Linux

Linux Kernel

12290 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2022-47939

  • EPSS 0.97%
  • Published 23.12.2022 16:15:12
  • Last modified 14.04.2025 19:15:32

An issue was discovered in ksmbd in the Linux kernel 5.15 through 5.19 before 5.19.2. fs/ksmbd/smb2pdu.c has a use-after-free and OOPS for SMB2_TREE_DISCONNECT.

8.1

CVE-2022-47940

  • EPSS 0.17%
  • Published 23.12.2022 16:15:12
  • Last modified 14.04.2025 19:15:33

An issue was discovered in ksmbd in the Linux kernel 5.15 through 5.18 before 5.18.18. fs/ksmbd/smb2pdu.c lacks length validation in the non-padding case in smb2_write.

7.5

CVE-2022-47941

  • EPSS 0.3%
  • Published 23.12.2022 16:15:12
  • Last modified 15.04.2025 14:15:39

An issue was discovered in ksmbd in the Linux kernel 5.15 through 5.19 before 5.19.2. fs/ksmbd/smb2pdu.c omits a kfree call in certain smb2_handle_negotiate error conditions, aka a memory leak.

8.8

CVE-2022-47942

  • EPSS 0.1%
  • Published 23.12.2022 16:15:12
  • Last modified 15.04.2025 14:15:39

An issue was discovered in ksmbd in the Linux kernel 5.15 through 5.19 before 5.19.2. There is a heap-based buffer overflow in set_ntacl_dacl, related to use of SMB2_QUERY_INFO_HE after a malformed SMB2_SET_INFO_HE command.

5.5

CVE-2022-4662

  • EPSS 0.02%
  • Published 22.12.2022 22:15:16
  • Last modified 09.04.2025 19:15:46

A flaw incorrect access control in the Linux kernel USB core subsystem was found in the way user attaches usb device. A local user could use this flaw to crash the system.

7.8

CVE-2022-47518

  • EPSS 0.03%
  • Published 18.12.2022 06:15:09
  • Last modified 17.04.2025 15:15:52

An issue was discovered in the Linux kernel before 6.0.11. Missing validation of the number of channels in drivers/net/wireless/microchip/wilc1000/cfg80211.c in the WILC1000 wireless driver can trigger a heap-based buffer overflow when copying the li...

7.8

CVE-2022-47519

  • EPSS 0.03%
  • Published 18.12.2022 06:15:09
  • Last modified 17.04.2025 15:15:52

An issue was discovered in the Linux kernel before 6.0.11. Missing validation of IEEE80211_P2P_ATTR_OPER_CHANNEL in drivers/net/wireless/microchip/wilc1000/cfg80211.c in the WILC1000 wireless driver can trigger an out-of-bounds write when parsing the...

7.1

CVE-2022-47520

  • EPSS 0.02%
  • Published 18.12.2022 06:15:09
  • Last modified 17.04.2025 15:15:53

An issue was discovered in the Linux kernel before 6.0.11. Missing offset validation in drivers/net/wireless/microchip/wilc1000/hif.c in the WILC1000 wireless driver can trigger an out-of-bounds read when parsing a Robust Security Network (RSN) infor...

7.8

CVE-2022-47521

  • EPSS 0.03%
  • Published 18.12.2022 06:15:09
  • Last modified 17.04.2025 19:15:55

An issue was discovered in the Linux kernel before 6.0.11. Missing validation of IEEE80211_P2P_ATTR_CHANNEL_LIST in drivers/net/wireless/microchip/wilc1000/cfg80211.c in the WILC1000 wireless driver can trigger a heap-based buffer overflow when parsi...

5.5

CVE-2022-3108

  • EPSS 0.02%
  • Published 14.12.2022 21:15:12
  • Last modified 22.04.2025 15:15:59

An issue was discovered in the Linux kernel through 5.16-rc6. kfd_parse_subtype_iolink in drivers/gpu/drm/amd/amdkfd/kfd_crat.c lacks check of the return value of kmemdup().