厂商或团体 linux 的搜索结果 (1900)

CVE-2015-2877(发布:2017-03-03 06:59:00)NMPS
CVSS2.1

[原文]** DISPUTED ** Kernel Samepage Merging (KSM) in the Linux kernel 2.6.32 through 4.x does not prevent use of a write-timing side channel, which allows guest OS users to defeat the ASLR protection mechanism on other guest OS instances via a Cross-VM ASL INtrospection (CAIN) attack. NOTE: the vendor states "Basically if you care about this attack vector, disable deduplication." Share-until-written approaches for memory conservation among mutually untrusting tenants are inherently detectable for information disclosure, and can be classified as potentially misunderstood behaviors rather than vulnerabilities.

CVE-2015-1328(发布:2016-11-27 22:59:00)NMCPS
CVSS7.2

[CNNVD]Ubuntu Linux 本地提权漏洞--Ubuntu是英国科能(Canonical)公司和Ubuntu基金会共同开发的一套以桌面应用为主的GNU/Linux操作系统。 Ubuntu Linux 8版本中存在本地提权漏洞。本地攻击者可利用该漏洞获取root权限,完全控制受影响计算机。 ...

CVE-2015-3288(发布:2016-10-16 17:59:00)NMPS
CVSS7.2

[原文]mm/memory.c in the Linux kernel before 4.1.4 mishandles anonymous pages, which allows local users to gain privileges or cause a denial of service (page tainting) via a crafted application that triggers writing to page zero.

CVE-2015-0572(发布:2016-10-10 06:59:00)NMS
CVSS7.5

[原文]Multiple race conditions in drivers/char/adsprpc.c and drivers/char/adsprpc_compat.c in the ADSPRPC driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, allow attackers to cause a denial of service (zero-value write) or possibly have unspecified other impact via a COMPAT_FASTRPC_IOCTL_INVOKE_FD ioctl call.

CVE-2016-3699(发布:2016-10-07 10:59:03)NMPS
CVSS6.9

[原文]The Linux kernel, as used in Red Hat Enterprise Linux 7.2 and Red Hat Enterprise MRG 2 and when booted with UEFI Secure Boot enabled, allows local users to bypass intended Secure Boot restrictions and execute untrusted code by appending ACPI tables to the initrd.

CVE-2016-0617(发布:2016-09-30 10:59:00)NMS
CVSS4.6

[原文]Unspecified vulnerability in the kernel-uek component in Oracle Linux 6 allows local users to affect availability via unknown vectors.

12345678下一页尾页 第1页 / 共317页

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站