Vulnerability & Exploit Database

Displaying entries 1 - 10 of 21 in total

Results for: CVE-2015-2666 Back to search

SUSE: CVE-2015-4700: SUSE Linux Security Advisory Vulnerability

  • Severity: 5
  • Published: August 31, 2015

The bpf_int_jit_compile function in arch/x86/net/bpf_jit_comp.c in the Linux kernel before 4.0.6 allows local users to cause a denial of service (system crash) by creating a packet filter and then loading crafted BPF instructions that trigger late convergence by the JIT compiler.

Cent OS: CVE-2015-4700: CESA-2015:1778 (kernel) Vulnerability

  • Severity: 5
  • Published: August 31, 2015

The bpf_int_jit_compile function in arch/x86/net/bpf_jit_comp.c in the Linux kernel before 4.0.6 allows local users to cause a denial of service (system crash) by creating a packet filter and then loading crafted BPF instructions that trigger late convergence by the JIT compiler.

SUSE: CVE-2015-4167: SUSE Linux Security Advisory Vulnerability

  • Severity: 5
  • Published: July 31, 2015

The udf_read_inode function in fs/udf/inode.c in the Linux kernel before 3.19.1 does not validate certain length values, which allows local users to cause a denial of service (incorrect data representation or integer overflow, and OOPS) via a crafted UDF filesystem.

SUSE: CVE-2015-3281: SUSE Linux Security Advisory Vulnerability

  • Severity: 5
  • Published: July 06, 2015

The buffer_slow_realign function in HAProxy 1.5.x before 1.5.14 and 1.6-dev does not properly realign a buffer that is used for pending outgoing data, which allows remote attackers to obtain sensitive information (uninitialized memory contents of previous requests) via a crafted request.

ELSA-2015-1741 Important: Oracle Linux haproxy security update Vulnerability

  • Severity: 5
  • Published: July 06, 2015

The buffer_slow_realign function in HAProxy 1.5.x before 1.5.14 and 1.6-dev does not properly realign a buffer that is used for pending outgoing data, which allows remote attackers to obtain sensitive information (uninitialized memory contents of previous requests) via a crafted request.

USN-2666-1: Linux kernel vulnerabilities Vulnerability

  • Severity: 9
  • Published: June 07, 2015

drivers/staging/ozwpan/ozusbsvc1.c in the OZWPAN driver in the Linux kernel through 4.0.5 does not ensure that certain length values are sufficiently large, which allows remote attackers to cause a denial of service (system crash or large loop) or possibly execute arbitrary code via a crafted packet, related to the (1) oz_usb_rx and (2) ...

SUSE: CVE-2015-4003: SUSE Linux Security Advisory Vulnerability

  • Severity: 8
  • Published: June 07, 2015

The oz_usb_handle_ep_data function in drivers/staging/ozwpan/ozusbsvc1.c in the OZWPAN driver in the Linux kernel through 4.0.5 allows remote attackers to cause a denial of service (divide-by-zero error and system crash) via a crafted packet.

SUSE: CVE-2015-4002: SUSE Linux Security Advisory Vulnerability

  • Severity: 9
  • Published: June 07, 2015

drivers/staging/ozwpan/ozusbsvc1.c in the OZWPAN driver in the Linux kernel through 4.0.5 does not ensure that certain length values are sufficiently large, which allows remote attackers to cause a denial of service (system crash or large loop) or possibly execute arbitrary code via a crafted packet, related to the (1) oz_usb_rx and (2) ...

SUSE: CVE-2015-4001: SUSE Linux Security Advisory Vulnerability

  • Severity: 9
  • Published: June 07, 2015

Integer signedness error in the oz_hcd_get_desc_cnf function in drivers/staging/ozwpan/ozhcd.c in the OZWPAN driver in the Linux kernel through 4.0.5 allows remote attackers to cause a denial of service (system crash) or possibly execute arbitrary code via a crafted packet.