2010-3067

Integer overflow in the do_io_submit function in fs/aio.c in the Linux kernel before 2.6.36-rc4-next-20100915 allows local users to cause a denial of service or possibly have unspecified other impact via crafted use of the io_submit system call.

EPSS: 0.15%

Severity: MEDIUM

Sep 21, 2010

2.1 CVSS

CVE-2010-2226

The xfs_swapext function in fs/xfs/xfs_dfrag.c in the Linux kernel before 2.6.35 does not properly check the file descriptors passed to the SWAPEXT ioctl, which allows local users to leverage write access and obtain read access by swapping one file into another file.

EPSS: 0.11%

Severity: LOW

Sep 03, 2010

2.1 CVSS

CVE-2009-3612

The tcf_fill_node function in net/sched/cls_api.c in the netlink subsystem in the Linux kernel 2.6.x before 2.6.32-rc5, and 2.4.37.6 and earlier, does not initialize a certain tcm__pad2 structure member, which might allow local users to obtain sensitive information from kernel memory via unspecified vectors. NOTE: this issue exists because of an incomplete fix for CVE-2005-4881.

EPSS: 0.07%

Severity: LOW

Oct 19, 2009

3.6 CVSS

CVE-2009-0834

The audit_syscall_entry function in the Linux kernel 2.6.28.7 and earlier on the x86_64 platform does not properly handle (1) a 32-bit process making a 64-bit syscall or (2) a 64-bit process making a 32-bit syscall, which allows local users to bypass certain syscall audit configurations via crafted syscalls, a related issue to CVE-2009-0342 and CVE-2009-0343.

EPSS: 0.05%

Severity: LOW

Mar 06, 2009

6.9 CVSS

CVE-2008-1375

Race condition in the directory notification subsystem (dnotify) in Linux kernel 2.6.x before 2.6.24.6, and 2.6.25 before 2.6.25.1, allows local users to cause a denial of service (OOPS) and possibly gain privileges via unspecified vectors.

EPSS: 0.07%

Severity: MEDIUM

May 02, 2008

2.1 CVSS

CVE-2007-6206

The do_coredump function in fs/exec.c in Linux kernel 2.4.x and 2.6.x up to 2.6.24-rc3, and possibly other versions, does not change the UID of a core dump file if it exists before a root process creates a core dump in the same location, which might allow local users to obtain sensitive information.

EPSS: 0.06%

Severity: LOW

Dec 04, 2007

Displaying 7 of 75 Total Entries

2 3 4 5 6 ... 8

Total 8 Sections