Latest CVE Feed

Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.

Latest Critical Actively Exploited Remotely Exploitable

5.5

MEDIUM

CVE-2016-3156

The IPv4 implementation in the Linux kernel before 4.5.2 mishandles destruction of device objects, which allows guest OS users to cause a denial of service (host OS networking outage) by arranging for a large number of IP addresses....

Affected Products : linux_kernel ubuntu_linux suse_linux_enterprise_desktop suse_linux_enterprise_server suse_linux_enterprise_software_development_kit suse_linux_enterprise_real_time_extension suse_linux_enterprise_debuginfo suse_linux_enterprise_live_patching suse_linux_enterprise_module_for_public_cloud suse_linux_enterprise_workstation_extension
Published: Apr. 27, 2016

Modified: Apr. 12, 2025
4.9

MEDIUM

CVE-2016-3139

The wacom_probe function in drivers/input/tablet/wacom_sys.c in the Linux kernel before 3.17 allows physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) via a crafted endpoints value in a USB device descr...

Affected Products : linux_kernel suse_linux_enterprise_desktop suse_linux_enterprise_server suse_linux_enterprise_software_development_kit suse_linux_enterprise_real_time_extension suse_linux_enterprise_debuginfo suse_linux_enterprise_live_patching suse_linux_enterprise_module_for_public_cloud suse_linux_enterprise_workstation_extension
Published: Apr. 27, 2016

Modified: Apr. 12, 2025
7.8

HIGH

CVE-2016-3135

Integer overflow in the xt_alloc_table_info function in net/netfilter/x_tables.c in the Linux kernel through 4.5.2 on 32-bit platforms allows local users to gain privileges or cause a denial of service (heap memory corruption) via an IPT_SO_SET_REPLACE se...

Affected Products : linux_kernel ubuntu_linux
Published: Apr. 27, 2016

Modified: Apr. 12, 2025
8.4

HIGH

CVE-2016-3134

The netfilter subsystem in the Linux kernel through 4.5.2 does not validate certain offset fields, which allows local users to gain privileges or cause a denial of service (heap memory corruption) via an IPT_SO_SET_REPLACE setsockopt call....

Affected Products : linux_kernel suse_linux_enterprise_desktop suse_linux_enterprise_server suse_linux_enterprise_software_development_kit suse_linux_enterprise_real_time_extension suse_linux_enterprise_debuginfo suse_linux_enterprise_live_patching suse_linux_enterprise_module_for_public_cloud suse_linux_enterprise_workstation_extension
Published: Apr. 27, 2016

Modified: Apr. 12, 2025
6.2

MEDIUM

CVE-2016-2847

fs/pipe.c in the Linux kernel before 4.5 does not limit the amount of unread data in pipes, which allows local users to cause a denial of service (memory consumption) by creating many pipes with non-default sizes....

Affected Products : linux_kernel suse_linux_enterprise_desktop suse_linux_enterprise_server suse_linux_enterprise_software_development_kit suse_linux_enterprise_real_time_extension suse_linux_enterprise_debuginfo suse_linux_enterprise_live_patching suse_linux_enterprise_module_for_public_cloud suse_linux_enterprise_workstation_extension
Published: Apr. 27, 2016

Modified: Apr. 12, 2025
4.9

MEDIUM

CVE-2016-2782

The treo_attach function in drivers/usb/serial/visor.c in the Linux kernel before 4.5 allows physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact by inserting a U...

Affected Products : linux_kernel linux_enterprise_server linux_enterprise_desktop linux_enterprise_software_development_kit linux_enterprise_debuginfo linux_enterprise_workstation_extension linux_enterprise_real_time_extension linux_enterprise_module_for_public_cloud
Published: Apr. 27, 2016

Modified: Apr. 12, 2025
5.5

MEDIUM

CVE-2016-2550

The Linux kernel before 4.5 allows local users to bypass file-descriptor limits and cause a denial of service (memory consumption) by leveraging incorrect tracking of descriptor ownership and sending each descriptor over a UNIX socket before closing it. N...

Affected Products : linux_kernel
Published: Apr. 27, 2016

Modified: Apr. 12, 2025
6.2

MEDIUM

CVE-2016-2549

sound/core/hrtimer.c in the Linux kernel before 4.4.1 does not prevent recursive callback access, which allows local users to cause a denial of service (deadlock) via a crafted ioctl call....

Affected Products : linux_kernel
Published: Apr. 27, 2016

Modified: Apr. 12, 2025
6.2

MEDIUM

CVE-2016-2548

sound/core/timer.c in the Linux kernel before 4.4.1 retains certain linked lists after a close or stop action, which allows local users to cause a denial of service (system crash) via a crafted ioctl call, related to the (1) snd_timer_close and (2) _snd_t...

Affected Products : linux_kernel
Published: Apr. 27, 2016

Modified: Apr. 12, 2025
5.1

MEDIUM

CVE-2016-2547

sound/core/timer.c in the Linux kernel before 4.4.1 employs a locking approach that does not consider slave timer instances, which allows local users to cause a denial of service (race condition, use-after-free, and system crash) via a crafted ioctl call....

Affected Products : linux_kernel
Published: Apr. 27, 2016

Modified: Apr. 12, 2025
5.1

MEDIUM

CVE-2016-2546

sound/core/timer.c in the Linux kernel before 4.4.1 uses an incorrect type of mutex, which allows local users to cause a denial of service (race condition, use-after-free, and system crash) via a crafted ioctl call....

Affected Products : linux_kernel
Published: Apr. 27, 2016

Modified: Apr. 12, 2025
5.1

MEDIUM

CVE-2016-2545

The snd_timer_interrupt function in sound/core/timer.c in the Linux kernel before 4.4.1 does not properly maintain a certain linked list, which allows local users to cause a denial of service (race condition and system crash) via a crafted ioctl call....

Affected Products : linux_kernel
Published: Apr. 27, 2016

Modified: Apr. 12, 2025
5.1

MEDIUM

CVE-2016-2544

Race condition in the queue_delete function in sound/core/seq/seq_queue.c in the Linux kernel before 4.4.1 allows local users to cause a denial of service (use-after-free and system crash) by making an ioctl call at a certain time....

Affected Products : linux_kernel
Published: Apr. 27, 2016

Modified: Apr. 12, 2025
6.2

MEDIUM

CVE-2016-2543

The snd_seq_ioctl_remove_events function in sound/core/seq/seq_clientmgr.c in the Linux kernel before 4.4.1 does not verify FIFO assignment before proceeding with FIFO clearing, which allows local users to cause a denial of service (NULL pointer dereferen...

Affected Products : linux_kernel
Published: Apr. 27, 2016

Modified: Apr. 12, 2025
4.9

MEDIUM

CVE-2016-2384

Double free vulnerability in the snd_usbmidi_create function in sound/usb/midi.c in the Linux kernel before 4.5 allows physically proximate attackers to cause a denial of service (panic) or possibly have unspecified other impact via vectors involving an i...

Affected Products : linux_kernel suse_linux_enterprise_real_time_extension
Published: Apr. 27, 2016

Modified: Apr. 12, 2025
5.5

MEDIUM

CVE-2016-2383

The adjust_branches function in kernel/bpf/verifier.c in the Linux kernel before 4.5 does not consider the delta in the backward-jump case, which allows local users to obtain sensitive information from kernel memory by creating a packet filter and then lo...

Affected Products : linux_kernel ubuntu_linux leap
Published: Apr. 27, 2016

Modified: Apr. 12, 2025
4.9

MEDIUM

CVE-2016-2184

The create_fixed_stream_quirk function in sound/usb/quirks.c in the snd-usb-audio driver in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of service (NULL pointer dereference or double free, and system crash) via a ...

Affected Products : linux_kernel ubuntu_linux suse_linux_enterprise_desktop suse_linux_enterprise_server suse_linux_enterprise_software_development_kit suse_linux_enterprise_real_time_extension suse_linux_enterprise_debuginfo suse_linux_enterprise_live_patching suse_linux_enterprise_module_for_public_cloud suse_linux_enterprise_workstation_extension
Published: Apr. 27, 2016

Modified: Apr. 12, 2025
7.8

HIGH

CVE-2016-2143

The fork implementation in the Linux kernel before 4.5 on s390 platforms mishandles the case of four page-table levels, which allows local users to cause a denial of service (system crash) or possibly have unspecified other impact via a crafted applicatio...

Affected Products : linux_kernel enterprise_linux debian_linux linux
Published: Apr. 27, 2016

Modified: Apr. 12, 2025
5.5

MEDIUM

CVE-2016-2085

The evm_verify_hmac function in security/integrity/evm/evm_main.c in the Linux kernel before 4.5 does not properly copy data, which makes it easier for local users to forge MAC values via a timing side-channel attack....

Affected Products : linux_kernel
Published: Apr. 27, 2016

Modified: Apr. 12, 2025
7.4

HIGH

CVE-2016-2069

Race condition in arch/x86/mm/tlb.c in the Linux kernel before 4.4.1 allows local users to gain privileges by triggering access to a paging structure by a different CPU....

Affected Products : linux_kernel ubuntu_linux
Published: Apr. 27, 2016

Modified: Apr. 12, 2025

Showing 20 of 292795 Results

Browse by Apps

Latest CVE Feed

5.5

4.9

7.8

8.4

6.2

4.9

5.5

6.2

6.2

5.1

5.1

5.1

5.1

6.2

4.9

5.5

4.9

7.8

5.5

7.4

Theme Customizer

Layout

Vertical

Horizontal

Two Column

Color Scheme

Light

Dark

Layout Width

Fluid

Boxed

Layout Position

Topbar Color

Light

Dark

Sidebar Size

Default

Compact

Small (Icon View)

Small Hover View

Sidebar View

Default

Detached

Sidebar Color

Light

Dark

Gradient

Preloader

Enable

Disable