Medium
CVE-1999-0720
The pt_chown command in Linux allows local users to modify TTY terminal devices that belong to other users.
Tag: Linux Kernel
All CVEs associated with "Linux Kernel". Page 168/168 • 20117 CVEs.
Subscribe CVEs: RSS for “Linux Kernel” · RSS (High+Critical only)
About “Linux Kernel”
A curated feed of “Linux Kernel”-related CVEs appears below. We currently track 20117 CVEs for this tag (all time). In the last 365 days, 6176 were published. Average CVSS is 6.4 (all time; 6.4 over 365d), and 35% are rated High/Critical (all time). Top CWEs (last 365 days): CWE-476 - NULL Pointer Dereference, CWE-401 - Missing Release of Memory after Effective Lifetime, CWE-416 - Use After Free.
In our taxonomy this topic maps to a MODERATE impact class. Issues here typically affect operating system packages or kernels. Plan reboots or service restarts and coordinate rollouts across fleets. Use the filters below to sort by CVSS, risk and CWE. Each detail page highlights vendor advisories and mitigation tips.
CVEs tagged with this topic. Filters apply to the whole list (loaded from JSON).
CVSS ≥ 0.0
1999-08-23
1999-08-22
Critical
CVE-2000-0374
The default configuration of kdm in Caldera and Mandrake Linux, and possibly other distributions, allows XDMCP connections from any host, which allows remote attackers to obtain sensitive information…
1999-08-19
Medium
CVE-1999-0740
Remote attackers can cause a denial of service on Linux in.telnetd telnet daemon through a malformed TERM environmental variable.
1999-08-16
Medium
CVE-1999-0746
A default configuration of in.identd in SuSE Linux waits 120 seconds between requests, allowing a remote attacker to conduct a denial of service.
1999-07-27
High
CVE-1999-1018
IPChains in Linux kernels 2.2.10 and earlier does not reassemble IP fragments before checking the header information, which allows a remote attacker to bypass the filtering rules using several fragme…
1999-07-25
High
CVE-1999-0710
The Squid package in Red Hat Linux 5.2 and 6.0, and other distributions, installs cachemgr.cgi in a public web directory, which allows remote attackers to use it as an intermediary to connect to othe…
1999-07-11
High
CVE-1999-1166
Linux 2.0.37 does not properly encode the Custom segment limit, which allows local users to gain root privileges by accessing and modifying kernel memory.
1999-06-30
Low
CVE-1999-1348
Linuxconf on Red Hat Linux 6.0 and earlier does not properly disable PAM-based access to the shutdown command, which could allow local users to cause a denial of service.
1999-06-26
High
CVE-1999-0733
Buffer overflow in VMWare 1.0.1 for Linux via a long HOME environmental variable.
1999-06-09
High
CVE-2000-0118
The Red Hat Linux su program does not log failed password guesses if the su process is killed before it times out, which allows local attackers to conduct brute force password guessing.
1999-06-08
Low
CVE-1999-1496
Sudo 1.5 in Debian Linux 2.1 and Red Hat 6.0 allows local users to determine the existence of arbitrary files by attempting to execute the target filename as a program, which generates a different er…
1999-06-01
Medium
CVE-1999-0804
Denial of service in Linux 2.2.x kernels via malformed ICMP packets containing unusual types, codes, and IP header lengths.
Medium
CVE-2000-0364
screen and rxvt in Red Hat Linux 6.0 do not properly set the modes of tty devices, which allows local users to write to other ttys.
Medium
CVE-2000-0365
Red Hat Linux 6.0 installs the /dev/pts file system with insecure modes, which allows local users to write to other tty devices.
1999-03-17
High
CVE-1999-0421
During a reboot after an installation of Linux Slackware 3.6, a remote attacker can obtain root access by logging in to the root account without a password.
High
CVE-1999-0462
suidperl in Linux Perl does not check the nosuid mount option on file systems, allowing local users to gain root access by placing a setuid script in a mountable file system, e.g. a CD-ROM or floppy…
1999-03-04
Medium
CVE-1999-0409
Buffer overflow in gnuplot in Linux version 3.5 allows local users to obtain root access.
1999-03-01
Medium
CVE-1999-0414
In Linux before version 2.0.36, remote attackers can spoof a TCP connection and pass data to the application layer before fully establishing the connection.
Critical
CVE-1999-0426
The default permissions of /dev/kmem in Linux versions before 2.0.36 allows IP spoofing.
Medium
CVE-1999-0431
Linux 2.2.3 and earlier allow a remote attacker to perform an IP fragmentation attack, causing a denial of service.
1999-02-20
High
CVE-1999-1168
install.iss installation script for Internet Security Scanner (ISS) for Linux, version 5.3, allows local users to change the permissions of arbitrary files via a symlink attack on a temporary file.
1999-02-19
Low
CVE-1999-0460
Buffer overflow in Linux autofs module through long directory names allows local users to perform a denial of service.
1999-02-18
Low
CVE-1999-1495
xtvscreen in SuSE Linux 6.0 allows local users to overwrite arbitrary files via a symlink attack on the pic000.pnm file.
High
CVE-2000-0367
Vulnerability in eterm 0.8.8 in Debian GNU/Linux allows an attacker to gain root privileges.
1999-02-16
Low
CVE-1999-0374
Debian GNU/Linux cfengine package is susceptible to a symlink attack.
1999-02-01
High
CVE-1999-0373
Buffer overflow in the "Super" utility in Debian GNU/Linux, and other operating systems, allows local users to execute commands as root.
Medium
CVE-1999-0403
A bug in Cyrix CPUs on Linux allows local users to perform a denial of service.
Medium
CVE-1999-0459
Local users can perform a denial of service in Alpha Linux, using MILO to force a reboot.
1999-01-29
Critical
CVE-2000-0370
The debug option in Caldera Linux smail allows remote attackers to execute commands via shell metacharacters in the -D option for the rmail command.
1999-01-28
Critical
CVE-1999-0461
Versions of rpcbind including Linux, IRIX, and Wietse Venema's rpcbind allow a remote attacker to insert and delete entries by spoofing a source address.
1999-01-26
Medium
CVE-1999-0400
Denial of service in Linux 2.2.0 running the ldd command on a core file.
1999-01-19
Low
CVE-1999-0451
Denial of service in Linux 2.0.36 allows local users to prevent any server from listening on any non-privileged port.
1999-01-17
High
CVE-1999-0457
Linux ftpwatch program allows local users to gain root privileges.
Medium
CVE-1999-0678
A default configuration of Apache on Debian GNU/Linux sets the ServerRoot to /usr/doc, which allows remote users to read documentation files for the entire server.
1999-01-04
High
CVE-1999-0390
Buffer overflow in Dosemu Slang library in Linux.
1999-01-03
High
CVE-1999-0389
Buffer overflow in the bootp server in the Debian Linux netstd package.
High
CVE-1999-0914
Buffer overflow in the FTP client in the Debian GNU/Linux netstd package.
1999-01-01
Critical
CVE-1999-0243
Linux cfingerd could be exploited to gain root access.
Medium
CVE-1999-0398
In some instances of SSH 1.2.27 and 2.0.11 on Linux systems, SSH will allow users with expired accounts to login.
Low
CVE-1999-0401
A race condition in Linux 2.2.1 allows local users to read arbitrary memory from /proc files.
Critical
CVE-1999-0661
A system is running a version of software that was replaced with a Trojan Horse at one of its distribution points, such as (1) TCP Wrappers 7.6, (2) util-linux 2.9g, (3) wuarchive ftpd (wuftpd) 2.2 a…
Critical
CVE-1999-0698
Denial of service in IP protocol logger (ippl) on Red Hat and Debian Linux.
1998-12-27
Low
CVE-1999-1285
Linux 2.1.132 and earlier allows local users to cause a denial of service (resource exhaustion) by reading a large buffer from a random device (e.g. /dev/urandom), which cannot be interrupted until t…
1998-12-18
Low
CVE-1999-1173
Corel Word Perfect 8 for Linux creates a temporary working directory with world-writable permissions, which allows local users to (1) modify Word Perfect behavior by modifying files in the working di…
1998-12-04
Critical
CVE-1999-0798
Buffer overflow in bootpd on OpenBSD, FreeBSD, and Linux systems via a malformed header type.
1998-12-01
Medium
CVE-1999-0342
Linux PAM modules allow local users to gain root access using temporary files.
1998-11-26
High
CVE-1999-1411
The installation of the fsp package 2.71-10 in Debian GNU/Linux 2.0 adds the anonymous FTP user without notifying the administrator, which could automatically enable anonymous FTP on some servers suc…
1998-10-12
Critical
CVE-1999-0002
Buffer overflow in NFS mountd gives root access to remote attackers, mostly in Linux systems.
1998-10-08
High
CVE-1999-1381
Buffer overflow in dbadmin CGI program 1.0.1 on Linux allows remote attackers to execute arbitrary commands.
1998-08-04
High
CVE-1999-0262
Hylafax faxsurvey CGI script on Linux allows remote attackers to execute arbitrary commands via shell metacharacters in the query string.
1998-07-29
Low
CVE-1999-1406
dumpreg in Red Hat Linux 5.1 opens /dev/mem with O_RDWR access, which allows local users to cause a denial of service (crash) by redirecting fd 1 (stdout) to the kernel.
1998-07-13
High
CVE-1999-1434
login in Slackware Linux 3.2 through 3.5 does not properly check for an error when the /etc/group file is missing, which prevents it from dropping privileges, causing it to assign root privileges to…
1998-06-30
Low
CVE-1999-1441
Linux 2.0.34 does not properly prevent users from sending SIGIO signals to arbitrary processes, which allows local users to cause a denial of service by sending SIGIO to processes that do not catch i…
1998-06-22
High
CVE-1999-1442
Bug in AMD K6 processor on Linux 2.0.x and 2.1.x kernels allows local users to cause a denial of service (crash) via a particular sequence of instructions, possibly related to accessing addresses out…
1998-04-06
Low
CVE-1999-1498
Slackware Linux 3.4 pkgtool allows local attacker to read and write to arbitrary files via a symlink attack on the reply file.
1998-03-09
Low
CVE-1999-1407
ifdhcpc-done script for configuring DHCP on Red Hat Linux 5 allows local users to append text to arbitrary files via a symlink attack on the dhcplog file.
1998-03-01
High
CVE-1999-0330
Linux bdash game has a buffer overflow that allows local users to gain root access.
1998-02-25
Low
CVE-1999-1229
Quake 2 server 3.13 on Linux does not properly check file permissions for the config.cfg configuration file, which allows local users to read arbitrary files via a symlink from config.cfg to the targ…
1998-01-01
High
CVE-1999-0341
Buffer overflow in the Linux mail program "deliver" allows local users to gain root access.
1997-12-01
High
CVE-1999-0340
Buffer overflow in Linux Slackware crond program allows local users to gain root access.
1997-11-01
Medium
CVE-1999-0216
Denial of service of inetd on Linux through SYN and RST packets.
1997-09-01
Medium
CVE-1999-0183
Linux implementations of TFTP would allow access to files outside the restricted directory.
1997-08-24
Medium
CVE-1999-1225
rpc.mountd on Linux, Ultrix, and possibly other operating systems, allows remote attackers to determine the existence of a file on the server by attempting to mount that file, which generates differe…
1997-07-17
High
CVE-1999-1182
Buffer overflow in run-time linkers (1) ld.so or (2) ld-linux.so for Linux systems allows local users to gain privileges by calling a setuid program with a long program name (argv[0]) and forcing ld.…
1997-04-02
Medium
CVE-1999-1387
Windows NT 4.0 SP2 allows remote attackers to cause a denial of service (crash), possibly via malformed inputs or packets, such as those generated by a Linux smbmount command that was compiled on the…
1997-03-04
High
CVE-1999-1489
Buffer overflow in TestChip function in XFree86 SuperProbe in Slackware Linux 3.1 allows local users to gain root privileges via a long -nopr argument.
1997-02-05
High
CVE-1999-0298
ypbind with -ypset and -ypsetme options activated in Linux Slackware and SunOS allows local and remote attackers to overwrite files via a .. (dot dot) attack.
1997-02-03
Critical
CVE-1999-1299
rcp on various Linux systems including Red Hat 4.0 allows a "nobody" user or other user with UID of 65535 to overwrite arbitrary files, since 65535 is interpreted as -1 by chown and other system call…
1996-10-25
High
CVE-1999-0032
Buffer overflow in lpr, as used in BSD-based systems including Linux, allows local users to execute arbitrary code as root via a long -C (classification) command line option.
1996-07-16
Low
CVE-1999-1572
cpio on FreeBSD 2.1.0, Debian GNU/Linux 3.0, and possibly other operating systems, uses a 0 umask when creating files using the -O (archive) or -F options, which creates the files with mode 0666 and…
1996-07-09
High
CVE-1999-0137
The dip program on many Linux systems allows local users to gain root access via a buffer overflow.
1996-01-02
High
CVE-1999-1186
rxvt, when compiled with the PRINT_PIPE option in various Linux operating systems including Linux Slackware 3.0 and RedHat 2.1, allows local users to gain root privileges by specifying a malicious pr…
1995-12-01
Low
CVE-1999-0123
Race condition in Linux mailx command allows local users to read user files.
High
CVE-1999-0316
Buffer overflow in Linux splitvt command gives root access to local users.
1995-09-07
Medium
CVE-1999-0245
Some configurations of NIS+ in Linux allowed attackers to log in as the user "+".
1995-03-01
High
CVE-1999-0242
Remote attackers can access mail files via POP3 in some Linux systems that are using shadow passwords.
1994-12-19
Medium
CVE-2000-0508
rpc.lockd in Red Hat Linux 6.1 and 6.2 allows remote attackers to cause a denial of service via a malformed request.