Linux Kernel CVE Statistics
18 Linux Kernel CVEs in September 2014
Full month · Source: NIST NVD
In September 2014, 18 Linux kernel CVEs were published, sourced from the NIST National Vulnerability Database. Of these, 6 were rated High severity and 12 Medium. No CVEs from this month have been confirmed as actively exploited via the CISA KEV catalog. September's 18 CVEs represent 13% of all 2014 Linux kernel CVEs , up from August's 8 (a 125% month-over-month increase) .
18
Total CVEs
0
Critical
6
High
12
Medium
0
Low
0
KEV Exploited
All CVEs — September 2014
18 CVEs
| CVE ID | Package | Severity | CVSS | Published | Description | |
|---|---|---|---|---|---|---|
| CVE-2014-7145 | linux | High | 7.8 | 2014-09-28 | The SMB2_tcon function in fs/cifs/smb2pdu.c in the Linux kernel before 3.16.3 allows remote CIFS servers to cause a den… | |
| CVE-2014-3535 | linux | High | 7.8 | 2014-09-28 | include/linux/netdevice.h in the Linux kernel before 2.6.36 incorrectly uses macros for netdev_printk and its related l… | |
| CVE-2014-6416 | linux | High | 7.8 | 2014-09-28 | Buffer overflow in net/ceph/auth_x.c in Ceph, as used in the Linux kernel before 3.16.3, allows remote attackers to cau… | |
| CVE-2014-6417 | linux | High | 7.8 | 2014-09-28 | net/ceph/auth_x.c in Ceph, as used in the Linux kernel before 3.16.3, does not properly consider the possibility of kma… | |
| CVE-2014-3631 | linux | High | 7.2 | 2014-09-28 | The assoc_array_gc function in the associative-array implementation in lib/assoc_array.c in the Linux kernel before 3.1… | |
| CVE-2014-6418 | linux | High | 7.1 | 2014-09-28 | net/ceph/auth_x.c in Ceph, as used in the Linux kernel before 3.16.3, does not properly validate auth replies, which al… | |
| CVE-2014-3183 | linux | Medium | 6.9 | 2014-09-28 | Heap-based buffer overflow in the logi_dj_ll_raw_request function in drivers/hid/hid-logitech-dj.c in the Linux kernel … | |
| CVE-2014-3181 | linux | Medium | 6.9 | 2014-09-28 | Multiple stack-based buffer overflows in the magicmouse_raw_event function in drivers/hid/hid-magicmouse.c in the Magic… | |
| CVE-2014-3182 | linux | Medium | 6.9 | 2014-09-28 | Array index error in the logi_dj_raw_event function in drivers/hid/hid-logitech-dj.c in the Linux kernel before 3.16.2 … | |
| CVE-2014-0205 | linux | Medium | 6.9 | 2014-09-28 | The futex_wait function in kernel/futex.c in the Linux kernel before 2.6.37 does not properly maintain a certain refere… | |
| CVE-2014-3186 | linux | Medium | 6.9 | 2014-09-28 | Buffer overflow in the picolcd_raw_event function in devices/hid/hid-picolcd_core.c in the PicoLCD HID device driver in… | |
| CVE-2014-3185 | linux | Medium | 6.9 | 2014-09-28 | Multiple buffer overflows in the command_port_read_callback function in drivers/usb/serial/whiteheat.c in the Whiteheat… | |
| CVE-2012-6657 | linux | Medium | 4.9 | 2014-09-28 | The sock_setsockopt function in net/core/sock.c in the Linux kernel before 3.5.7 does not ensure that a keepalive actio… | |
| CVE-2014-6410 | linux | Medium | 4.7 | 2014-09-28 | The __udf_read_inode function in fs/udf/inode.c in the Linux kernel through 3.16.3 does not restrict the amount of ICB … | |
| CVE-2014-3184 | linux | Medium | 4.7 | 2014-09-28 | The report_fixup functions in the HID subsystem in the Linux kernel before 3.16.2 might allow physically proximate atta… |