Vulnerability & Exploit Database

Displaying all 6 entries

Results for: CVE-2018-1279 Back to search

Huawei EulerOS: CVE-2018-5391: kernel security update Vulnerability

  • Severity: 8
  • Published: August 14, 2018

The Linux kernel, versions 3.9+, is vulnerable to a denial of service attack with low rates of specially modified packets targeting IP fragment re-assembly. An attacker may cause a denial of service condition by sending specially crafted IP fragments. Various vulnerabilities in IP fragmentation have been discovered and fixed over the yea...

Huawei EulerOS: CVE-2018-3646: kernel security update Vulnerability

  • Severity: 5
  • Published: August 14, 2018

Systems with microprocessors utilizing speculative execution and address translations may allow unauthorized disclosure of information residing in the L1 data cache to an attacker with local user access with guest OS privilege via a terminal page fault and a side-channel analysis.

Huawei EulerOS: CVE-2018-3620: kernel security update Vulnerability

  • Severity: 5
  • Published: August 14, 2018

Systems with microprocessors utilizing speculative execution and address translations may allow unauthorized disclosure of information residing in the L1 data cache to an attacker with local user access via a terminal page fault and a side-channel analysis.

Huawei EulerOS: CVE-2018-5390: kernel security update Vulnerability

  • Severity: 8
  • Published: August 06, 2018

Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service.

SUSE: CVE-2017-7308: SUSE Linux Security Advisory Vulnerability

  • Severity: 7
  • Published: March 29, 2017

The packet_set_ring function in net/packet/af_packet.c in the Linux kernel through 4.10.6 does not properly validate certain block-size data, which allows local users to cause a denial of service (integer signedness error and out-of-bounds write), or gain privileges (if the CAP_NET_RAW capability is held), via crafted system calls.

SUSE: CVE-2017-7294: SUSE Linux Security Advisory Vulnerability

  • Severity: 7
  • Published: March 28, 2017

The vmw_surface_define_ioctl function in drivers/gpu/drm/vmwgfx/vmwgfx_surface.c in the Linux kernel through 4.10.6 does not validate addition of certain levels data, which allows local users to trigger an integer overflow and out-of-bounds write, and cause a denial of service (system hang or crash) or possibly gain privileges, via a cra...