CVE-2018-1091

MEDIUM Year: 2018
CVSS v3 Score
5.5
Medium
CVSS v2 Score
4.9
Medium
Weakness Type
CWE-391
View all →

Vulnerability Description

In the flush_tmregs_to_thread function in arch/powerpc/kernel/ptrace.c in the Linux kernel before 4.13.5, a guest kernel crash can be triggered from unprivileged userspace during a core dump on a POWER host due to a missing processor feature check and an erroneous use of transactional memory (TM) instructions in the core dump path, leading to a denial of service.

Related Vulnerabilities

CVE-2023-0572

MEDIUM
CVSS:5.3(Medium)

Unchecked Error Condition in GitHub repository froxlor/froxlor prior to 2.0.10.

CWE-3912023

CVE-2023-32871

MEDIUM
CVSS:5.3(Medium)

In DA, there is a possible permission bypass due to an incorrect status check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not ...

CWE-3912023

CVE-2022-20849

MEDIUM
CVSS:6.1(Medium)

A vulnerability in the Broadband Network Gateway PPP over Ethernet (PPPoE) feature of Cisco IOS XR Software could allow an unauthenticated, adjacent attacker to cause the PPPoE process to continu...

CWE-3912022

CVE-2020-14383

MEDIUM
CVSS:6.5(Medium)

A flaw was found in samba's DNS server. An authenticated user could use this flaw to the RPC server to crash. This RPC server, which also serves protocols other than dnsserver, will be restarted after...

CWE-3912020

CVE-2022-22160

MEDIUM
CVSS:6.5(Medium)

An Unchecked Error Condition vulnerability in the subscriber management daemon (smgd) of Juniper Networks Junos OS allows an unauthenticated adjacent attacker to cause a crash of and thereby a Denial ...

CWE-3912022

CVE-2017-7496

HIGH
CVSS:7.0(High)

fedora-arm-installer up to and including 1.99.16 is vulnerable to local privilege escalation due to lack of checking the error condition of mount operation failure on unsafely created temporary direct...

CWE-3912017