Linux

Linux Kernel

12290 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2021-45480

  • EPSS 0.09%
  • Published 24.12.2021 23:15:07
  • Last modified 21.11.2024 06:32:17

An issue was discovered in the Linux kernel before 5.15.11. There is a memory leak in the __rds_conn_create() function in net/rds/connection.c in a certain combination of circumstances.

7.8

CVE-2021-45469

Exploit
  • EPSS 0.07%
  • Published 23.12.2021 19:15:12
  • Last modified 21.11.2024 06:32:16

In __f2fs_setxattr in fs/f2fs/xattr.c in the Linux kernel through 5.15.11, there is an out-of-bounds memory access when an inode has an invalid last xattr entry.

7

CVE-2021-44733

Exploit
  • EPSS 0.28%
  • Published 22.12.2021 17:15:09
  • Last modified 21.11.2024 06:31:28

A use-after-free exists in drivers/tee/tee_shm.c in the TEE subsystem in the Linux kernel through 5.15.11. This occurs because of a race condition in tee_shm_get_from_id during an attempt to free a shared memory object.

5.5

CVE-2021-45095

  • EPSS 0.02%
  • Published 16.12.2021 04:15:06
  • Last modified 21.11.2024 06:31:56

pep_sock_accept in net/phonet/pep.c in the Linux kernel through 5.15.8 has a refcount leak.

6.9

CVE-2021-0920

Warning
  • EPSS 0.94%
  • Published 15.12.2021 19:15:11
  • Last modified 23.10.2025 14:53:26

In unix_scm_to_skb of af_unix.c, there is a possible use after free bug due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: Androi...

7.8

CVE-2018-25020

  • EPSS 0.16%
  • Published 08.12.2021 05:15:07
  • Last modified 21.11.2024 04:03:22

The BPF subsystem in the Linux kernel before 4.17 mishandles situations with a long jump over an instruction sequence where inner instructions require substantial expansions into multiple BPF instructions, leading to an overflow. This affects kernel/...

6.7

CVE-2021-43975

Exploit
  • EPSS 0.02%
  • Published 17.11.2021 17:15:08
  • Last modified 21.11.2024 06:30:07

In the Linux kernel through 5.15.2, hw_atl_utils_fw_rpc_wait in drivers/net/ethernet/aquantia/atlantic/hw_atl/hw_atl_utils.c allows an attacker (who can introduce a crafted device) to trigger an out-of-bounds write via a crafted length value.

4.6

CVE-2021-43976

  • EPSS 0.01%
  • Published 17.11.2021 17:15:08
  • Last modified 21.11.2024 06:30:07

In the Linux kernel through 5.15.2, mwifiex_usb_recv in drivers/net/wireless/marvell/mwifiex/usb.c allows an attacker (who can connect a crafted USB device) to cause a denial of service (skb_over_panic).

5.5

CVE-2021-43389

Exploit
  • EPSS 0.01%
  • Published 04.11.2021 19:15:07
  • Last modified 21.11.2024 06:29:08

An issue was discovered in the Linux kernel before 5.14.15. There is an array-index-out-of-bounds flaw in the detach_capi_ctr function in drivers/isdn/capi/kcapi.c.

4.7

CVE-2020-27820

  • EPSS 0.02%
  • Published 03.11.2021 00:15:07
  • Last modified 21.11.2024 05:21:52

A vulnerability was found in Linux kernel, where a use-after-frees in nouveau's postclose() handler could happen if removing device (that is not common to remove video card physically without power-off, but same happens if "unbind" the driver).