|
257991
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
Race condition in the netlink_dump function in net/netlink/af_netlink.c in the Linux kernel before 4.6.3 allows local users to cause a denial of service (double free) or possibly have unspecified oth…
|
CWE-362
CWE-415
Race Condition
Double Free
|
CVE-2016-9806
|
2024-11-21 12:01 |
2016-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257992
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
Race condition in the snd_pcm_period_elapsed function in sound/core/pcm_lib.c in the ALSA subsystem in the Linux kernel before 4.7 allows local users to cause a denial of service (use-after-free) or …
|
CWE-362
CWE-416
Race Condition
Use After Free
|
CVE-2016-9794
|
2024-11-21 12:01 |
2016-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257993
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
The sock_setsockopt function in net/core/sock.c in the Linux kernel before 4.8.14 mishandles negative values of sk_sndbuf and sk_rcvbuf, which allows local users to cause a denial of service (memory …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-9793
|
2024-11-21 12:01 |
2016-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257994
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
KVM in the Linux kernel before 4.8.12, when I/O APIC is enabled, does not properly restrict the VCPU index, which allows guest OS users to gain host OS privileges or cause a denial of service (out-of…
|
CWE-125
Out-of-bounds Read
|
CVE-2016-9777
|
2024-11-21 12:01 |
2016-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257995
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
arch/x86/kvm/emulate.c in the Linux kernel before 4.8.12 does not properly initialize Code Segment (CS) in certain error cases, which allows local users to obtain sensitive information from kernel st…
|
CWE-200
Information Exposure
|
CVE-2016-9756
|
2024-11-21 12:01 |
2016-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257996
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
The netfilter subsystem in the Linux kernel before 4.9 mishandles IPv6 reassembly, which allows local users to cause a denial of service (integer overflow, out-of-bounds write, and GPF) or possibly h…
|
CWE-787
Out-of-bounds Write
|
CVE-2016-9755
|
2024-11-21 12:01 |
2016-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257997
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
Multiple memory leaks in error paths in fs/xfs/xfs_attr_list.c in the Linux kernel before 4.5.1 allow local users to cause a denial of service (memory consumption) via crafted XFS filesystem operatio…
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2016-9685
|
2024-11-21 12:01 |
2016-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257998
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
arch/x86/kvm/vmx.c in the Linux kernel through 4.9 mismanages the #BP and #OF exceptions, which allows guest OS users to cause a denial of service (guest OS crash) by declining to handle an exception…
|
CWE-388
7PK - Errors
|
CVE-2016-9588
|
2024-11-21 12:01 |
2016-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257999
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
The blk_rq_map_user_iov function in block/blk-map.c in the Linux kernel before 4.8.14 does not properly restrict the type of iterator, which allows local users to read or write to arbitrary kernel me…
|
CWE-416
Use After Free
|
CVE-2016-9576
|
2024-11-21 12:01 |
2016-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258000
|
5.4 |
MEDIUM
Network
|
s9y
|
serendipity
|
Multiple cross-site scripting (XSS) vulnerabilities in Serendipity before 2.0.5 allow remote authenticated users to inject arbitrary web script or HTML via a category or directory name.
|
CWE-79
Cross-site Scripting
|
CVE-2016-9681
|
2024-11-21 12:01 |
2016-12-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
