VYPR

Vendor CVEs

Linux

All CVEs

15,998 total · sorted by risk
  • CVE-2024-26911LowApr 17, 2024
    risk 0.21cvss 3.3epss 0.00

    In the Linux kernel, the following vulnerability has been resolved: drm/buddy: Fix alloc_range() error handling code Few users have observed display corruption when they boot the machine to KDE Plasma or playing games. We have root caused the problem that whenever…

  • CVE-2024-26764LowApr 3, 2024
    risk 0.21cvss 3.3epss 0.00

    In the Linux kernel, the following vulnerability has been resolved: fs/aio: Restrict kiocb_set_cancel_fn() to I/O submitted via libaio If kiocb_set_cancel_fn() is called for I/O submitted via io_uring, the following kernel warning appears: WARNING: CPU: 3 PID: 368 at…

  • CVE-2021-47089LowMar 4, 2024
    risk 0.21cvss 3.3epss 0.00

    In the Linux kernel, the following vulnerability has been resolved: kfence: fix memory leak when cat kfence objects Hulk robot reported a kmemleak problem: unreferenced object 0xffff93d1d8cc02e8 (size 248): comm "cat", pid 23327, jiffies 4624670141 (age 495992.217s)…

  • CVE-2021-47000LowFeb 28, 2024
    risk 0.21cvss 3.3epss 0.00

    In the Linux kernel, the following vulnerability has been resolved: ceph: fix inode leak on getattr error in __fh_to_dentry

  • CVE-2021-46971LowFeb 27, 2024
    risk 0.21cvss 3.3epss 0.00

    In the Linux kernel, the following vulnerability has been resolved: perf/core: Fix unconditional security_locked_down() call Currently, the lockdown state is queried unconditionally, even though its result is used only if the PERF_SAMPLE_REGS_INTR bit is set in…

  • CVE-2021-46934LowFeb 27, 2024
    risk 0.21cvss 3.3epss 0.00

    In the Linux kernel, the following vulnerability has been resolved: i2c: validate user data in compat ioctl Wrong user data may cause warning in i2c_transfer(), ex: zero msgs. Userspace should not be able to trigger warnings, so this patch adds validation checks for user data…

  • CVE-2024-24861LowFeb 5, 2024
    risk 0.21cvss 3.3epss 0.00

    A race condition was found in the Linux kernel's media/xc4000 device driver in xc4000 xc4000_get_frequency() function. This can result in return value overflow issue, possibly leading to malfunction or denial of service issue.

  • CVE-2023-39194LowOct 9, 2023
    risk 0.21cvss 3.2epss 0.00

    A flaw was found in the XFRM subsystem in the Linux kernel. The specific flaw exists within the processing of state filters, which can result in a read past the end of an allocated buffer. This flaw allows a local privileged (CAP_NET_ADMIN) attacker to trigger an out-of-bounds…

  • CVE-2021-21781LowAug 18, 2021
    risk 0.21cvss 3.3epss 0.01

    An information disclosure vulnerability exists in the ARM SIGPAGE functionality of Linux Kernel v5.4.66 and v5.4.54. The latest version (5.11-rc4) seems to still be vulnerable. A userland application can read the contents of the sigpage, which can leak kernel memory contents. An…

  • CVE-2021-3655LowAug 5, 2021
    risk 0.21cvss 3.3epss 0.00

    A vulnerability was found in the Linux kernel in versions prior to v5.14-rc1. Missing size validations on inbound SCTP packets may allow the kernel to read uninitialized memory.

  • CVE-2021-22555HigKEVJul 7, 2021
    risk 0.21cvss 8.3epss 0.79

    A heap out-of-bounds write affecting Linux since v2.6.19-rc1 was discovered in net/netfilter/x_tables.c. This allows an attacker to gain privileges or cause a DoS (via heap memory corruption) through user name space

  • CVE-2021-20239LowMay 28, 2021
    risk 0.21cvss 3.3epss 0.00

    A flaw was found in the Linux kernel in versions before 5.4.92 in the BPF protocol. This flaw allows an attacker with a local account to leak information about kernel internal addresses. The highest threat from this vulnerability is to confidentiality.

  • CVE-2018-6559LowOct 26, 2018
    risk 0.21cvss 3.3epss 0.01

    The Linux kernel, as used in Ubuntu 18.04 LTS and Ubuntu 18.10, allows local users to obtain names of files in which they would not normally be able to access via an overlayfs mount inside of a user namespace.

  • CVE-2017-17864LowDec 27, 2017
    risk 0.21cvss 3.3epss 0.00

    kernel/bpf/verifier.c in the Linux kernel through 4.14.8 mishandles states_equal comparisons between the pointer data type and the UNKNOWN_VALUE data type, which allows local users to obtain potentially sensitive address information, aka a "pointer leak."

  • CVE-2017-17807LowDec 20, 2017
    risk 0.21cvss 3.3epss 0.00

    The KEYS subsystem in the Linux kernel before 4.14.6 omitted an access-control check when adding a key to the current task's "default request-key keyring" via the request_key() system call, allowing a local user to use a sequence of crafted system calls to add keys to a keyring…

  • CVE-2016-10208MedFeb 6, 2017
    risk 0.21cvss 4.3epss 0.00

    The ext4_fill_super function in fs/ext4/super.c in the Linux kernel through 4.9.8 does not properly validate meta block groups, which allows physically proximate attackers to cause a denial of service (out-of-bounds read and system crash) via a crafted ext4 image.

  • CVE-2026-53342modJul 1, 2026
    risk 0.19cvss epss 0.00

    kernel: arm64: mm: call pagetable dtor when freeing hot-removed page tables

  • CVE-2026-53344modJul 1, 2026
    risk 0.19cvss epss 0.00

    kernel: pinctrl: mcp23s08: Initialize mcp->dev and mcp->addr before regmap init

  • CVE-2019-19073MedNov 18, 2019
    risk 0.19cvss 4.0epss 0.01

    Memory leaks in drivers/net/wireless/ath/ath9k/htc_hst.c in the Linux kernel through 5.3.11 allow attackers to cause a denial of service (memory consumption) by triggering wait_for_completion_timeout() failures. This affects the htc_config_pipe_credits() function, the…

  • CVE-2019-13272HigKEVJul 17, 2019
    risk 0.19cvss 7.8epss 0.52

    In the Linux kernel before 5.1.17, ptrace_link in kernel/ptrace.c mishandles the recording of the credentials of a process that wants to create a ptrace relationship, which allows local users to obtain root access by leveraging certain scenarios with a parent-child process…

  • CVE-2016-0823MedMar 12, 2016
    risk 0.19cvss 4.0epss 0.00

    The pagemap_open function in fs/proc/task_mmu.c in the Linux kernel before 3.19.3, as used in Android 6.0.1 before 2016-03-01, allows local users to obtain sensitive physical-address information by reading a pagemap file, aka Android internal bug 25739721.

  • CVE-2015-8575MedFeb 8, 2016
    risk 0.19cvss 4.0epss 0.01

    The sco_sock_bind function in net/bluetooth/sco.c in the Linux kernel before 4.3.4 does not verify an address length, which allows local users to obtain sensitive information from kernel memory and bypass the KASLR protection mechanism via a crafted application.

  • CVE-2015-8374MedDec 28, 2015
    risk 0.19cvss 4.0epss 0.01

    fs/btrfs/inode.c in the Linux kernel before 4.3.3 mishandles compressed inline extents, which allows local users to obtain sensitive pre-truncation information from a file via a clone action.

  • CVE-2023-32251LowJul 31, 2025
    risk 0.17cvss 3.7epss 0.00

    A vulnerability has been identified in the Linux kernel's ksmbd component (kernel SMB/CIFS server). A security control designed to prevent dictionary attacks, which introduces a 5-second delay during session setup, can be bypassed through the use of asynchronous requests. This…

  • CVE-2023-52746LowMay 21, 2024
    risk 0.16cvss 2.5epss 0.00

    In the Linux kernel, the following vulnerability has been resolved: xfrm/compat: prevent potential spectre v1 gadget in xfrm_xlate32_attr() int type = nla_type(nla); if (type > XFRMA_MAX) { return -EOPNOTSUPP; } @type is then used as an array index and can…

  • CVE-2023-52620LowMar 21, 2024
    risk 0.16cvss 2.5epss 0.00

    In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: disallow timeout for anonymous sets Never used from userspace, disallow these parameters.

  • CVE-2023-0386HigKEVMar 22, 2023
    risk 0.16cvss 7.8epss 0.08

    A flaw was found in the Linux kernel, where unauthorized access to the execution of the setuid file with capabilities was found in the Linux kernel’s OverlayFS subsystem in how a user copies a capable file from a nosuid mount into another mount. This uid mapping bug allows a…

  • CVE-2019-11191LowApr 12, 2019
    risk 0.16cvss 2.5epss 0.01

    The Linux kernel through 5.0.7, when CONFIG_IA32_AOUT is enabled and ia32_aout is loaded, allows local users to bypass ASLR on setuid a.out programs (if any exist) because install_exec_creds() is called too late in load_aout_binary() in fs/binfmt_aout.c, and thus the…

  • CVE-2021-47440LowMay 22, 2024
    risk 0.15cvss 2.3epss 0.00

    In the Linux kernel, the following vulnerability has been resolved: net: encx24j600: check error in devm_regmap_init_encx24j600 devm_regmap_init may return error which caused by like out of memory, this will results in null pointer dereference later when reading or writing…

  • CVE-2021-3923LowMar 27, 2023
    risk 0.15cvss 2.3epss 0.00

    A flaw was found in the Linux kernel's implementation of RDMA over infiniband. An attacker with a privileged local account can leak kernel stack information when issuing commands to the /dev/infiniband/rdma_cm device node. While this access is unlikely to leak sensitive user…

  • CVE-2018-1118LowMay 10, 2018
    risk 0.15cvss 2.3epss 0.00

    Linux kernel vhost since version 4.8 does not properly initialize memory in messages passed between virtual guests and the host operating system in the vhost/vhost.c:vhost_new_msg() function. This can allow local privileged users to read some kernel memory contents when reading…

  • CVE-2026-46057LowMay 27, 2026
    risk 0.14cvss 3.3epss 0.00

    In the Linux kernel, the following vulnerability has been resolved: landlock: Fix LOG_SUBDOMAINS_OFF inheritance across fork() hook_cred_transfer() only copies the Landlock security blob when the source credential has a domain. This is inconsistent with…

  • CVE-2024-41027LowJul 29, 2024
    risk 0.14cvss 3.3epss 0.00

    In the Linux kernel, the following vulnerability has been resolved: Fix userfaultfd_api to return EINVAL as expected Currently if we request a feature that is not set in the Kernel config we fail silently and return all the available features. However, the man page indicates…

  • CVE-2024-41007LowJul 15, 2024
    risk 0.14cvss 3.3epss 0.00

    In the Linux kernel, the following vulnerability has been resolved: tcp: avoid too many retransmit packets If a TCP socket is using TCP_USER_TIMEOUT, and the other peer retracted its window to zero, tcp_retransmit_timer() can retransmit a packet every two jiffies (2 ms for…

  • CVE-2024-26992LowMay 1, 2024
    risk 0.14cvss 3.3epss 0.00

    In the Linux kernel, the following vulnerability has been resolved: KVM: x86/pmu: Disable support for adaptive PEBS Drop support for virtualizing adaptive PEBS, as KVM's implementation is architecturally broken without an obvious/easy path forward, and because exposing…

  • CVE-2020-36766LowSep 18, 2023
    risk 0.14cvss 3.3epss 0.00

    An issue was discovered in the Linux kernel before 5.8.6. drivers/media/cec/core/cec-api.c leaks one byte of kernel memory on specific hardware to unprivileged users, because of directly assigning log_addrs with a hole in the struct.

  • CVE-2022-0185HigKEVFeb 11, 2022
    risk 0.14cvss 8.4epss 0.25

    A heap-based buffer overflow flaw was found in the way the legacy_parse_param function in the Filesystem Context functionality of the Linux kernel verified the supplied parameters length. An unprivileged (in case of unprivileged user namespaces enabled, otherwise needs…

  • CVE-2024-42155LowJul 30, 2024
    risk 0.12cvss 1.9epss 0.00

    In the Linux kernel, the following vulnerability has been resolved: s390/pkey: Wipe copies of protected- and secure-keys Although the clear-key of neither protected- nor secure-keys is accessible, this key material should only be visible to the calling process. So wipe all…

  • CVE-2023-0266HigKEVJan 30, 2023
    risk 0.12cvss 7.9epss 0.04

    A use after free vulnerability exists in the ALSA PCM package in the Linux Kernel. SNDRV_CTL_IOCTL_ELEM_{READ|WRITE}32 is missing locks that can be used in a use-after-free that can result in a priviledge escalation to gain ring0 access from the system user. We recommend…

  • CVE-2021-22600MedKEVJan 26, 2022
    risk 0.12cvss 6.6epss 0.06

    A double free bug in packet_set_ring() in net/packet/af_packet.c can be exploited by a local user through crafted syscalls to escalate privileges or deny service. We recommend upgrading kernel past the effected versions or rebuilding past ec6af094ea28f0f2dda1a6a33b14cd57e36a9755

  • CVE-2003-0001Jan 17, 2003
    risk 0.09cvss epss 0.73

    Multiple ethernet Network Interface Card (NIC) device drivers do not pad frames with null bytes, which allows remote attackers to obtain information from previous packets or kernel memory by using malformed packets, as demonstrated by Etherleak.

  • CVE-1999-0513Jan 5, 1998
    risk 0.09cvss epss 0.70

    ICMP messages to broadcast addresses are allowed, allowing for a Smurf attack that can cause a denial of service.

  • CVE-1999-0128Dec 18, 1996
    risk 0.09cvss epss 0.74

    Oversized ICMP ping packets can result in a denial of service, aka Ping o' Death.

  • CVE-2019-11478MedJun 19, 2019
    risk 0.08cvss 5.3epss 0.95

    Jonathan Looney discovered that the TCP retransmission queue implementation in tcp_fragment in the Linux kernel could be fragmented when handling certain TCP Selective Acknowledgment (SACK) sequences. A remote attacker could use this to cause a denial of service. This has been…

  • CVE-2019-11477HigJun 19, 2019
    risk 0.08cvss 7.5epss 0.99

    Jonathan Looney discovered that the TCP_SKB_CB(skb)->tcp_gso_segs value was subject to an integer overflow in the Linux kernel when handling TCP Selective Acknowledgments (SACKs). A remote attacker could use this to cause a denial of service. This has been fixed in stable kernel…

  • CVE-2015-8569LowDec 28, 2015
    risk 0.08cvss 2.3epss 0.00

    The (1) pptp_bind and (2) pptp_connect functions in drivers/net/ppp/pptp.c in the Linux kernel through 4.3.3 do not verify an address length, which allows local users to obtain sensitive information from kernel memory and bypass the KASLR protection mechanism via a crafted…

  • CVE-2015-7885LowDec 28, 2015
    risk 0.08cvss 2.3epss 0.00

    The dgnc_mgmt_ioctl function in drivers/staging/dgnc/dgnc_mgmt.c in the Linux kernel through 4.3.3 does not initialize a certain structure member, which allows local users to obtain sensitive information from kernel memory via a crafted application.

  • CVE-2015-7884LowDec 28, 2015
    risk 0.08cvss 2.3epss 0.00

    The vivid_fb_ioctl function in drivers/media/platform/vivid/vivid-osd.c in the Linux kernel through 4.3.3 does not initialize a certain structure member, which allows local users to obtain sensitive information from kernel memory via a crafted application.

  • CVE-2019-11479HigJun 19, 2019
    risk 0.07cvss 7.5epss 0.92

    Jonathan Looney discovered that the Linux kernel default MSS is hard-coded to 48 bytes. This allows a remote peer to fragment TCP resend queues significantly more than if a larger MSS were enforced. A remote attacker could use this to cause a denial of service. This has been…

  • CVE-2023-0210HigMar 27, 2023
    risk 0.06cvss 7.5epss 0.72

    A bug affects the Linux kernel’s ksmbd NTLMv2 authentication and is known to crash the OS immediately in Linux-based systems.

Page 236 of 320