|
266751
|
5.1 |
MEDIUM
Local
|
linux
|
linux_kernel
|
sound/core/timer.c in the Linux kernel before 4.4.1 employs a locking approach that does not consider slave timer instances, which allows local users to cause a denial of service (race condition, use…
|
CWE-362
Race Condition
|
CVE-2016-2547
|
2024-11-21 11:48 |
2016-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266752
|
5.1 |
MEDIUM
Local
|
linux
|
linux_kernel
|
sound/core/timer.c in the Linux kernel before 4.4.1 uses an incorrect type of mutex, which allows local users to cause a denial of service (race condition, use-after-free, and system crash) via a cra…
|
CWE-362
Race Condition
|
CVE-2016-2546
|
2024-11-21 11:48 |
2016-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266753
|
5.1 |
MEDIUM
Local
|
linux
|
linux_kernel
|
The snd_timer_interrupt function in sound/core/timer.c in the Linux kernel before 4.4.1 does not properly maintain a certain linked list, which allows local users to cause a denial of service (race c…
|
CWE-362
Race Condition
|
CVE-2016-2545
|
2024-11-21 11:48 |
2016-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266754
|
5.1 |
MEDIUM
Local
|
linux
|
linux_kernel
|
Race condition in the queue_delete function in sound/core/seq/seq_queue.c in the Linux kernel before 4.4.1 allows local users to cause a denial of service (use-after-free and system crash) by making …
|
CWE-362
Race Condition
|
CVE-2016-2544
|
2024-11-21 11:48 |
2016-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266755
|
6.2 |
MEDIUM
Local
|
linux
|
linux_kernel
|
The snd_seq_ioctl_remove_events function in sound/core/seq/seq_clientmgr.c in the Linux kernel before 4.4.1 does not verify FIFO assignment before proceeding with FIFO clearing, which allows local us…
|
NVD-CWE-Other
|
CVE-2016-2543
|
2024-11-21 11:48 |
2016-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266756
|
4.6 |
MEDIUM
Physics
|
linux
novell
|
linux_kernel
suse_linux_enterprise_real_time_extension
|
Double free vulnerability in the snd_usbmidi_create function in sound/usb/midi.c in the Linux kernel before 4.5 allows physically proximate attackers to cause a denial of service (panic) or possibly …
|
NVD-CWE-Other
|
CVE-2016-2384
|
2024-11-21 11:48 |
2016-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266757
|
5.5 |
MEDIUM
Local
|
linux
canonical
opensuse
|
linux_kernel
ubuntu_linux
leap
|
The adjust_branches function in kernel/bpf/verifier.c in the Linux kernel before 4.5 does not consider the delta in the backward-jump case, which allows local users to obtain sensitive information fr…
|
NVD-CWE-noinfo
|
CVE-2016-2383
|
2024-11-21 11:48 |
2016-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266758
|
8.1 |
HIGH
Network
|
allroundautomations
|
pl\/sql_developer
|
Allround Automations PL/SQL Developer 11 before 11.0.6 relies on unverified HTTP data for updates, which allows man-in-the-middle attackers to execute arbitrary code by modifying fields in the client…
|
CWE-345
Insufficient Verification of Data Authenticity
|
CVE-2016-2346
|
2024-11-21 11:48 |
2016-04-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266759
|
7.5 |
HIGH
Network
|
systech
|
syslink_sl-1000_modular_gateway_firmware
|
SysLINK SL-1000 Machine-to-Machine (M2M) Modular Gateway devices with firmware before 01A.8 use the same hardcoded encryption key across different customers' installations, which allows attackers to …
|
CWE-310
Cryptographic Issues
|
CVE-2016-2333
|
2024-11-21 11:48 |
2016-04-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266760
|
8.8 |
HIGH
Network
|
systech
|
syslink_sl-1000_modular_gateway_firmware
|
flu.cgi in the web interface on SysLINK SL-1000 Machine-to-Machine (M2M) Modular Gateway devices with firmware before 01A.8 allows remote authenticated users to execute arbitrary commands via the 506…
|
CWE-77
Command Injection
|
CVE-2016-2332
|
2024-11-21 11:48 |
2016-04-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
