Linux

Linux Kernel

12198 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2019-7221

Exploit
  • EPSS 0.06%
  • Published 21.03.2019 16:01:10
  • Last modified 21.11.2024 04:47:46

The KVM implementation in the Linux kernel through 4.20.5 has a Use-after-Free.

7.8

CVE-2018-20669

Exploit
  • EPSS 0.09%
  • Published 21.03.2019 16:00:37
  • Last modified 21.11.2024 04:01:57

An issue where a provided address with access_ok() is not checked was discovered in i915_gem_execbuffer2_ioctl in drivers/gpu/drm/i915/i915_gem_execbuffer.c in the Linux kernel through 4.19.13. A local attacker can craft a malicious IOCTL function ca...

4.6

CVE-2018-19985

  • EPSS 0.04%
  • Published 21.03.2019 16:00:33
  • Last modified 21.11.2024 03:58:56

The function hso_get_config_data in drivers/net/usb/hso.c in the Linux kernel through 4.19.8 reads if_num from the USB device (as a u8) and uses it to index a small array, resulting in an object out-of-bounds (OOB) read that potentially allows arbitr...

5.5

CVE-2019-9213

Exploit
  • EPSS 5.4%
  • Published 05.03.2019 22:29:00
  • Last modified 21.11.2024 04:51:13

In the Linux kernel before 4.20.14, expand_downwards in mm/mmap.c lacks a check for the mmap minimum address, which makes it easier for attackers to exploit kernel NULL pointer dereferences on non-SMAP platforms. This is related to a capability check...

7.8

CVE-2019-9162

Exploit
  • EPSS 0.19%
  • Published 25.02.2019 23:29:01
  • Last modified 21.11.2024 04:51:06

In the Linux kernel before 4.20.12, net/ipv4/netfilter/nf_nat_snmp_basic_main.c in the SNMP NAT module has insufficient ASN.1 length checks (aka an array index error), making out-of-bounds read and write operations possible, leading to an OOPS or loc...

9.8

CVE-2018-20784

  • EPSS 0.73%
  • Published 22.02.2019 15:29:00
  • Last modified 21.11.2024 04:02:10

In the Linux kernel before 4.20.2, kernel/sched/fair.c mishandles leaf cfs_rq's, which allows attackers to cause a denial of service (infinite loop in update_blocked_averages) or possibly have unspecified other impact by inducing a high load.

7.8

CVE-2019-9003

  • EPSS 7.13%
  • Published 22.02.2019 15:29:00
  • Last modified 21.11.2024 04:50:47

In the Linux kernel before 4.20.5, attackers can trigger a drivers/char/ipmi/ipmi_msghandler.c use-after-free and OOPS by arranging for certain simultaneous execution of the code, as demonstrated by a "service ipmievd restart" loop.

7.8

CVE-2019-8980

  • EPSS 2.2%
  • Published 21.02.2019 05:29:01
  • Last modified 21.11.2024 04:50:44

A memory leak in the kernel_read_file function in fs/exec.c in the Linux kernel through 4.20.11 allows attackers to cause a denial of service (memory consumption) by triggering vfs_read failures.

7.8

CVE-2019-8912

  • EPSS 0.36%
  • Published 18.02.2019 18:29:00
  • Last modified 21.11.2024 04:50:39

In the Linux kernel through 4.20.11, af_alg_release() in crypto/af_alg.c neglects to set a NULL value for a certain structure member, which leads to a use-after-free in sockfs_setattr.

8.1

CVE-2019-6974

Exploit
  • EPSS 7.22%
  • Published 15.02.2019 15:29:00
  • Last modified 21.11.2024 04:47:20

In the Linux kernel before 4.20.8, kvm_ioctl_create_device in virt/kvm/kvm_main.c mishandles reference counting because of a race condition, leading to a use-after-free.