Skip to main content
CVE-2014-5077 HIGH PATCH Act Now

The sctp_assoc_update function in net/sctp/associola.c in the Linux kernel through 3.15.8, when SCTP authentication is enabled, allows remote attackers to cause a denial of service (NULL pointer. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable. Epss exploitation probability 12.8%.

Denial Of Service Linux Null Pointer Dereference Microsoft Linux Kernel +7
NVD GitHub
CVSS 2.0
7.1
EPSS
12.8%
CVE-2014-3534 HIGH PATCH This Week

arch/s390/kernel/ptrace.c in the Linux kernel before 3.15.8 on the s390 platform does not properly restrict address-space control operations in PTRACE_POKEUSR_AREA requests, which allows local users. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. This Improper Privilege Management vulnerability could allow attackers to escalate privileges to gain unauthorized elevated access.

Privilege Escalation Linux Linux Kernel Debian Linux
NVD GitHub
CVSS 2.0
7.2
EPSS
0.1%
CVE-2014-0972 HIGH This Week

The kgsl graphics driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, does not properly prevent write access to. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. No vendor patch available.

Qualcomm Privilege Escalation Linux Google Android Msm
NVD
CVSS 2.0
7.2
EPSS
0.0%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy