Marc Kleine-Budde

7 exploits Active since Apr 2017
CVE-2017-8066 WRITEUP HIGH WRITEUP
Linux Kernel 4.9.x-4.10.x < 4.10.2 - Denial of Service via DMA Scatterlist Handling
drivers/net/can/usb/gs_usb.c in the Linux kernel 4.9.x and 4.10.x before 4.10.2 interacts incorrectly with the CONFIG_VMAP_STACK option, which allows local users to cause a denial of service (system crash or memory corruption) or possibly have unspecified other impact by leveraging use of more than one virtual page for a DMA scatterlist.
CVSS 7.8
CVE-2017-8342 WRITEUP HIGH WRITEUP
Radicale < 1.1.2 and 2.x < 2.0.0rc2 - Timing Attack via htpasswd Authentication
Radicale before 1.1.2 and 2.x before 2.0.0rc2 is prone to timing oracles and simple brute-force attacks when using the htpasswd authentication method.
CVSS 8.1
CVE-2019-19052 WRITEUP HIGH WRITEUP
Linux Kernel <5.3.11 - Memory Corruption
A memory leak in the gs_can_open() function in drivers/net/can/usb/gs_usb.c in the Linux kernel before 5.3.11 allows attackers to cause a denial of service (memory consumption) by triggering usb_submit_urb() failures, aka CID-fb5be6a7b486.
CVSS 7.5
CVE-2019-19947 WRITEUP MEDIUM WRITEUP
Linux Kernel < 5.4.6 - Information Disclosure via Uninitialized Memory in Kvaser USB CAN Driver
In the Linux kernel through 5.4.6, there are information leaks of uninitialized memory to a USB device in the drivers/net/can/usb/kvaser_usb/kvaser_usb_leaf.c driver, aka CID-da2311a6385c.
CVSS 4.6
CVE-2022-28388 WRITEUP MEDIUM WRITEUP
Linux kernel <5.17.1 - Use After Free
usb_8dev_start_xmit in drivers/net/can/usb/usb_8dev.c in the Linux kernel through 5.17.1 has a double free.
CVSS 5.5
CVE-2022-28389 WRITEUP MEDIUM WRITEUP
Linux kernel <5.17.1 - Use After Free
mcba_usb_start_xmit in drivers/net/can/usb/mcba_usb.c in the Linux kernel through 5.17.1 has a double free.
CVSS 5.5
CVE-2022-28390 WRITEUP HIGH WRITEUP
Linux kernel <5.17.1 - Memory Corruption
ems_usb_start_xmit in drivers/net/can/usb/ems_usb.c in the Linux kernel through 5.17.1 has a double free.
CVSS 7.8