Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Suse_linux_enterprise_real_time_extension
(Novell)Repositories | https://github.com/torvalds/linux |
#Vulnerabilities | 33 |
Date | Id | Summary | Products | Score | Patch | Annotated |
---|---|---|---|---|---|---|
2016-04-27 | CVE-2016-2384 | Double free vulnerability in the snd_usbmidi_create function in sound/usb/midi.c in the Linux kernel before 4.5 allows physically proximate attackers to cause a denial of service (panic) or possibly have unspecified other impact via vectors involving an invalid USB descriptor. | Linux_kernel, Suse_linux_enterprise_real_time_extension | 4.6 | ||
2016-04-13 | CVE-2015-8552 | The PCI backend driver in Xen, when running on an x86 system and using Linux 3.1.x through 4.3.x as the driver domain, allows local guest administrators to generate a continuous stream of WARN messages and cause a denial of service (disk consumption) by leveraging a system with access to a passed-through MSI or MSI-X capable physical PCI device and XEN_PCI_OP_enable_msi operations, aka "Linux pciback missing sanity checks." | Ubuntu_linux, Debian_linux, Suse_linux_enterprise_debuginfo, Suse_linux_enterprise_real_time_extension, Xen | 4.4 | ||
2016-04-14 | CVE-2015-8550 | Xen, when used on a system providing PV backends, allows local guest OS administrators to cause a denial of service (host OS crash) or gain privileges by writing to memory shared between the frontend and backend, aka a double fetch vulnerability. | Suse_linux_enterprise_real_time_extension, Xen | 8.2 | ||
2015-10-19 | CVE-2015-7833 | The usbvision driver in the Linux kernel package 3.10.0-123.20.1.el7 through 3.10.0-229.14.1.el7 in Red Hat Enterprise Linux (RHEL) 7.1 allows physically proximate attackers to cause a denial of service (panic) via a nonzero bInterfaceNumber value in a USB device descriptor. | Suse_linux_enterprise_real_time_extension, Enterprise_linux | N/A | ||
2016-02-08 | CVE-2015-7566 | The clie_5_attach function in drivers/usb/serial/visor.c in the Linux kernel through 4.4.1 allows physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact by inserting a USB device that lacks a bulk-out endpoint. | Linux_kernel, Suse_linux_enterprise_debuginfo, Suse_linux_enterprise_real_time_extension, Suse_linux_enterprise_server, Suse_linux_enterprise_software_development_kit | 4.6 | ||
2016-04-27 | CVE-2015-1339 | Memory leak in the cuse_channel_release function in fs/fuse/cuse.c in the Linux kernel before 4.4 allows local users to cause a denial of service (memory consumption) or possibly have unspecified other impact by opening /dev/cuse many times. | Linux_kernel, Suse_linux_enterprise_debuginfo, Suse_linux_enterprise_real_time_extension | 6.2 |