Redhat » Enterprise Linux : Security Vulnerabilities, CVEs, Published In November 2017 (Memory corruption)
The rngapi_reset function in crypto/rng.c in the Linux kernel before 4.2 allows attackers to cause a denial of service (NULL pointer dereference).
Max CVSS
5.5
EPSS Score
0.06%
Published
2017-11-30
Updated
2023-02-12
The tower_probe function in drivers/usb/misc/legousbtower.c in the Linux kernel before 4.8.1 allows local users (who are physically proximate for inserting a crafted USB device) to gain privileges by leveraging a write-what-where condition that occurs after a race condition and a NULL pointer dereference.
Max CVSS
6.9
EPSS Score
0.04%
Published
2017-11-15
Updated
2019-05-08
2 vulnerabilities found