Lars-Peter Clausen

3 exploits Active since Mar 2013
CVE-2014-4656 WRITEUP WRITEUP
Linux Kernel < 3.15.2 - Denial of Service via ALSA Control Integer Overflow
Multiple integer overflows in sound/core/control.c in the ALSA control implementation in the Linux kernel before 3.15.2 allow local users to cause a denial of service by leveraging /dev/snd/controlCX access, related to (1) index values in the snd_ctl_add function and (2) numid values in the snd_ctl_remove_numid_conflict function.
CVE-2013-1848 WRITEUP WRITEUP
Linux Kernel < 3.8.3 - Local Privilege Escalation via Format String in ext3 Superblock Handling
fs/ext3/super.c in the Linux kernel before 3.8.4 uses incorrect arguments to functions in certain circumstances related to printk input, which allows local users to conduct format-string attacks and possibly gain privileges via a crafted application.
CVE-2016-7912 WRITEUP HIGH WRITEUP
Linux Kernel 3.15-3.16.40 - Use-After-Free in ffs_user_copy_worker
Use-after-free vulnerability in the ffs_user_copy_worker function in drivers/usb/gadget/function/f_fs.c in the Linux kernel before 4.5.3 allows local users to gain privileges by accessing an I/O data structure after a certain callback call.
CVSS 7.8