CVE-2022-42722 |
AVG-2803 |
Medium |
Yes |
Denial of service |
In the Linux kernel 5.8 through 5.19.14, remote attackers are able to inject WLAN frames into the mac80211 stack could cause a NULL pointer dereference... |
CVE-2022-42721 |
AVG-2803 |
Critical |
Yes |
Arbitrary code execution |
A list management bug in BSS handling in the mac80211 stack in the Linux kernel 5.1 through 5.19.14 could be used by remote attackers who are able to inject... |
CVE-2022-42720 |
AVG-2803 |
Critical |
Yes |
Arbitrary code execution |
Various refcounting bugs in the multi-BSS handling in the mac80211 stack in the Linux kernel 5.1 through 5.19.14 could be used by remote attackers who are... |
CVE-2022-42719 |
AVG-2803 |
Critical |
Yes |
Arbitrary code execution |
A use-after-free in the mac80211 stack when parsing a multi-BSSID element in the Linux kernel 5.2 through 5.19.14 could be used by remote attackers who are... |
CVE-2022-41674 |
AVG-2803 |
High |
Yes |
Information disclosure |
A buffer overflow flaw was found in the u8 overflow in cfg80211_update_notlisted_nontrans() in net/wireless/scan.c in the Linux kernel’s wifi subcomponent.... |
CVE-2022-29582 |
AVG-2693 |
High |
No |
Sandbox escape |
A use-after-free flaw was found in the Linux kernel’s io_uring interface subsystem in the way a user triggers a race condition between timeout flush and... |
CVE-2022-28390 |
AVG-2699 |
High |
No |
Denial of service |
A double-free flaw was found in the Linux kernel in the ems_usb_start_xmit function. This flaw allows an attacker to create a memory leak and corrupt the... |
CVE-2022-28389 |
AVG-2699 |
Medium |
No |
Denial of service |
mcba_usb_start_xmit in drivers/net/can/usb/mcba_usb.c in the Linux kernel through 5.17.1 has a double free. |
CVE-2022-28388 |
AVG-2699 |
High |
Unknown |
Unknown |
usb_8dev_start_xmit in drivers/net/can/usb/usb_8dev.c in the Linux kernel through 5.17.1 has a double free. |
CVE-2022-28356 |
AVG-2672 |
High |
No |
Arbitrary code execution |
In the Linux kernel 5.17 before 5.17.1, a refcount leak bug was found in net/llc/af_llc.c, if it finds an ARPHRD_ETHER type net device, it will hold the... |
CVE-2022-27666 |
AVG-2699 |
High |
Unknown |
Unknown |
A heap buffer overflow flaw was found in IPsec ESP transformation code in net/ipv4/esp4.c and net/ipv6/esp6.c. This flaw allows a local attacker with a... |
CVE-2022-26490 |
AVG-2699 |
High |
Unknown |
Unknown |
st21nfca_connectivity_event_received in drivers/nfc/st21nfca/se.c in the Linux kernel through 5.16.12 has EVT_TRANSACTION buffer overflows because of... |
CVE-2022-23222 |
AVG-2671 |
High |
No |
Privilege escalation |
kernel/bpf/verifier.c in the Linux Kernel 5.8 through 5.15.14 allows local users to gain privileges because of missing sanity check for pointer arithmetic... |
CVE-2022-21499 |
AVG-2741 |
Unknown |
Unknown |
Unknown |
KGDB and KDB allow read and write access to kernel memory but were not restricted during lockdown |
CVE-2022-2318 |
AVG-2774 |
Unknown |
Unknown |
Unknown |
Unknown |
CVE-2022-1975 |
AVG-2753 |
Medium |
Unknown |
Unknown |
a sleep called in an atomic context could cause kernel panic during nfc firmware download |
CVE-2022-1974 |
AVG-2753 |
Medium |
No |
Information disclosure |
a user with CAP_NET_ADMIN can use a race condition between kobject creation and delete to leak kernel information |
CVE-2022-1972 |
AVG-2753 |
High |
No |
Privilege escalation |
a user with the ability to create user/net namespaces can exploit an out-of-bounds write in netflter to achieve privilege escalation to root. |
CVE-2022-1966 |
AVG-2753 |
High |
No |
Privilege escalation |
a user with the ability to create user/net namespaces can exploit a use-after-free write in netflter to achieve privilege escalation to root. |
CVE-2022-1789 |
AVG-2774 |
Unknown |
Unknown |
Unknown |
Unknown |
CVE-2022-1734 |
AVG-2753 |
High |
No |
Unknown |
possible use-after-free due to race condition when simulating NFC device from user space |
CVE-2022-1729 |
AVG-2746 |
High |
No |
Privilege escalation |
A use-after-free flaw was found in the Linux kernel’s performance events functionality. A user triggers a race condition in setting up performance... |
CVE-2022-1516 |
AVG-2699 |
Unknown |
Unknown |
Unknown |
A NULL pointer dereference flaw in the implementation of the X.25 set of standardized network protocols, which can result in denial of service. |
CVE-2022-1353 |
AVG-2699 |
Unknown |
Unknown |
Unknown |
A vulnerability was found in the pfkey_register function in net/key/af_key.c in the Linux kernel. This flaw allows a local, unprivileged user to gain access... |
CVE-2022-1205 |
AVG-2699 |
Unknown |
Unknown |
Unknown |
There are NPD and use-after-free vulnerabilities in net/ax25/ax25_timer.c of linux that allow attacker to crash linux kernel by simulating ax25 device from... |
CVE-2022-1204 |
AVG-2699 |
Unknown |
Unknown |
Unknown |
There are use-after-free vulnerabilities in net/ax25/af_ax25.c of linux that allow attacker to crash linux kernel by simulating ax25 device from user space. |
CVE-2022-1199 |
AVG-2699 |
Unknown |
Unknown |
Unknown |
There are null-ptr-deref vulnerability and use-after-free vulnerabilities in net/ax25/af_ax25.c of linux that allow attacker to crash linux kernel by... |
CVE-2022-1198 |
AVG-2699 |
Unknown |
Unknown |
Unknown |
There are use-after-free vulnerabilities in drivers/net/hamradio/6pack.c of linux that allow attacker to crash linux kernel by simulating ax25 device using... |
CVE-2022-1195 |
AVG-2699 |
Unknown |
Unknown |
Unknown |
A use-after-free vulnerability was found in drivers/net/hamradio in the Linux kernel. In this flaw, a local attacker with a user privilege may lead to a... |
CVE-2022-1158 |
AVG-2699 |
Unknown |
Unknown |
Unknown |
Linux Kernel v5.2+: x86/kvm: cmpxchg_gpte can write to pfns outside the userspace region |
CVE-2022-1048 |
AVG-2699 |
Unknown |
Unknown |
Unknown |
race condition in snd_pcm_hw_free leading to use-after-free |
CVE-2022-1016 |
AVG-2699 |
Unknown |
Unknown |
Unknown |
CVE-2022-1016 pertains to uninitialized stack data in the nft_do_chain routine. CVE-2022-1016 is exploitable starting from commit 96518518cc41 (original... |
CVE-2022-1015 |
AVG-2699 |
Unknown |
Unknown |
Unknown |
CVE-2022-1015 pertains to an out of bounds access in nf_tables expression evaluation due to validation of user register indices. It leads to local privilege... |
CVE-2022-0168 |
AVG-2699 |
Unknown |
Unknown |
Unknown |
A denial of service (DOS) issue was found in the Linux kernel’s smb2_ioctl_query_info function in the fs/cifs/smb2ops.c Common Internet File System (CIFS)... |
CVE-2022-0002 |
AVG-2681 |
Medium |
No |
Information disclosure |
Non-transparent sharing of branch predictor within a context in some Intel® Processors may allow an authorized user to potentially enable information... |
CVE-2022-0001 |
AVG-2681 |
Medium |
No |
Information disclosure |
Non-transparent sharing of branch predictor selectors between contexts in some Intel(R) Processors may allow an authorized user to potentially enable... |
CVE-2021-43975 |
AVG-2611 |
Medium |
No |
Arbitrary code execution |
In the Linux kernel before version 5.15.7, hw_atl_utils_fw_rpc_wait in drivers/net/ethernet/aquantia/atlantic/hw_atl/hw_atl_utils.c allows an attacker (who... |
CVE-2021-43389 |
AVG-2498 |
Medium |
No |
Arbitrary code execution |
An issue was discovered in the Linux kernel before 5.14.15. There is an array-index-out-bounds bug in the detach_capi_ctr function in... |
CVE-2021-43267 |
AVG-2514 |
High |
Yes |
Arbitrary code execution |
An issue was discovered in net/tipc/crypto.c in the Linux kernel before 5.14.16. The Transparent Inter-Process Communication (TIPC) functionality allows... |
CVE-2021-42739 |
AVG-2531 |
Medium |
No |
Privilege escalation |
The firewire subsystem in the Linux kernel before version 5.15.1 has a buffer overflow related to drivers/media/firewire/firedtv-avc.c and... |
CVE-2021-42327 |
AVG-2514 |
Medium |
No |
Arbitrary code execution |
dp_link_settings_write in drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm_debugfs.c in the Linux kernel before version 5.14.16 allows a heap-based buffer... |
CVE-2021-41864 |
AVG-2464 |
Medium |
No |
Arbitrary code execution |
prealloc_elems_and_freelist in kernel/bpf/stackmap.c in the Linux kernel before version 5.14.12 allows unprivileged users to trigger an eBPF multiplication... |
CVE-2021-41073 |
AVG-2413 |
Medium |
No |
Privilege escalation |
loop_rw_iter in fs/io_uring.c in the Linux kernel through 5.14.6 allows local users to gain privileges by using IORING_OP_PROVIDE_BUFFERS to trigger a free... |
CVE-2021-40490 |
AVG-2347 |
Medium |
No |
Arbitrary code execution |
A race condition was discovered in ext4_write_inline_data_end in fs/ext4/inline.c in the ext4 subsystem in the Linux kernel through 5.13.13. |
CVE-2021-38208 |
AVG-2064 |
Low |
No |
Denial of service |
net/nfc/llcp_sock.c in the Linux kernel before 5.12.10 allows local unprivileged users to cause a denial of service (NULL pointer dereference and BUG) by... |
CVE-2021-38204 |
AVG-2233 |
Low |
No |
Denial of service |
drivers/usb/host/max3421-hcd.c in the Linux kernel before 5.13.6 allows physically proximate attackers to cause a denial of service (use-after-free and... |
CVE-2021-38166 |
AVG-2296 |
Medium |
No |
Arbitrary code execution |
In kernel/bpf/hashtab.c in the Linux kernel before version 5.13.12, there is an integer overflow and out-of-bounds write when many elements are placed in a... |
CVE-2021-37159 |
AVG-2233 |
Medium |
No |
Arbitrary code execution |
hso_free_net_device in drivers/net/usb/hso.c in the Linux kernel before version 5.13.6 calls unregister_netdev without checking for the NETREG_REGISTERED... |
CVE-2021-35477 |
AVG-2256 |
Medium |
No |
Information disclosure |
An issue has been discovered in the Linux kernel mechanism to mitigate Speculative Store Bypass in BPF. On affected systems, an unprivileged BPF program can... |
CVE-2021-35039 |
AVG-2120 |
Medium |
No |
Certificate verification bypass |
kernel/module.c in the Linux kernel before 5.12.14 mishandles Signature Verification, aka CID-0c18f29aae7c. Without CONFIG_MODULE_SIG, verification that a... |
CVE-2021-34693 |
AVG-2095 |
Medium |
No |
Information disclosure |
net/can/bcm.c in the Linux kernel before 5.12.13 allows local users to obtain sensitive information from kernel stack memory because parts of a data... |
CVE-2021-34556 |
AVG-2256 |
Medium |
No |
Information disclosure |
An issue has been discovered in the Linux kernel mechanism to mitigate Speculative Store Bypass in BPF. On affected systems, an unprivileged BPF program can... |
CVE-2021-33909 |
AVG-2182 |
High |
No |
Privilege escalation |
An privilege escalation security issue has been found in the filesystem layer of the Linux kernel before version 5.13.4. An unprivileged local attacker can... |
CVE-2021-33655 |
AVG-2774 |
Unknown |
Unknown |
Unknown |
Unknown |
CVE-2021-33624 |
AVG-2095 |
Medium |
No |
Information disclosure |
In kernel/bpf/verifier.c in the Linux kernel before 5.12.13, a branch can be mispredicted (e.g., because of type confusion) and consequently an unprivileged... |
CVE-2021-33200 |
AVG-2008 |
Medium |
No |
Privilege escalation |
kernel/bpf/verifier.c in the Linux kernel before 5.12.8 enforces incorrect limits for pointer arithmetic operations, aka CID- bb01a1bba579. This can be... |
CVE-2021-33034 |
AVG-1959 |
Medium |
No |
Arbitrary code execution |
In the Linux kernel before 5.12.4, net/bluetooth/hci_event.c has a use-after-free when destroying an hci_chan, aka CID-5c4c8c954409. This leads to writing... |
CVE-2021-32606 |
AVG-2032 |
Medium |
No |
Privilege escalation |
In the Linux kernel since 5.11 before 5.12.9, isotp_setsockopt in net/can/isotp.c allows privilege escalation to root by leveraging a use-after-free. (This... |
CVE-2021-32399 |
AVG-1959 |
Medium |
No |
Arbitrary code execution |
net/bluetooth/hci_request.c in the Linux kernel before version 5.12.4 has a race condition for removal of the HCI controller. |
CVE-2021-31829 |
AVG-1930 |
Medium |
No |
Information disclosure |
kernel/bpf/verifier.c in the Linux kernel through 5.12.1 performs undesirable speculative loads, leading to disclosure of stack content via side-channel... |
CVE-2021-31440 |
AVG-1959 |
Medium |
No |
Privilege escalation |
This vulnerability allows local attackers to escalate privileges on affected installations of the Linux kernel before version 5.12.4. An attacker must first... |
CVE-2021-30178 |
AVG-1785 |
Low |
No |
Denial of service |
An issue was discovered in the Linux kernel. synic_get in arch/x86/kvm/hyperv.c has a NULL pointer dereference for certain accesses to the SynIC Hyper-V... |
CVE-2021-29657 |
AVG-1766 |
Medium |
No |
Privilege escalation |
A security issue has been found in the Linux kernel before version 5.11.12. There is a race condition between check and use of the nested VMCB controls in KVM. |
CVE-2021-29650 |
AVG-1749 |
Low |
Yes |
Denial of service |
An issue was discovered in the Linux kernel before 5.11.11. The netfilter subsystem allows attackers to cause a denial of service (panic) because... |
CVE-2021-29649 |
AVG-1749 |
Medium |
No |
Information disclosure |
An issue was discovered in the Linux kernel before 5.11.11. The user mode driver (UMD) has a copy_process() memory leak, related to a lack of cleanup steps... |
CVE-2021-29648 |
AVG-1749 |
Low |
No |
Denial of service |
An issue was discovered in the Linux kernel before 5.11.11. The BPF subsystem does not properly consider that resolved_ids and resolved_sizes are... |
CVE-2021-29647 |
AVG-1749 |
Medium |
Yes |
Information disclosure |
An issue was discovered in the Linux kernel before 5.11.11. qrtr_recvmsg in net/qrtr/qrtr.c allows attackers to obtain sensitive information from kernel... |
CVE-2021-29646 |
AVG-1749 |
Medium |
Yes |
Insufficient validation |
An issue was discovered in the Linux kernel before 5.11.11. tipc_nl_retrieve_key in net/tipc/node.c does not properly validate certain data sizes, aka... |
CVE-2021-29266 |
AVG-1718 |
Medium |
No |
Denial of service |
An issue was discovered in the Linux kernel before 5.11.9. drivers/vhost/vdpa.c has a use-after-free because v->config_ctx has an invalid value upon... |
CVE-2021-29265 |
AVG-1686 |
Low |
No |
Denial of service |
An issue was discovered in the Linux kernel before 5.11.7. usbip_sockfd_store in drivers/usb/usbip/stub_dev.c allows attackers to cause a denial of service... |
CVE-2021-29264 |
AVG-1749 |
Medium |
Yes |
Denial of service |
An issue was discovered in the Linux kernel through 5.11.10. drivers/net/ethernet/freescale/gianfar.c in the Freescale Gianfar Ethernet driver allows... |
CVE-2021-29155 |
AVG-1853 |
Medium |
No |
Information disclosure |
An issue has been discovered in the Linux kernel before version 5.11.16 in the mechanism to mitigate speculatively out-of-bounds loads (Spectre mitigation).... |
CVE-2021-29154 |
AVG-1798 |
Medium |
No |
Privilege escalation |
An issue has been discovered in the Linux kernel up to version 5.11.12 that can be abused by unprivileged local users to escalate privileges. The issue is... |
CVE-2021-28972 |
AVG-1718 |
Medium |
No |
Arbitrary code execution |
In drivers/pci/hotplug/rpadlpar_sysfs.c in the Linux kernel through 5.11.8, the RPA PCI Hotplug driver has a user-tolerable buffer overflow when writing a... |
CVE-2021-28971 |
AVG-1718 |
Low |
No |
Denial of service |
In intel_pmu_drain_pebs_nhm in arch/x86/events/intel/ds.c in the Linux kernel through 5.11.8 on some Haswell CPUs, userspace applications (such as... |
CVE-2021-28964 |
AVG-1718 |
Low |
No |
Denial of service |
A race condition was discovered in get_old_root in fs/btrfs/ctree.c in the Linux kernel through 5.11.8. It allows attackers to cause a denial of service... |
CVE-2021-28952 |
AVG-1718 |
Medium |
No |
Arbitrary code execution |
An issue was discovered in the Linux kernel through 5.11.8. The sound/soc/qcom/sdm845.c soundwire device driver has a buffer overflow when an unexpected... |
CVE-2021-28951 |
AVG-1718 |
Low |
No |
Denial of service |
An issue was discovered in fs/io_uring.c in the Linux kernel through 5.11.8. It allows attackers to cause a denial of service (deadlock) because exit may be... |
CVE-2021-28950 |
AVG-1713 |
Low |
No |
Denial of service |
An issue was discovered in fs/fuse/fuse_i.h in the Linux kernel before 5.11.8. A "stall on CPU" can occur because a retry loop continually finds the same... |
CVE-2021-28688 |
AVG-1749 |
Low |
No |
Denial of service |
A security issue was found in the Linux kernel before version 5.11.11, as used by Xen. The fix for CVE-2021-26930, a.k.a. XSA-365, includes initialization... |
CVE-2021-28660 |
AVG-1686 |
High |
Yes |
Arbitrary code execution |
rtw_wx_set_scan in drivers/staging/rtl8188eu/os_dep/ioctl_linux.c in the Linux kernel through 5.11.6 allows writing beyond the end of the ->ssid[] array.... |
CVE-2021-28375 |
AVG-1686 |
Medium |
No |
Insufficient validation |
An issue was discovered in the Linux kernel through 5.11.6. fastrpc_internal_invoke in drivers/misc/fastrpc.c does not prevent user applications from... |
CVE-2021-28038 |
AVG-1653 |
Low |
No |
Denial of service |
An issue was discovered in the Linux kernel through 5.11.3, as used with Xen PV. A certain part of the netback driver lacks necessary treatment of errors... |
CVE-2021-27365 |
AVG-1653 |
Medium |
No |
Information disclosure |
An issue was discovered in the Linux kernel through 5.11.3. Certain iSCSI data structures do not have appropriate length constraints or checks, and can... |
CVE-2021-27364 |
AVG-1653 |
Medium |
No |
Insufficient validation |
An issue was discovered in the Linux kernel through 5.11.3. drivers/scsi/scsi_transport_iscsi.c is adversely affected by the ability of an unprivileged user... |
CVE-2021-27363 |
AVG-1653 |
Medium |
No |
Information disclosure |
An issue was discovered in the Linux kernel through 5.11.3. A kernel pointer leak can be used to determine the address of the iscsi_transport structure.... |
CVE-2021-26932 |
AVG-1614 |
Low |
No |
Denial of service |
An issue was discovered in the Linux kernel 3.2 up to 5.10.17, as used by Xen. Grant mapping operations often occur in batch hypercalls, where a number of... |
CVE-2021-26931 |
AVG-1614 |
Low |
No |
Denial of service |
An issue was discovered in the Linux kernel 2.6.39 up to 5.10.17, as used in Xen. Block, net, and SCSI backends consider certain errors a plain bug,... |
CVE-2021-26930 |
AVG-1614 |
Medium |
No |
Privilege escalation |
An issue was discovered in the Linux kernel 3.11 up to 5.10.17, as used by Xen. To service requests to the PV backend, the driver maps grant references... |
CVE-2021-26708 |
AVG-1514 |
Medium |
No |
Privilege escalation |
A local privilege escalation was discovered in the Linux kernel before 5.10.13. Multiple race conditions in the AF_VSOCK implementation are caused by wrong... |
CVE-2021-23134 |
AVG-1959 |
Medium |
No |
Privilege escalation |
A use after free security issue has been found in the Linux kernel before version 5.12.4 in the implementation of nfc sockets (in net/nfc/llcp_sock.c),... |
CVE-2021-23133 |
AVG-1959 |
Medium |
No |
Privilege escalation |
A race condition was found in the Linux kernel before version 5.12.4 in sctp_destroy_sock. If sctp_destroy_sock is called without... |
CVE-2021-22555 |
AVG-2162 |
High |
No |
Privilege escalation |
A heap out-of-bounds write affecting Linux since v2.6.19-rc1 was discovered in net/netfilter/x_tables.c. This allows an attacker to gain privileges or cause... |
CVE-2021-22543 |
AVG-2120 |
Medium |
No |
Privilege escalation |
An issue was discovered in the Linux KVM· through Improper handling of VM_IO|VM_PFNMAP, vmas in KVM can bypass RO checks and can lead to pages being freed... |
CVE-2021-20321 |
AVG-2464 |
Medium |
No |
Privilege escalation |
An attacker with a low-privileged user on a Linux machine before kernel version 5.14.12 with an overlay mount can escalate his privileges up to root when... |
CVE-2021-20292 |
AVG-1726 |
Medium |
No |
Privilege escalation |
A security issue was found in the Linux kernel before version 5.9. The specific flaw exists within DRM memory management. The issue results from the lack of... |
CVE-2021-20226 |
AVG-1556 |
Medium |
No |
Privilege escalation |
An inappropriate handling of descriptors that results in a use-after- free vulnerability was found on the Linux kernel before version 5.10. |
CVE-2021-20194 |
AVG-1560 |
Medium |
No |
Privilege escalation |
There is a vulnerability in the Linux kernel versions higher than 5.2 and before version 5.11 (if the kernel is compiled with config params... |
CVE-2021-4197 |
AVG-2699 |
High |
Unknown |
Unknown |
An unprivileged write to the file handler flaw in the Linux kernel's control groups and namespaces subsystem was found in the way users have access to some... |
CVE-2021-4023 |
AVG-2523 |
Low |
No |
Denial of service |
A security issue was found in the io-workqueue implementation in the Linux kernel before version 5.15. The kernel can panic when an improper cancellation... |
CVE-2021-4002 |
AVG-2586 |
Medium |
No |
Arbitrary code execution |
On the Linux kernel 3.6 and later before version 5.15.5, it is possible for an attacker to leak or change data that resides on hugetlbfs. Such data can... |
CVE-2021-4001 |
AVG-2586 |
Medium |
No |
Privilege escalation |
When a map is read-only for the ebpf program and is frozen, the ebpf verifier will directly take the value from the map and directly use the value to... |
CVE-2021-3896 |
AVG-2498 |
Medium |
No |
Arbitrary code execution |
In the Linux kernel before version 5.14.15, there is an array-index- out-bounds bug in detach_capi_ctr in drivers/isdn/capi/kcapi.c. During this process,... |
CVE-2021-3764 |
AVG-2549 |
Low |
No |
Denial of service |
A memory leak in the ccp_run_aes_gcm_cmd() function in drivers/crypto/ccp/ccp-ops.c in the Linux kernel before 5.14.10 allows attackers to cause a denial of... |
CVE-2021-3760 |
AVG-2498 |
Medium |
No |
Arbitrary code execution |
A use-after-free vulnerability of ndev->rf_conn_info object has been found in the Linux kernel NFC stack before version 5.14.15. The root cause is that... |
CVE-2021-3759 |
AVG-2523 |
Low |
No |
Denial of service |
A memory overflow was found in the Linux kernel before 5.15, in the ipc functionality of the memcg subsystem in the way user calls semget for many times... |
CVE-2021-3753 |
AVG-2347 |
Medium |
No |
Information disclosure |
An out-of-bounds read due to a race condition has been found in the Linux kernel before version 5.14.2. The root cause of this vulnerability is that the... |
CVE-2021-3744 |
AVG-2549 |
Low |
No |
Denial of service |
A memory leak in the ccp_run_aes_gcm_cmd() function in drivers/crypto/ccp/ccp-ops.c in the Linux kernel before version 5.14.10 allows attackers to cause a... |
CVE-2021-3743 |
AVG-2347 |
Medium |
No |
Information disclosure |
An out-of-bounds (OOB) memory read security issue was found in the Qualcomm IPC router protocol in the Linux kernel before version 5.14. A missing sanity... |
CVE-2021-3739 |
AVG-2347 |
Low |
No |
Denial of service |
A null pointer dereference bug was discovered in the btrfs_rm_device function in fs/btrfs/volumes.c in the Linux kernel before version 5.14.1, where... |
CVE-2021-3732 |
AVG-2296 |
Medium |
No |
Information disclosure |
A security issue was found in overlayfs implementation of the Linux kernel before version 5.13.11 where a local attacker with an unprivileged account who... |
CVE-2021-3679 |
AVG-2233 |
Low |
No |
Denial of service |
A lack of CPU resources in the Linux kernel tracing module functionality was found in the way users use the trace ring buffer in specific way. Only... |
CVE-2021-3656 |
AVG-2296 |
Medium |
No |
Insufficient validation |
A security issue has been found in the KVM's AMD code for supporting SVM nested virtualization in the Linux kernel before version 5.13.20. This issue is... |
CVE-2021-3655 |
AVG-2182 |
Medium |
Yes |
Information disclosure |
A vulnerability was found in the Linux kernel. Missing size validations on inbound SCTP packets may allow the kernel to read uninitialized memory. |
CVE-2021-3653 |
AVG-2296 |
Medium |
No |
Insufficient validation |
A security issue has been found in the KVM's AMD code for supporting SVM nested virtualization in the Linux kernel before version 5.13.20. This issue is... |
CVE-2021-3640 |
AVG-2571 |
Medium |
No |
Arbitrary code execution |
A use after free vulnerability has been found in sco_send_frame() in the Bluetooth stack of the Linux kernel before version 5.15.3, similar to... |
CVE-2021-3612 |
AVG-2182 |
Medium |
No |
Privilege escalation |
An out-of-bounds memory write security issue was found in the Linux kernel’s joystick devices subsystem before version 5.13.2, in the way the user calls... |
CVE-2021-3609 |
AVG-2182 |
Medium |
No |
Privilege escalation |
A race condition in net/can/bcm.c in the Linux kernel before version 5.13.2 allows for local privilege escalation to root. The CAN BCM networking protocol... |
CVE-2021-3573 |
AVG-2064 |
Medium |
No |
Arbitrary code execution |
A use after free vulnerability has been found in the hci_sock_bound_ioctl() function of the Linux kernel. It can allow attackers to corrupt kernel heaps... |
CVE-2021-3564 |
AVG-2064 |
Medium |
No |
Arbitrary code execution |
A security issue has been found in Bluetooth subsystem of the Linux kernel. HCI device initialization failure can lead to unexpected results, like... |
CVE-2021-3543 |
AVG-1953 |
Medium |
No |
Privilege escalation |
A null pointer dereference in the Nitro Enclaves Linux kernel driver was found in the way that Enclaves VMs forces closures on the enclave file descriptor.... |
CVE-2021-3506 |
AVG-1953 |
Medium |
No |
Information disclosure |
An out-of-bounds (OOB) memory access flaw was found in fs/f2fs/node.c in the f2fs module in the Linux kernel. A bounds check failure allows a local attacker... |
CVE-2021-3501 |
AVG-1853 |
Medium |
No |
Arbitrary code execution |
A security issue was found in the Linux kernel before version 5.11.16. The value of internal.ndata, in the KVM API, is mapped to an array index, which can... |
CVE-2021-3491 |
AVG-1959 |
Medium |
No |
Arbitrary code execution |
A security issue was found in the Linux kernel before version 5.12.4. It was discovered that the io_uring PROVIDE_BUFFERS operation allowed the MAX_RW_COUNT... |
CVE-2021-3490 |
AVG-1959 |
Medium |
No |
Arbitrary code execution |
A security issue was found in the Linux kernel before version 5.12.4. It was discovered that eBPF ALU32 bounds tracking for bitwise ops (AND, OR and XOR)... |
CVE-2021-3489 |
AVG-1959 |
Medium |
No |
Arbitrary code execution |
A security issue was found in the Linux kernel before version 5.12.4. It was discovered that eBPF RINGBUF bpf_ringbuf_reserve did not check that the... |
CVE-2021-3483 |
AVG-1766 |
Medium |
No |
Arbitrary code execution |
A security issue has been found in the Linux kernel before version 5.11.12 in Linux/drivers/firewire/nosy.c. Nosy is an IEEE 1394 packet sniffer which is... |
CVE-2021-3428 |
AVG-1695 |
Medium |
No |
Denial of service |
A security issue was found in the Linux kernel before version 5.9. A denial of service problem is identified if an extent tree is corrupted in a crafted... |
CVE-2021-3348 |
AVG-1514 |
Medium |
No |
Arbitrary code execution |
nbd_add_socket in drivers/block/nbd.c in the Linux kernel through 5.10.12 has an ndb_queue_rq use-after-free that could be triggered by local attackers... |
CVE-2021-3347 |
AVG-1508 |
Medium |
No |
Arbitrary code execution |
An issue was discovered in the Linux kernel through 5.10.11. PI futexes have a kernel stack use-after-free during fault handling, allowing local users to... |
CVE-2021-3178 |
AVG-1468 |
Low |
Yes |
Directory traversal |
fs/nfsd/nfs3xdr.c in the Linux kernel before version 5.10.10 and 5.4.92, when there is an NFS export of a subdirectory of a filesystem, allows remote... |
CVE-2020-36158 |
AVG-1409 |
High |
Yes |
Arbitrary code execution |
mwifiex_cmd_802_11_ad_hoc_start in drivers/net/wireless/marvell/mwifiex/join.c in the Linux kernel might allow remote attackers to execute arbitrary code... |
CVE-2020-28374 |
AVG-1444 |
Medium |
No |
Directory traversal |
In drivers/target/target_core_xcopy.c in the Linux kernel before 5.10.7, insufficient identifier checking in the LIO SCSI target code can be used by remote... |
CVE-2020-27171 |
AVG-1713 |
Medium |
No |
Information disclosure |
A numeric error in the Linux kernel mechanism to mitigate speculatively out-of-bounds loads (Spectre mitigation) has been identified. Unprivileged BPF... |
CVE-2020-27170 |
AVG-1713 |
Medium |
No |
Information disclosure |
A gap in the Linux kernel mechanism to mitigate speculatively out-of- bounds loads (Spectre mitigation) has been identified. Unprivileged BPF programs... |
CVE-2020-26147 |
AVG-2032 |
Medium |
Yes |
Insufficient validation |
An issue was discovered in the Linux kernel before version 5.12.9. The WEP, WPA, WPA2, and WPA3 implementations reassemble fragments even though some of... |
CVE-2020-26145 |
AVG-2032 |
Medium |
Yes |
Insufficient validation |
An issue was discovered in the Linux kernel before version 5.12.9. The WEP, WPA, WPA2, and WPA3 implementations accept second (or subsequent) broadcast... |
CVE-2020-26141 |
AVG-2032 |
Medium |
Yes |
Insufficient validation |
An issue was discovered in the Linux kernel before version 5.12.9. The Wi-Fi implementation does not verify the Message Integrity Check (authenticity) of... |
CVE-2020-26139 |
AVG-2032 |
Medium |
Yes |
Insufficient validation |
An issue was discovered in the Linux kernel before version 5.12.9. An Access Point (AP) forwards EAPOL frames to other clients even though the sender has... |
CVE-2020-25704 |
AVG-1270 |
Medium |
No |
Denial of service |
A memory leak has been found in the perf_event_parse_addr_filter function of Linux before 5.9.7, leading to a denial of service. |
CVE-2020-25639 |
AVG-1646 |
Low |
No |
Denial of service |
A NULL pointer dereference flaw was found in the Linux kernel's GPU Nouveau driver functionality in versions prior to versions 5.11.3 and 5.10.20 in the way... |
CVE-2020-24588 |
AVG-2032 |
Medium |
Yes |
Insufficient validation |
The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that the A-MSDU flag in... |
CVE-2020-24587 |
AVG-2032 |
Medium |
Yes |
Information disclosure |
The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that all fragments of a... |
CVE-2020-24586 |
AVG-2032 |
Medium |
Yes |
Information disclosure |
The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that received fragments... |
CVE-2020-24490 |
AVG-1249 |
Medium |
Yes |
Denial of service |
A heap buffer overflow flaw was found in the way the Linux kernel’s Bluetooth implementation processed extended advertising report events. This flaw allows... |
CVE-2020-16119 |
AVG-1246 |
High |
Yes |
Arbitrary code execution |
Hadar Manor reported that by reusing a DCCP socket with an attached dccps_hc_tx_ccid as a listener, in Linux <= 5.9, it will be used after being released,... |
CVE-2020-14386 |
AVG-1224 |
High |
No |
Privilege escalation |
A memory corruption flaw was found in the Linux kernel before 5.9-rc4 in net/packet/af_packet.c. A local attacker with CAP_NET_RAW privileges can exploit... |
CVE-2020-12352 |
AVG-1249 |
High |
Yes |
Information disclosure |
An information leak flaw was found in the way the Linux kernel's Bluetooth stack implementation handled initialization of stack memory when handling certain... |
CVE-2020-12351 |
AVG-1249 |
High |
Yes |
Privilege escalation |
A flaw was found in the way the Linux kernel Bluetooth implementation handled L2CAP packets with A2MP CID. A remote attacker in adjacent range could use... |
CVE-2020-8694 |
AVG-1273 |
Medium |
No |
Information disclosure |
An information disclosure flaw was found in the Linux kernel's Intel Running Average Power Limit (RAPL) implementation. A local non- privileged attacker... |
CVE-2019-17666 |
AVG-1066 |
Critical |
Yes |
Arbitrary code execution |
rtl_p2p_noa_ie in drivers/net/wireless/realtek/rtlwifi/ps.c in the Linux kernel before 5.3.9, 4.19.82, 4.14.152, 4.9.199, 4.4.199 lacks a certain... |
CVE-2019-11683 |
AVG-957 |
High |
Yes |
Arbitrary code execution |
udp_gro_receive_segment in net/ipv4/udp_offload.c in the Linux kernel 5.x through 5.0.11 allows remote attackers to cause a denial of service... |
CVE-2019-11479 |
AVG-985 |
Medium |
Yes |
Denial of service |
An excessive resource consumption flaw was found in the way the Linux kernel's networking subsystem processed TCP segments. If the Maximum Segment Size... |
CVE-2019-11478 |
AVG-985 |
High |
Yes |
Denial of service |
An excessive resource consumption flaw was found in the way the Linux kernel's networking subsystem processed TCP Selective Acknowledgment (SACK) segments.... |
CVE-2019-11477 |
AVG-985 |
High |
Yes |
Denial of service |
An integer overflow has been discovered in the Linux kernel when handling TCP Selective Acknowledgments (SACKs). A sequence of SACKs may be crafted such... |
CVE-2018-8897 |
AVG-704 |
High |
No |
Denial of service |
A statement in the System Programming Guide of the Intel 64 and IA-32 Architectures Software Developer's Manual (SDM) was mishandled in the development of... |
CVE-2018-5391 |
AVG-761 |
High |
Yes |
Denial of service |
A flaw named FragmentSmack was found in the way the Linux kernel handled reassembly of fragmented IPv4 and IPv6 packets. A remote attacker could use this... |
CVE-2018-5390 |
AVG-749 |
High |
Yes |
Denial of service |
A flaw named SegmentSmack was found in the way the Linux kernel handled specially crafted TCP packets. A remote attacker could use this flaw to trigger time... |
CVE-2018-3646 |
AVG-757 |
High |
No |
Information disclosure |
Systems with microprocessors utilising speculative execution and address translations may allow unauthorised disclosure of information residing in the L1... |
CVE-2018-3620 |
AVG-757 |
High |
No |
Information disclosure |
Systems with microprocessors utilising speculative execution and address translations may allow unauthorised disclosure of information residing in the L1... |
CVE-2018-3615 |
AVG-757 |
High |
No |
Information disclosure |
Systems with microprocessors utilizing speculative execution and Intel software guard extensions (Intel SGX) may allow unauthorized disclosure of... |
CVE-2018-1121 |
AVG-704 |
Low |
No |
Content spoofing |
A security issue has been found in Linux <= 4.16.9, where an unprivileged attacker can hide a process from procps-ng's utilities by exploiting either a... |
CVE-2018-1120 |
AVG-704 |
Medium |
No |
Denial of service |
A denial of service has been found in Linux <= 4.16.9. An attacker can block any read() access to /proc/PID/cmdline by mmap()ing a FUSE file (Filesystem in... |
CVE-2017-1000407 |
AVG-563 |
Medium |
Yes |
Denial of service |
Linux kernel Virtualization Module (CONFIG_KVM) for the Intel processor family (CONFIG_KVM_INTEL) before 4.14.6, 4.9.69, 4.4.106, 3.18.88, 3.16.52 and... |
CVE-2017-1000379 |
AVG-311 |
Medium |
No |
Access restriction bypass |
The Linux Kernel running on AMD64 systems will sometimes map the contents of PIE executable, the heap or ld.so to where the stack is mapped allowing... |
CVE-2017-1000365 |
AVG-311 |
Medium |
No |
Insufficient validation |
The Linux Kernel imposes a size restriction on the arguments and environmental strings passed through RLIMIT_STACK/RLIM_INFINITY (1/4 of the size), but does... |
CVE-2017-1000364 |
AVG-324 |
High |
No |
Privilege escalation |
A flaw was found in the way memory was being allocated on the stack for user space binaries. If heap (or different memory region) and stack memory regions... |
CVE-2017-1000251 |
AVG-394 |
High |
Yes |
Arbitrary code execution |
A stack buffer overflow flaw was found in the way the Bluetooth subsystem of the Linux kernel processed pending L2CAP configuration responses from a client.... |
CVE-2017-17864 |
AVG-571 |
Medium |
No |
Information disclosure |
It has been discovered that kernel/bpf/verifier.c in the Linux kernel before 4.14.9 and 4.9.73 mishandles states_equal comparisons between the pointer data... |
CVE-2017-17863 |
AVG-571 |
Medium |
No |
Denial of service |
It has been discovered that kernel/bpf/verifier.c in the Linux kernel before 4.14.9 and 4.9.72 does not check the relationship between pointer values and... |
CVE-2017-17862 |
AVG-571 |
Medium |
No |
Denial of service |
It has been discovered that kernel/bpf/verifier.c in the Linux kernel before 4.14.9 and 4.9.72 ignore unreachable code, even though it would still be... |
CVE-2017-17857 |
AVG-571 |
Medium |
No |
Denial of service |
The check_stack_boundary function in kernel/bpf/verifier.c in the Linux kernel before 4.14.9 allows local users to cause a denial of service (memory... |
CVE-2017-17856 |
AVG-571 |
Medium |
No |
Denial of service |
It has been discovered that kernel/bpf/verifier.c in the Linux kernel before 4.14.9 allows local users to cause a denial of service (memory corruption) or... |
CVE-2017-17855 |
AVG-571 |
Medium |
No |
Denial of service |
It has been discovered that kernel/bpf/verifier.c in the Linux kernel before 4.14.9 allows local users to cause a denial of service (memory corruption) or... |
CVE-2017-17854 |
AVG-571 |
Medium |
No |
Denial of service |
It has been discovered that kernel/bpf/verifier.c in the Linux kernel before 4.14.9 allows local users to cause a denial of service (integer overflow and... |
CVE-2017-17853 |
AVG-571 |
Medium |
No |
Denial of service |
It has been discovered kernel/bpf/verifier.c in the Linux kernel before 4.14.9 allows local users to cause a denial of service (memory corruption) or... |
CVE-2017-17852 |
AVG-571 |
Medium |
No |
Denial of service |
It has been discovered that kernel/bpf/verifier.c in the Linux kernel before 4.14.9 allows local users to cause a denial of service (memory corruption) or... |
CVE-2017-17807 |
AVG-563 |
Low |
No |
Access restriction bypass |
The KEYS subsystem in the Linux kernel before 4.14.6, 4.9.69, 4.4.107, 3.18.88, 3.16.52 and 3.2.97 omitted an access-control check when adding a key to the... |
CVE-2017-17806 |
AVG-571 |
Medium |
No |
Denial of service |
The HMAC implementation (crypto/hmac.c) in the Linux kernel before 4.14.8, 4.9.71, 4.4.107, 3.18.89, 3.16.52 and 3.2.97 does not validate that the... |
CVE-2017-17805 |
AVG-571 |
Medium |
No |
Denial of service |
The Salsa20 encryption algorithm in the Linux kernel before 4.14.8, 4.9.71, 4.4.107, 3.18.89, 3.16.52 and 3.2.97 does not correctly handle zero-length... |
CVE-2017-17741 |
AVG-572 |
Medium |
No |
Information disclosure |
The KVM implementation in the Linux kernel through 4.14.7 allows attackers to obtain potentially sensitive information from kernel memory, aka a write_mmio... |
CVE-2017-17712 |
AVG-571 |
High |
No |
Privilege escalation |
A flaw was found in the Linux kernel's implementation of raw_sendmsg before 4.14.11, 4.4.109 and 4.9.74 allowing a local attacker to panic the kernel or... |
CVE-2017-17558 |
AVG-571 |
High |
No |
Denial of service |
The usb_destroy_configuration function in drivers/usb/core/config.c in the USB core subsystem in the Linux kernel before 4.14.8, 4.9.71, 4.4.107, 3.18.89,... |
CVE-2017-17450 |
AVG-572 |
High |
No |
Access restriction bypass |
It has been discovered that net/netfilter/xt_osf.c in the Linux kernel through 4.14.4 does not require the CAP_NET_ADMIN capability for add_callback and... |
CVE-2017-17449 |
AVG-571 |
Medium |
No |
Information disclosure |
The __netlink_deliver_tap_skb function in net/netlink/af_netlink.c in the Linux kernel before 4.14.11, 4.9.74, 4.4.109, 3.18.91 and 3.16.52 when... |
CVE-2017-17448 |
AVG-572 |
High |
No |
Access restriction bypass |
It has been discovered that net/netfilter/nfnetlink_cthelper.c in the Linux kernel through 4.14.4 does not require the CAP_NET_ADMIN capability for new,... |
CVE-2017-16996 |
AVG-571 |
High |
No |
Privilege escalation |
An arbitrary memory r/w access issue was found in the Linux kernel before 4.14.9 compiled with the eBPF bpf(2) system call (CONFIG_BPF_SYSCALL) support. The... |
CVE-2017-16995 |
AVG-571 |
High |
No |
Privilege escalation |
An arbitrary memory r/w access issue was found in the Linux kernel before 4.14.9, 4.9.72 compiled with the eBPF bpf(2) system call (CONFIG_BPF_SYSCALL)... |
CVE-2017-16650 |
AVG-569 |
Medium |
No |
Denial of service |
The qmi_wwan_bind function in drivers/net/usb/qmi_wwan.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (divide-by-zero... |
CVE-2017-16649 |
AVG-569 |
Medium |
No |
Denial of service |
The usbnet_generic_cdc_bind function in drivers/net/usb/cdc_ether.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service... |
CVE-2017-16648 |
AVG-569 |
High |
No |
Privilege escalation |
The dvb_frontend_free function in drivers/media/dvb- core/dvb_frontend.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service... |
CVE-2017-16647 |
AVG-569 |
Medium |
No |
Denial of service |
drivers/net/usb/asix_devices.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (NULL pointer dereference and system... |
CVE-2017-16646 |
AVG-569 |
Medium |
No |
Denial of service |
drivers/media/usb/dvb-usb/dib0700_devices.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (BUG and system crash) or... |
CVE-2017-16645 |
AVG-569 |
Medium |
No |
Denial of service |
The ims_pcu_get_cdc_union_desc function in drivers/input/misc/ims- pcu.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service... |
CVE-2017-16644 |
AVG-572 |
Medium |
No |
Denial of service |
The hdpvr_probe function in drivers/media/usb/hdpvr/hdpvr-core.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service... |
CVE-2017-16643 |
AVG-569 |
Medium |
No |
Denial of service |
The parse_hid_report_descriptor function in drivers/input/tablet/gtco.c in the Linux kernel before 4.13.11 allows local users to cause a denial of service... |
CVE-2017-15265 |
AVG-509 |
High |
No |
Privilege escalation |
Race condition in the ALSA subsystem in the Linux kernel before 4.13.8 allows local users to cause a denial of service (use-after-free) or possibly have... |
CVE-2017-14954 |
AVG-429 |
Medium |
No |
Information disclosure |
The waitid implementation in kernel/exit.c in the Linux kernel through 4.13.4 accesses rusage data structures in unintended cases, which allows local users... |
CVE-2017-9986 |
AVG-554 |
Medium |
No |
Denial of service |
The intr function in sound/oss/msnd_pinnacle.c in the Linux kernel before 4.13, 4.9.50, 4.4.99 and 4.1.45 allows local users to cause a denial of service... |
CVE-2017-9985 |
AVG-554 |
Medium |
No |
Denial of service |
The snd_msndmidi_input_read function in sound/isa/msnd/msnd_midi.c in the Linux kernel before 4.13, 4.9.50, 4.4.99 and 4.1.45 allows local users to cause a... |
CVE-2017-9984 |
AVG-554 |
Medium |
No |
Denial of service |
The snd_msnd_interrupt function in sound/isa/msnd/msnd_pinnacle.c in the Linux kernel before 4.13, 4.9.50, 4.4.99 and 4.1.45 allows local users to cause a... |
CVE-2017-8824 |
AVG-571 |
High |
No |
Privilege escalation |
A use-after-free vulnerability was found in DCCP socket code affecting the Linux kernel since 2.6.16. The dccp_disconnect function in net/dccp/proto.c... |
CVE-2017-7184 |
AVG-229 |
Medium |
No |
Privilege escalation |
A local privilege escalation vulnerability has been found in the Linux kernel. Chaitin Security Research Lab discovered that xfrm_replay_verify_len(), as... |
CVE-2017-6074 |
AVG-186 |
High |
No |
Privilege escalation |
A use-after-free vulnerability has been discovered in the DCCP implementation in the Linux kernel. The dccp_rcv_state_process function in net/dccp/input.c... |
CVE-2017-5986 |
AVG-186 |
Medium |
No |
Denial of service |
It was reported that with Linux kernel, earlier than version v4.10-rc8, an application may trigger a BUG_ON in sctp_wait_for_sndbuf if the socket tx buffer... |
CVE-2017-5754 |
AVG-571 |
High |
No |
Access restriction bypass |
An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of instructions (a commonly used... |
CVE-2017-5753 |
AVG-557 |
High |
Yes |
Access restriction bypass |
An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of instructions (a commonly used... |
CVE-2017-5715 |
AVG-557 |
High |
No |
Access restriction bypass |
An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of instructions (a commonly used... |
CVE-2017-5123 |
AVG-445 |
High |
No |
Privilege escalation |
It was discovered that when the waitid() syscall in Linux kernel v4.13 was refactored, it accidentally stopped checking that the incoming argument was... |
CVE-2017-2636 |
AVG-203 |
High |
No |
Privilege escalation |
A race condition flaw was found in the N_HLDC Linux kernel driver when accessing the n_hdlc.tbuf list that can lead to double free. A local, unprivileged... |
CVE-2017-2583 |
AVG-151 |
Medium |
No |
Privilege escalation |
The Linux kernel > 3.6-rc1, when built with Kernel-based Virtual Machine (CONFIG_KVM) support, is vulnerable to an incorrect segment selector (SS) value... |
CVE-2016-10088 |
AVG-186 |
High |
No |
Privilege escalation |
The sg implementation in the Linux kernel through 4.9 does not properly restrict write operations in situations where the KERNEL_DS option is set, which... |
CVE-2016-9919 |
AVG-102 |
High |
Yes |
Denial of service |
The icmp6_send function in net/ipv6/icmp.c in the Linux kernel through 4.8.12 omits a certain check of the dst data structure, which allows remote attackers... |
CVE-2016-9588 |
AVG-186 |
Medium |
No |
Denial of service |
Linux kernel built with the KVM visualization support (CONFIG_KVM), with nested visualization(nVMX) feature enabled(nested=1), is vulnerable to an uncaught... |
CVE-2016-8655 |
AVG-98 |
High |
No |
Privilege escalation |
A race condition issue leading to a use-after-free flaw was found in the way the raw packet sockets implementation in the Linux kernel networking subsystem... |