VYPR

Kernel

by Linux

Source repositories

CVEs (15,869)

  • CVE-2020-15437MedNov 23, 2020
    risk 0.29cvss 4.4epss 0.00

    The Linux kernel before version 5.8 is vulnerable to a NULL pointer dereference in drivers/tty/serial/8250/8250_core.c:serial8250_isa_init_ports() that allows local users to cause a denial of service by using the p->serial_in pointer which uninitialized.

  • CVE-2020-14304MedSep 15, 2020
    risk 0.29cvss 4.4epss 0.00

    A memory disclosure flaw was found in the Linux kernel's ethernet drivers, in the way it read data from the EEPROM of the device. This flaw allows a local user to read uninitialized values from the kernel memory. The highest threat from this vulnerability is to confidentiality.

  • CVE-2011-4915MedFeb 20, 2020
    risk 0.29cvss 5.5epss 0.01

    fs/proc/base.c in the Linux kernel through 3.1 allows local users to obtain sensitive keystroke information via access to /proc/interrupts.

  • CVE-2012-0810MedFeb 12, 2020
    risk 0.29cvss 5.5epss 0.00

    The int3 handler in the Linux kernel before 3.3 relies on a per-CPU debug stack, which allows local users to cause a denial of service (stack corruption and panic) via a crafted application that triggers certain lock contention.

  • CVE-2019-20422MedJan 27, 2020
    risk 0.29cvss 5.5epss 0.00

    In the Linux kernel before 5.3.4, fib6_rule_lookup in net/ipv6/ip6_fib.c mishandles the RT6_LOOKUP_F_DST_NOREF flag in a reference-count decision, leading to (for example) a crash that was identified by syzkaller, aka CID-7b09c2d052db.

  • CVE-2019-19318MedNov 28, 2019
    risk 0.29cvss 4.4epss 0.01

    In the Linux kernel 5.3.11, mounting a crafted btrfs image twice can cause an rwsem_down_write_slowpath use-after-free because (in rwsem_can_spin_on_owner in kernel/locking/rwsem.c) rwsem_owner_flags returns an already freed pointer,

  • CVE-2019-19077MedNov 18, 2019
    risk 0.29cvss 5.5epss 0.00

    A memory leak in the bnxt_re_create_srq() function in drivers/infiniband/hw/bnxt_re/ib_verbs.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service (memory consumption) by triggering copy to udata failures, aka CID-4a9d46a9fe14.

  • CVE-2019-19047MedNov 18, 2019
    risk 0.29cvss 5.5epss 0.01

    A memory leak in the mlx5_fw_fatal_reporter_dump() function in drivers/net/ethernet/mellanox/mlx5/core/health.c in the Linux kernel before 5.3.11 allows attackers to cause a denial of service (memory consumption) by triggering mlx5_crdump_collect() failures, aka CID-c7ed6d0183d5.

  • CVE-2019-19043MedNov 18, 2019
    risk 0.29cvss 5.5epss 0.00

    A memory leak in the i40e_setup_macvlans() function in drivers/net/ethernet/intel/i40e/i40e_main.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service (memory consumption) by triggering i40e_setup_channel() failures, aka CID-27d461333459.

  • CVE-2019-18885MedNov 14, 2019
    risk 0.29cvss 5.5epss 0.01

    fs/btrfs/volumes.c in the Linux kernel before 5.1 allows a btrfs_verify_dev_extents NULL pointer dereference via a crafted btrfs image because fs_devices->devices is mishandled within find_device, aka CID-09ba3bc9dd15.

  • CVE-2019-18811MedNov 7, 2019
    risk 0.29cvss 5.5epss 0.00

    A memory leak in the sof_set_get_large_ctrl_data() function in sound/soc/sof/ipc.c in the Linux kernel through 5.3.9 allows attackers to cause a denial of service (memory consumption) by triggering sof_get_ctrl_copy_params() failures, aka CID-45c1380358b1.

  • CVE-2019-18808MedNov 7, 2019
    risk 0.29cvss 5.5epss 0.00

    A memory leak in the ccp_run_sha_cmd() function in drivers/crypto/ccp/ccp-ops.c in the Linux kernel through 5.3.9 allows attackers to cause a denial of service (memory consumption), aka CID-128c66429247.

  • CVE-2015-9289MedJul 27, 2019
    risk 0.29cvss 5.5epss 0.00

    In the Linux kernel before 4.1.4, a buffer overflow occurs when checking userspace params in drivers/media/dvb-frontends/cx24116.c. The maximum size for a DiSEqC command is 6, according to the userspace API. However, the code allows larger values such as 23.

  • CVE-2010-5332MedJul 27, 2019
    risk 0.29cvss 5.6epss 0.00

    In the Linux kernel before 2.6.37, an out of bounds array access happened in drivers/net/mlx4/port.c. When searching for a free entry in either mlx4_register_vlan() or mlx4_register_mac(), and there is no free entry, the loop terminates without updating the local variable free…

  • CVE-2019-7222MedMar 21, 2019
    risk 0.29cvss 5.5epss 0.01

    The KVM implementation in the Linux kernel through 4.20.5 has an Information Leak.

  • CVE-2019-7308MedFeb 1, 2019
    risk 0.29cvss 5.6epss 0.01

    kernel/bpf/verifier.c in the Linux kernel before 4.20.6 performs undesirable out-of-bounds speculation on pointer arithmetic in various cases, including cases of different branches with different state or limits to sanitize, leading to side-channel attacks.

  • CVE-2019-3819MedJan 25, 2019
    risk 0.29cvss 4.4epss 0.00

    A flaw was found in the Linux kernel in the function hid_debug_events_read() in drivers/hid/hid-debug.c file which may enter an infinite loop with certain parameters passed from a userspace. A local privileged user ("root") can cause a system lock up and a denial of service.…

  • CVE-2018-17977MedOct 8, 2018
    risk 0.29cvss 4.4epss 0.00

    The Linux kernel 4.14.67 mishandles certain interaction among XFRM Netlink messages, IPPROTO_AH packets, and IPPROTO_IP packets, which allows local users to cause a denial of service (memory consumption and system hang) by leveraging root access to execute crafted applications,…

  • CVE-2018-15594MedAug 20, 2018
    risk 0.29cvss 5.5epss 0.01

    arch/x86/kernel/paravirt.c in the Linux kernel before 4.18.1 mishandles certain indirect calls, which makes it easier for attackers to conduct Spectre-v2 attacks against paravirtual guests.

  • CVE-2017-15814MedMar 16, 2018
    risk 0.29cvss 4.4epss 0.00

    In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, in msm_flash_subdev_do_ioctl of drivers/media/platform/msm/camera_v2/sensor/flash/msm_flash.c, there is a possible out of bounds read if flash_data.cfg_type is…

Page 574 of 794