The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a database and tools to fix them.

Computer vulnerabilities of Linux kernel

cybersecurity vulnerability CVE-2017-2618

Linux kernel: denial of service via setprocattr

Synthesis of the vulnerability

An attacker can generate a fatal error via setprocattr() on the Linux kernel, in order to trigger a denial of service.
Severity: 1/4.
Creation date: 15/02/2017.
Identifiers: CERTFR-2017-AVI-250, CVE-2017-2618, DSA-3791-1, RHSA-2017:0931-01, RHSA-2017:0933-01, USN-3361-1, USN-3381-1, USN-3381-2, VIGILANCE-VUL-21847.
Full Vigil@nce bulletin... (Free trial)

Description of the vulnerability

An attacker can generate a fatal error via setprocattr() on the Linux kernel, in order to trigger a denial of service.
Full Vigil@nce bulletin... (Free trial)

computer weakness announce CVE-2017-5972

Linux kernel: denial of service via RSYSLOG and SYN Cookie Protection

Synthesis of the vulnerability

An attacker can generate a fatal error via the RSYSLOG service and the SYN Cookie Protection of the Linux kernel, in order to trigger a denial of service.
Severity: 2/4.
Creation date: 15/02/2017.
Identifiers: CVE-2017-5972, SA148, VIGILANCE-VUL-21842.
Full Vigil@nce bulletin... (Free trial)

Description of the vulnerability

An attacker can generate a fatal error via the RSYSLOG service and the SYN Cookie Protection of the Linux kernel, in order to trigger a denial of service.
Full Vigil@nce bulletin... (Free trial)

computer weakness CVE-2017-5967

Linux kernel: information disclosure via CONFIG_TIMER_STATS

Synthesis of the vulnerability

An attacker can bypass access restrictions to data via CONFIG_TIMER_STATS on the Linux kernel, in order to obtain sensitive information.
Severity: 1/4.
Creation date: 15/02/2017.
Identifiers: CVE-2017-5967, DLA-922-1, FEDORA-2017-0054c7b1f0, FEDORA-2017-787bc0d5b4, VIGILANCE-VUL-21841.
Full Vigil@nce bulletin... (Free trial)

Description of the vulnerability

An attacker can bypass access restrictions to data via CONFIG_TIMER_STATS on the Linux kernel, in order to obtain sensitive information.
Full Vigil@nce bulletin... (Free trial)

weakness note CVE-2017-5986

Linux kernel: assertion error via sctp_wait_for_sndbuf

Synthesis of the vulnerability

An attacker can force an assertion error via sctp_wait_for_sndbuf() on the Linux kernel, in order to trigger a denial of service.
Severity: 2/4.
Creation date: 14/02/2017.
Identifiers: CERTFR-2017-AVI-060, CERTFR-2017-AVI-128, CERTFR-2017-AVI-162, CERTFR-2017-AVI-282, CERTFR-2017-AVI-311, CVE-2017-5986, DLA-849-1, DSA-3804-1, FEDORA-2017-2e1f3694b2, FEDORA-2017-387ff46a66, FEDORA-2017-fb89ca752a, openSUSE-SU-2017:0541-1, openSUSE-SU-2017:0547-1, RHSA-2017:1308-01, SUSE-SU-2017:0575-1, SUSE-SU-2017:1247-1, SUSE-SU-2017:1301-1, SUSE-SU-2017:1360-1, SUSE-SU-2017:1990-1, SUSE-SU-2017:2342-1, SUSE-SU-2017:2525-1, USN-3264-1, USN-3264-2, USN-3265-1, USN-3265-2, USN-3266-1, USN-3266-2, VIGILANCE-VUL-21833.
Full Vigil@nce bulletin... (Free trial)

Description of the vulnerability

An attacker can force an assertion error via sctp_wait_for_sndbuf() on the Linux kernel, in order to trigger a denial of service.
Full Vigil@nce bulletin... (Free trial)

vulnerability alert CVE-2016-7917

Linux kernel: information disclosure via nfnetlink_rcv_batch

Synthesis of the vulnerability

A local attacker can read a memory fragment via nfnetlink_rcv_batch() on the Linux kernel, in order to obtain sensitive information.
Severity: 1/4.
Creation date: 14/02/2017.
Identifiers: CERTFR-2017-AVI-169, CVE-2016-7917, openSUSE-SU-2017:0458-1, USN-3312-1, USN-3312-2, VIGILANCE-VUL-21827.
Full Vigil@nce bulletin... (Free trial)

Description of the vulnerability

A local attacker can read a memory fragment via nfnetlink_rcv_batch() on the Linux kernel, in order to obtain sensitive information.
Full Vigil@nce bulletin... (Free trial)

vulnerability announce CVE-2016-8636

Linux kernel: integer overflow via Infiniband mem_check_range

Synthesis of the vulnerability

An attacker can generate an integer overflow via Infiniband mem_check_range() on the Linux kernel, in order to trigger a denial of service, and possibly to run code.
Severity: 2/4.
Creation date: 13/02/2017.
Identifiers: CERTFR-2019-AVI-233, CVE-2016-8636, SUSE-SU-2019:1287-1, USN-3361-1, VIGILANCE-VUL-21802.
Full Vigil@nce bulletin... (Free trial)

Description of the vulnerability

An attacker can generate an integer overflow via Infiniband mem_check_range() on the Linux kernel, in order to trigger a denial of service, and possibly to run code.
Full Vigil@nce bulletin... (Free trial)

security alert CVE-2017-5970

Linux kernel: NULL pointer dereference via ipv4_pktinfo_prepare

Synthesis of the vulnerability

An attacker can force a NULL pointer to be dereferenced via ipv4_pktinfo_prepare() on the Linux kernel, in order to trigger a denial of service.
Severity: 1/4.
Creation date: 13/02/2017.
Identifiers: 2011746, CERTFR-2017-AVI-060, CERTFR-2017-AVI-128, CERTFR-2017-AVI-282, CERTFR-2017-AVI-287, CERTFR-2017-AVI-307, CERTFR-2017-AVI-311, CVE-2017-5970, DLA-922-1, DSA-3791-1, FEDORA-2017-0054c7b1f0, FEDORA-2017-787bc0d5b4, K60104355, openSUSE-SU-2017:0541-1, openSUSE-SU-2017:0547-1, RHSA-2017:1842-01, RHSA-2017:2077-01, RHSA-2017:2669-01, SA148, SUSE-SU-2017:0517-1, SUSE-SU-2017:0575-1, SUSE-SU-2017:1247-1, SUSE-SU-2017:1301-1, SUSE-SU-2017:1990-1, SUSE-SU-2017:2342-1, SUSE-SU-2017:2525-1, USN-3265-1, USN-3265-2, USN-3361-1, USN-3422-1, USN-3422-2, VIGILANCE-VUL-21801.
Full Vigil@nce bulletin... (Free trial)

Description of the vulnerability

An attacker can force a NULL pointer to be dereferenced via ipv4_pktinfo_prepare() on the Linux kernel, in order to trigger a denial of service.
Full Vigil@nce bulletin... (Free trial)

computer threat note CVE-2017-5897

Linux kernel: out-of-bounds memory reading via ip6gre_err

Synthesis of the vulnerability

An attacker can force a read at an invalid address via ip6gre_err() on the Linux kernel, in order to trigger a denial of service, or to obtain sensitive information.
Severity: 2/4.
Creation date: 06/02/2017.
Identifiers: CERTFR-2017-AVI-060, CERTFR-2017-AVI-128, CERTFR-2017-AVI-162, CERTFR-2018-AVI-408, CVE-2017-5897, DSA-3791-1, FEDORA-2017-92d84f68cf, FEDORA-2017-fb89ca752a, openSUSE-SU-2017:0541-1, openSUSE-SU-2017:0547-1, SA148, SUSE-SU-2017:0575-1, SUSE-SU-2017:1247-1, SUSE-SU-2017:1360-1, SUSE-SU-2017:1990-1, USN-3265-1, USN-3265-2, USN-3361-1, USN-3754-1, VIGILANCE-VUL-21764.
Full Vigil@nce bulletin... (Free trial)

Description of the vulnerability

The Linux kernel support GRE (Generic Routing Encapsulation) tunnels overs IPv6.

However, the ip6gre_err() function tries to read a memory area located outside the expected range, which triggers a fatal error, or leads to the disclosure of a memory fragment.

An attacker can therefore force a read at an invalid address via ip6gre_err() on the Linux kernel, in order to trigger a denial of service, or to obtain sensitive information.
Full Vigil@nce bulletin... (Free trial)

threat alert CVE-2016-8405

Linux kernel: out-of-bounds memory reading via fb_copy_cmap

Synthesis of the vulnerability

An attacker can force a read at an invalid address via fb_copy_cmap() on the Linux kernel, in order to trigger a denial of service, or to obtain sensitive information.
Severity: 2/4.
Creation date: 01/02/2017.
Identifiers: CERTFR-2017-AVI-250, CERTFR-2018-AVI-392, CERTFR-2018-AVI-426, CVE-2016-8405, DLA-833-1, DSA-3791-1, SUSE-SU-2018:2332-1, SUSE-SU-2018:2366-1, SUSE-SU-2018:2637-1, USN-3361-1, USN-3381-1, USN-3381-2, VIGILANCE-VUL-21737.
Full Vigil@nce bulletin... (Free trial)

Description of the vulnerability

An attacker can force a read at an invalid address via fb_copy_cmap() on the Linux kernel, in order to trigger a denial of service, or to obtain sensitive information.
Full Vigil@nce bulletin... (Free trial)

computer threat bulletin CVE-2017-2596

Linux kernel: memory leak via KVM VMXON

Synthesis of the vulnerability

An attacker, inside a guest system, can create a memory leak via KVM VMXON on the Linux kernel, in order to trigger a denial of service on the host system.
Severity: 1/4.
Creation date: 31/01/2017.
Identifiers: 2011746, CERTFR-2017-AVI-141, CERTFR-2017-AVI-158, CERTFR-2017-AVI-169, CVE-2017-2596, DSA-3791-1, FEDORA-2017-392b319bb5, FEDORA-2017-472052ebe5, openSUSE-SU-2017:0906-1, openSUSE-SU-2017:0907-1, RHSA-2017:1842-01, RHSA-2017:2077-01, SUSE-SU-2017:1183-1, SUSE-SU-2017:1990-1, USN-3293-1, USN-3312-1, USN-3312-2, USN-3361-1, VIGILANCE-VUL-21722.
Full Vigil@nce bulletin... (Free trial)

Description of the vulnerability

An attacker, inside a guest system, can create a memory leak via KVM VMXON on the Linux kernel, in order to trigger a denial of service on the host system.
Full Vigil@nce bulletin... (Free trial)
Our database contains other pages. You can request a free trial to read them.

Display information about Linux kernel: