Ingo Molnar

5 exploits Active since Nov 2009
CVE-2023-5717 NOMISEC HIGH STUB
Linux Kernel < 3.3 - Out-of-Bounds Write
A heap out-of-bounds write vulnerability in the Linux kernel's Linux Kernel Performance Events (perf) component can be exploited to achieve local privilege escalation. If perf_read_group() is called while an event's sibling_list is smaller than its child's sibling_list, it can increment or write to memory locations outside of the allocated buffer. We recommend upgrading past commit 32671e3799ca2e4590773fd0e63aaa4229e50c06.
CVSS 7.8
CVE-2015-2672 WRITEUP MEDIUM WRITEUP
Linux Kernel < 3.19.1 - Improper Input Validation
The xsave/xrstor implementation in arch/x86/include/asm/xsave.h in the Linux kernel before 3.19.2 creates certain .altinstr_replacement pointers and consequently does not provide any protection against instruction faulting, which allows local users to cause a denial of service (panic) by triggering a fault, as demonstrated by an unaligned memory operand or a non-canonical address memory operand.
CVSS 5.5
CVE-2018-20784 WRITEUP CRITICAL WRITEUP
Linux Kernel < 4.14.93 - Infinite Loop
In the Linux kernel before 4.20.2, kernel/sched/fair.c mishandles leaf cfs_rq's, which allows attackers to cause a denial of service (infinite loop in update_blocked_averages) or possibly have unspecified other impact by inducing a high load.
CVSS 9.8
EIP-2026-103353 EXPLOITDB c WORKING POC
Linux Kernel 2.6.32-rc1 (x86-64) - Register Leak
CVE-2009-3547 EXPLOITDB HIGH c WORKING POC
Linux Kernel < 2.6.31.14 - Race Condition
Multiple race conditions in fs/pipe.c in the Linux kernel before 2.6.32-rc6 allow local users to cause a denial of service (NULL pointer dereference and system crash) or gain privileges by attempting to open an anonymous pipe via a /proc/*/fd/ pathname.
CVSS 7.0