Linux » Linux Kernel : Security Vulnerabilities, CVEs, Published In April 2015
net/rds/sysctl.c in the Linux kernel before 3.19 uses an incorrect data type in a sysctl table, which allows local users to obtain potentially sensitive information from kernel memory or possibly have unspecified other impact by accessing a sysctl entry.
Max CVSS
4.6
EPSS Score
0.04%
Published
2015-04-21
Updated
2017-01-03
net/llc/sysctl_net_llc.c in the Linux kernel before 3.19 uses an incorrect data type in a sysctl table, which allows local users to obtain potentially sensitive information from kernel memory or possibly have unspecified other impact by accessing a sysctl entry.
Max CVSS
4.6
EPSS Score
0.04%
Published
2015-04-21
Updated
2018-10-17
The IPv4 implementation in the Linux kernel before 3.18.8 does not properly consider the length of the Read-Copy Update (RCU) grace period for redirecting lookups in the absence of caching, which allows remote attackers to cause a denial of service (memory consumption or system crash) via a flood of packets.
Max CVSS
7.8
EPSS Score
11.58%
Published
2015-04-05
Updated
2023-01-26
3 vulnerabilities found