rpm package
suse/kernel-syms&distro=HPE Helion OpenStack 8
pkg:rpm/suse/kernel-syms&distro=HPE%20Helion%20OpenStack%208
Vulnerabilities (347)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2020-36158 | — | < 4.4.180-94.138.1 | 4.4.180-94.138.1 | Jan 5, 2021 | mwifiex_cmd_802_11_ad_hoc_start in drivers/net/wireless/marvell/mwifiex/join.c in the Linux kernel through 5.10.4 might allow remote attackers to execute arbitrary code via a long SSID value, aka CID-5c455c5ab332. | ||
| CVE-2020-29569 | — | < 4.4.180-94.138.1 | 4.4.180-94.138.1 | Dec 15, 2020 | An issue was discovered in the Linux kernel through 5.10.1, as used with Xen through 4.14.x. The Linux kernel PV block backend expects the kernel thread handler to reset ring->xenblkd to NULL when stopped. However, the handler may not have time to run if the frontend quickly togg | ||
| CVE-2020-27777 | — | < 4.4.180-94.138.1 | 4.4.180-94.138.1 | Dec 15, 2020 | A flaw was found in the way RTAS handled memory accesses in userspace to kernel communication. On a locked down (usually due to Secure Boot) guest system running on top of PowerVM or KVM hypervisors (pseries platform) a root like local user could use this flaw to further increase | ||
| CVE-2020-29568 | — | < 4.4.180-94.138.1 | 4.4.180-94.138.1 | Dec 15, 2020 | An issue was discovered in Xen through 4.14.x. Some OSes (such as Linux, FreeBSD, and NetBSD) are processing watch events using a single thread. If the events are received faster than the thread is able to handle, they will get queued. As the queue is unbounded, a guest may be ab | ||
| CVE-2020-27068 | — | < 4.4.180-94.138.1 | 4.4.180-94.138.1 | Dec 15, 2020 | Product: AndroidVersions: Android kernelAndroid ID: A-127973231References: Upstream kernel | ||
| CVE-2020-0465 | — | < 4.4.180-94.138.1 | 4.4.180-94.138.1 | Dec 14, 2020 | In various methods of hid-multitouch.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions | ||
| CVE-2020-0444 | — | < 4.4.180-94.138.1 | 4.4.180-94.138.1 | Dec 14, 2020 | In audit_free_lsm_field of auditfilter.c, there is a possible bad kfree due to a logic error in audit_data_to_entry. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVe | ||
| CVE-2020-0466 | — | < 4.4.180-94.138.1 | 4.4.180-94.138.1 | Dec 14, 2020 | In do_epoll_ctl and ep_loop_check_proc of eventpoll.c, there is a possible use after free due to a logic error. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersion | ||
| CVE-2020-27825 | — | < 4.4.180-94.138.1 | 4.4.180-94.138.1 | Dec 11, 2020 | A use-after-free flaw was found in kernel/trace/ring_buffer.c in Linux kernel (before 5.10-rc1). There was a race problem in trace_open and resize of cpu buffer running parallely on different cpus, may cause a denial of service problem (DOS). This flaw could even allow a local at | ||
| CVE-2020-27786 | — | < 4.4.180-94.138.1 | 4.4.180-94.138.1 | Dec 11, 2020 | A flaw was found in the Linux kernel’s implementation of MIDI, where an attacker with a local account and the permissions to issue ioctl commands to midi devices could trigger a use-after-free issue. A write to this specific memory while freed and before use causes the flow of ex | ||
| CVE-2020-29660 | — | < 4.4.180-94.138.1 | 4.4.180-94.138.1 | Dec 9, 2020 | A locking inconsistency issue was discovered in the tty subsystem of the Linux kernel through 5.9.13. drivers/tty/tty_io.c and drivers/tty/tty_jobctrl.c may allow a read-after-free attack against TIOCGSID, aka CID-c8bcd9c5be24. | ||
| CVE-2020-29661 | — | < 4.4.180-94.138.1 | 4.4.180-94.138.1 | Dec 9, 2020 | A locking issue was discovered in the tty subsystem of the Linux kernel through 5.9.13. drivers/tty/tty_jobctrl.c allows a use-after-free attack against TIOCSPGRP, aka CID-54ffccbf053b. | ||
| CVE-2020-14351 | — | < 4.4.180-94.135.1 | 4.4.180-94.135.1 | Dec 3, 2020 | A flaw was found in the Linux kernel. A use-after-free memory flaw was found in the perf subsystem allowing a local attacker with permission to monitor perf events to corrupt memory and possibly escalate privileges. The highest threat from this vulnerability is to data confidenti | ||
| CVE-2020-14381 | — | < 4.4.180-94.135.1 | 4.4.180-94.135.1 | Dec 3, 2020 | A flaw was found in the Linux kernel’s futex implementation. This flaw allows a local attacker to corrupt system memory or escalate their privileges when creating a futex on a filesystem that is about to be unmounted. The highest threat from this vulnerability is to confidentiali | ||
| CVE-2020-14305 | — | < 4.4.180-94.150.1 | 4.4.180-94.150.1 | Dec 2, 2020 | An out-of-bounds memory write flaw was found in how the Linux kernel’s Voice Over IP H.323 connection tracking functionality handled connections on ipv6 port 1720. This flaw allows an unauthenticated remote user to crash the system, causing a denial of service. The highest threat | ||
| CVE-2020-25656 | — | < 4.4.180-94.135.1 | 4.4.180-94.135.1 | Dec 2, 2020 | A flaw was found in the Linux kernel. A use-after-free was found in the way the console subsystem was using ioctls KDGKBSENT and KDSKBSENT. A local user could use this flaw to get read memory access out of bounds. The highest threat from this vulnerability is to data confidential | ||
| CVE-2019-20934 | — | < 4.4.180-94.138.1 | 4.4.180-94.138.1 | Nov 28, 2020 | An issue was discovered in the Linux kernel before 5.2.6. On NUMA systems, the Linux fair scheduler has a use-after-free in show_numa_stats() because NUMA fault statistics are inappropriately freed, aka CID-16d51a590a8c. | ||
| CVE-2020-15437 | — | < 4.4.180-94.138.1 | 4.4.180-94.138.1 | Nov 23, 2020 | The Linux kernel before version 5.8 is vulnerable to a NULL pointer dereference in drivers/tty/serial/8250/8250_core.c:serial8250_isa_init_ports() that allows local users to cause a denial of service by using the p->serial_in pointer which uninitialized. | ||
| CVE-2020-15436 | — | < 4.4.180-94.138.1 | 4.4.180-94.138.1 | Nov 23, 2020 | Use-after-free vulnerability in fs/block_dev.c in the Linux kernel before 5.8 allows local users to gain privileges or cause a denial of service by leveraging improper access to a certain error field. | ||
| CVE-2020-12352 | — | < 4.4.180-94.135.1 | 4.4.180-94.135.1 | Nov 23, 2020 | Improper access control in BlueZ may allow an unauthenticated user to potentially enable information disclosure via adjacent access. |
- CVE-2020-36158Jan 5, 2021affected < 4.4.180-94.138.1fixed 4.4.180-94.138.1
mwifiex_cmd_802_11_ad_hoc_start in drivers/net/wireless/marvell/mwifiex/join.c in the Linux kernel through 5.10.4 might allow remote attackers to execute arbitrary code via a long SSID value, aka CID-5c455c5ab332.
- CVE-2020-29569Dec 15, 2020affected < 4.4.180-94.138.1fixed 4.4.180-94.138.1
An issue was discovered in the Linux kernel through 5.10.1, as used with Xen through 4.14.x. The Linux kernel PV block backend expects the kernel thread handler to reset ring->xenblkd to NULL when stopped. However, the handler may not have time to run if the frontend quickly togg
- CVE-2020-27777Dec 15, 2020affected < 4.4.180-94.138.1fixed 4.4.180-94.138.1
A flaw was found in the way RTAS handled memory accesses in userspace to kernel communication. On a locked down (usually due to Secure Boot) guest system running on top of PowerVM or KVM hypervisors (pseries platform) a root like local user could use this flaw to further increase
- CVE-2020-29568Dec 15, 2020affected < 4.4.180-94.138.1fixed 4.4.180-94.138.1
An issue was discovered in Xen through 4.14.x. Some OSes (such as Linux, FreeBSD, and NetBSD) are processing watch events using a single thread. If the events are received faster than the thread is able to handle, they will get queued. As the queue is unbounded, a guest may be ab
- CVE-2020-27068Dec 15, 2020affected < 4.4.180-94.138.1fixed 4.4.180-94.138.1
Product: AndroidVersions: Android kernelAndroid ID: A-127973231References: Upstream kernel
- CVE-2020-0465Dec 14, 2020affected < 4.4.180-94.138.1fixed 4.4.180-94.138.1
In various methods of hid-multitouch.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions
- CVE-2020-0444Dec 14, 2020affected < 4.4.180-94.138.1fixed 4.4.180-94.138.1
In audit_free_lsm_field of auditfilter.c, there is a possible bad kfree due to a logic error in audit_data_to_entry. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVe
- CVE-2020-0466Dec 14, 2020affected < 4.4.180-94.138.1fixed 4.4.180-94.138.1
In do_epoll_ctl and ep_loop_check_proc of eventpoll.c, there is a possible use after free due to a logic error. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersion
- CVE-2020-27825Dec 11, 2020affected < 4.4.180-94.138.1fixed 4.4.180-94.138.1
A use-after-free flaw was found in kernel/trace/ring_buffer.c in Linux kernel (before 5.10-rc1). There was a race problem in trace_open and resize of cpu buffer running parallely on different cpus, may cause a denial of service problem (DOS). This flaw could even allow a local at
- CVE-2020-27786Dec 11, 2020affected < 4.4.180-94.138.1fixed 4.4.180-94.138.1
A flaw was found in the Linux kernel’s implementation of MIDI, where an attacker with a local account and the permissions to issue ioctl commands to midi devices could trigger a use-after-free issue. A write to this specific memory while freed and before use causes the flow of ex
- CVE-2020-29660Dec 9, 2020affected < 4.4.180-94.138.1fixed 4.4.180-94.138.1
A locking inconsistency issue was discovered in the tty subsystem of the Linux kernel through 5.9.13. drivers/tty/tty_io.c and drivers/tty/tty_jobctrl.c may allow a read-after-free attack against TIOCGSID, aka CID-c8bcd9c5be24.
- CVE-2020-29661Dec 9, 2020affected < 4.4.180-94.138.1fixed 4.4.180-94.138.1
A locking issue was discovered in the tty subsystem of the Linux kernel through 5.9.13. drivers/tty/tty_jobctrl.c allows a use-after-free attack against TIOCSPGRP, aka CID-54ffccbf053b.
- CVE-2020-14351Dec 3, 2020affected < 4.4.180-94.135.1fixed 4.4.180-94.135.1
A flaw was found in the Linux kernel. A use-after-free memory flaw was found in the perf subsystem allowing a local attacker with permission to monitor perf events to corrupt memory and possibly escalate privileges. The highest threat from this vulnerability is to data confidenti
- CVE-2020-14381Dec 3, 2020affected < 4.4.180-94.135.1fixed 4.4.180-94.135.1
A flaw was found in the Linux kernel’s futex implementation. This flaw allows a local attacker to corrupt system memory or escalate their privileges when creating a futex on a filesystem that is about to be unmounted. The highest threat from this vulnerability is to confidentiali
- CVE-2020-14305Dec 2, 2020affected < 4.4.180-94.150.1fixed 4.4.180-94.150.1
An out-of-bounds memory write flaw was found in how the Linux kernel’s Voice Over IP H.323 connection tracking functionality handled connections on ipv6 port 1720. This flaw allows an unauthenticated remote user to crash the system, causing a denial of service. The highest threat
- CVE-2020-25656Dec 2, 2020affected < 4.4.180-94.135.1fixed 4.4.180-94.135.1
A flaw was found in the Linux kernel. A use-after-free was found in the way the console subsystem was using ioctls KDGKBSENT and KDSKBSENT. A local user could use this flaw to get read memory access out of bounds. The highest threat from this vulnerability is to data confidential
- CVE-2019-20934Nov 28, 2020affected < 4.4.180-94.138.1fixed 4.4.180-94.138.1
An issue was discovered in the Linux kernel before 5.2.6. On NUMA systems, the Linux fair scheduler has a use-after-free in show_numa_stats() because NUMA fault statistics are inappropriately freed, aka CID-16d51a590a8c.
- CVE-2020-15437Nov 23, 2020affected < 4.4.180-94.138.1fixed 4.4.180-94.138.1
The Linux kernel before version 5.8 is vulnerable to a NULL pointer dereference in drivers/tty/serial/8250/8250_core.c:serial8250_isa_init_ports() that allows local users to cause a denial of service by using the p->serial_in pointer which uninitialized.
- CVE-2020-15436Nov 23, 2020affected < 4.4.180-94.138.1fixed 4.4.180-94.138.1
Use-after-free vulnerability in fs/block_dev.c in the Linux kernel before 5.8 allows local users to gain privileges or cause a denial of service by leveraging improper access to a certain error field.
- CVE-2020-12352Nov 23, 2020affected < 4.4.180-94.135.1fixed 4.4.180-94.135.1
Improper access control in BlueZ may allow an unauthenticated user to potentially enable information disclosure via adjacent access.
Page 8 of 18