Linux enterprise software development kit
This hub aggregates every CVE we track for Linux enterprise software development kit, a product in the operating systems space. Use it to gauge the current risk picture and drill into individual advisories.
296
CVEs tracked
95
Critical
38
High
11
In CISA KEV
Severity distribution
MEDIUM132CRITICAL95HIGH38LOW31
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
2024-072026-06
Latest CVEs
The 15 most recently published vulnerabilities affecting Linux enterprise software development kit.
- CVE-2022-27239In cifs-utils through 6.14, a stack-based buffer overflow when parsing the mount.cifs ip= command-line argument could lead to local attackers gaining root privileges.7.8
- CVE-2020-8025outdated entries in permissions profiles for /var/lib/pcp/tmp/* may cause security issues6.1
- CVE-2014-1947Stack-based buffer overflow in the WritePSDImage function in coders/psd.c in ImageMagick 6.5.4 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrar...7.8
- CVE-2015-5239Integer overflow in the VNC display driver in QEMU before 2.1.0 allows attachers to cause a denial of service (process crash) via a CLIENT_CUT_TEXT message, which triggers an infinite loop.6.5
- CVE-2015-1931IBM Java Security Components in IBM SDK, Java Technology Edition 8 before SR1 FP10, 7 R1 before SR3 FP10, 7 before SR9 FP10, 6 R1 before SR8 FP7, 6 before SR16 FP7, and 5.0 before SR16 FP13 stores ...5.5
- CVE-2019-11038Uninitialized read in gdImageCreateFromXbm5.3
- CVE-2017-16232LibTIFF 4.0.8 has multiple memory leak vulnerabilities, which allow attackers to cause a denial of service (memory consumption), as demonstrated by tif_open.c, tif_lzw.c, and tif_aux.c. NOTE: Third...7.5
- CVE-2017-14804package builds could use directory traversal to write outside of target area9.9
- CVE-2017-18017The tcpmss_mangle_packet function in net/netfilter/xt_TCPMSS.c in the Linux kernel before 4.11, and 4.9.x before 4.9.36, allows remote attackers to cause a denial of service (use-after-free and mem...9.8
- CVE-2015-5300The panic_gate check in NTP before 4.2.8p5 is only re-enabled after the first change to the system clock that was greater than 128 milliseconds by default, which allows remote attackers to set NTP ...7.5
- CVE-2017-1000366glibc contains a vulnerability that allows specially crafted LD_LIBRARY_PATH values to manipulate the heap/stack, causing them to alias, potentially resulting in arbitrary code execution. Please no...7.8
- CVE-2016-4473/ext/phar/phar_object.c in PHP 7.0.7 and 5.6.x allows remote attackers to execute arbitrary code. NOTE: Introduced as part of an incomplete fix to CVE-2015-6833.9.8
- CVE-2015-8567Memory leak in net/vmxnet3.c in QEMU allows remote attackers to cause a denial of service (memory consumption).7.7
- CVE-2016-9957Stack-based buffer overflow in game-music-emu before 0.6.1.7.8
- CVE-2016-9958game-music-emu before 0.6.1 allows remote attackers to write to arbitrary memory locations.7.8
Product normalization is registry-driven with AI assist and human review. How it works