|
273101
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
The tty_set_termios_ldisc function in drivers/tty/tty_ldisc.c in the Linux kernel before 4.5 allows local users to obtain sensitive information from kernel memory by reading a tty data structure.
|
CWE-200
Information Exposure
|
CVE-2015-8964
|
2024-11-21 11:39 |
2016-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273102
|
7.0 |
HIGH
Local
|
linux
|
linux_kernel
|
Race condition in kernel/events/core.c in the Linux kernel before 4.4 allows local users to gain privileges or cause a denial of service (use-after-free) by leveraging incorrect handling of an sweven…
|
CWE-362
CWE-416
Race Condition
Use After Free
|
CVE-2015-8963
|
2024-11-21 11:39 |
2016-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273103
|
7.3 |
HIGH
Local
|
linux
|
linux_kernel
|
Double free vulnerability in the sg_common_write function in drivers/scsi/sg.c in the Linux kernel before 4.4 allows local users to gain privileges or cause a denial of service (memory corruption and…
|
CWE-415
Double Free
|
CVE-2015-8962
|
2024-11-21 11:39 |
2016-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273104
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
The __ext4_journal_stop function in fs/ext4/ext4_jbd2.c in the Linux kernel before 4.3.3 allows local users to gain privileges or cause a denial of service (use-after-free) by leveraging improper acc…
|
CWE-416
Use After Free
|
CVE-2015-8961
|
2024-11-21 11:39 |
2016-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273105
|
9.8 |
CRITICAL
Network
|
squareup
|
git-fastclone
|
git-fastclone before 1.0.5 passes user modifiable strings directly to a shell command. An attacker can execute malicious commands by modifying the strings that are passed as arguments to "cd " and "g…
|
CWE-77
Command Injection
|
CVE-2015-8969
|
2024-11-21 11:39 |
2016-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273106
|
8.8 |
HIGH
Network
|
squareup
|
git-fastclone
|
git-fastclone before 1.0.1 permits arbitrary shell command execution from .gitmodules. If an attacker can instruct a user to run a recursive clone from a repository they control, they can get a clien…
|
CWE-77
Command Injection
|
CVE-2015-8968
|
2024-11-21 11:39 |
2016-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273107
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
fs/overlayfs/copy_up.c in the Linux kernel before 4.2.6 uses an incorrect cleanup code path, which allows local users to cause a denial of service (dentry reference leak) via filesystem operations on…
|
CWE-399
Resource Management Errors
|
CVE-2015-8953
|
2024-11-21 11:39 |
2016-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273108
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
The mbcache feature in the ext2 and ext4 filesystem implementations in the Linux kernel before 4.6 mishandles xattr block caching, which allows local users to cause a denial of service (soft lockup) …
|
CWE-19
Data Processing Errors
|
CVE-2015-8952
|
2024-11-21 11:39 |
2016-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273109
|
6.1 |
MEDIUM
Local
|
linux
google
|
linux_kernel
android
|
The rfcomm_sock_bind function in net/bluetooth/rfcomm/sock.c in the Linux kernel before 4.2 allows local users to obtain sensitive information or cause a denial of service (NULL pointer dereference) …
|
CWE-476
NULL Pointer Dereference
|
CVE-2015-8956
|
2024-11-21 11:39 |
2016-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273110
|
7.3 |
HIGH
Local
|
linux
google
|
linux_kernel
android
|
arch/arm64/kernel/perf_event.c in the Linux kernel before 4.1 on arm64 platforms allows local users to gain privileges or cause a denial of service (invalid pointer dereference) via vectors involving…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-8955
|
2024-11-21 11:39 |
2016-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
