rpm package
suse/kgraft-patch-SLE12-SP3_Update_42&distro=SUSE OpenStack Cloud 8
pkg:rpm/suse/kgraft-patch-SLE12-SP3_Update_42&distro=SUSE%20OpenStack%20Cloud%208
Vulnerabilities (23)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2021-3564 | — | < 1-4.3.1 | 1-4.3.1 | Jun 8, 2021 | A flaw double-free memory corruption in the Linux kernel HCI device initialization subsystem was found in the way user attach malicious HCI TTY Bluetooth device. A local user could use this flaw to crash the system. This flaw affects all the Linux kernel versions starting from 3. | ||
| CVE-2020-35519 | — | < 1-4.3.1 | 1-4.3.1 | May 6, 2021 | An out-of-bounds (OOB) memory access flaw was found in x25_bind in net/x25/af_x25.c in the Linux kernel version v5.12-rc5. A bounds check failure allows a local attacker with a user account on the system to gain access to out-of-bounds memory, leading to a system crash or a leak | ||
| CVE-2019-0136 | — | < 1-4.3.1 | 1-4.3.1 | Jun 13, 2019 | Insufficient access control in the Intel(R) PROSet/Wireless WiFi Software driver before version 21.10 may allow an unauthenticated user to potentially enable denial of service via adjacent access. |
- CVE-2021-3564Jun 8, 2021affected < 1-4.3.1fixed 1-4.3.1
A flaw double-free memory corruption in the Linux kernel HCI device initialization subsystem was found in the way user attach malicious HCI TTY Bluetooth device. A local user could use this flaw to crash the system. This flaw affects all the Linux kernel versions starting from 3.
- CVE-2020-35519May 6, 2021affected < 1-4.3.1fixed 1-4.3.1
An out-of-bounds (OOB) memory access flaw was found in x25_bind in net/x25/af_x25.c in the Linux kernel version v5.12-rc5. A bounds check failure allows a local attacker with a user account on the system to gain access to out-of-bounds memory, leading to a system crash or a leak
- CVE-2019-0136Jun 13, 2019affected < 1-4.3.1fixed 1-4.3.1
Insufficient access control in the Intel(R) PROSet/Wireless WiFi Software driver before version 21.10 may allow an unauthenticated user to potentially enable denial of service via adjacent access.
Page 2 of 2