Linux

Linux Kernel

12282 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2020-13974

Exploit
  • EPSS 0.06%
  • Published 09.06.2020 05:15:10
  • Last modified 21.11.2024 05:02:16

An issue was discovered in the Linux kernel 4.4 through 5.7.1. drivers/tty/vt/keyboard.c has an integer overflow if k_ascii is called several times in a row, aka CID-b86dab054059. NOTE: Members in the community argue that the integer overflow does no...

5.5

CVE-2019-20811

  • EPSS 0.03%
  • Published 03.06.2020 03:15:10
  • Last modified 21.11.2024 04:39:25

An issue was discovered in the Linux kernel before 5.0.6. In rx_queue_add_kobject() and netdev_queue_add_kobject() in net/core/net-sysfs.c, a reference count is mishandled, aka CID-a3e23f719f5c.

5.5

CVE-2019-20812

  • EPSS 0.07%
  • Published 03.06.2020 03:15:10
  • Last modified 21.11.2024 04:39:25

An issue was discovered in the Linux kernel before 5.4.7. The prb_calc_retire_blk_tmo() function in net/packet/af_packet.c can result in a denial of service (CPU consumption and soft lockup) in a certain failure case involving TPACKET_V3, aka CID-b43...

5.5

CVE-2019-20810

  • EPSS 0.07%
  • Published 03.06.2020 00:15:10
  • Last modified 21.11.2024 04:39:25

go7007_snd_init in drivers/media/usb/go7007/snd-go7007.c in the Linux kernel before 5.6 does not call snd_card_free for a failure path, which causes a memory leak, aka CID-9453264ef586.

4.4

CVE-2019-20806

  • EPSS 0.12%
  • Published 27.05.2020 12:15:10
  • Last modified 21.11.2024 04:39:24

An issue was discovered in the Linux kernel before 5.2. There is a NULL pointer dereference in tw5864_handle_frame() in drivers/media/pci/tw5864/tw5864-video.c, which may cause denial of service, aka CID-2e7682ebfc75.

5.9

CVE-2020-10711

  • EPSS 1.18%
  • Published 22.05.2020 15:15:11
  • Last modified 21.11.2024 04:55:54

A NULL pointer dereference flaw was found in the Linux kernel's SELinux subsystem in versions before 5.7. This flaw occurs while importing the Commercial IP Security Option (CIPSO) protocol's category bitmap into the SELinux extensible bitmap via the...

6.5

CVE-2020-13143

  • EPSS 2.98%
  • Published 18.05.2020 18:15:11
  • Last modified 21.11.2024 05:00:44

gadget_dev_desc_UDC_store in drivers/usb/gadget/configfs.c in the Linux kernel 3.16 through 5.6.13 relies on kstrdup without considering the possibility of an internal '\0' value, which allows attackers to trigger an out-of-bounds read, aka CID-15753...

5.3

CVE-2020-12888

  • EPSS 0.1%
  • Published 15.05.2020 18:15:13
  • Last modified 21.11.2024 05:00:29

The VFIO PCI driver in the Linux kernel through 5.6.13 mishandles attempts to access disabled memory space.

5.3

CVE-2020-12826

Exploit
  • EPSS 0.07%
  • Published 12.05.2020 19:15:11
  • Last modified 21.11.2024 05:00:20

A signal access-control issue was discovered in the Linux kernel before 5.6.5, aka CID-7395ea4e65c2. Because exec_id in include/linux/sched.h is only 32 bits, an integer overflow can interfere with a do_notify_parent protection mechanism. A child pro...

5.5

CVE-2020-12768

  • EPSS 0.05%
  • Published 09.05.2020 21:15:11
  • Last modified 21.11.2024 05:00:14

An issue was discovered in the Linux kernel before 5.6. svm_cpu_uninit in arch/x86/kvm/svm.c has a memory leak, aka CID-d80b64ff297e. NOTE: third parties dispute this issue because it's a one-time leak at the boot, the size is negligible, and it can'...