Linux

Linux Kernel

14022 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.4

CVE-2022-0185

Warnung Exploit
  • EPSS 1.35%
  • Veröffentlicht 11.02.2022 18:15:10
  • Zuletzt bearbeitet 06.11.2025 14:50:32

A heap-based buffer overflow flaw was found in the way the legacy_parse_param function in the Filesystem Context functionality of the Linux kernel verified the supplied parameters length. An unprivileged (in case of unprivileged user namespaces enabl...

5.5

CVE-2022-0382

Exploit
  • EPSS 0.05%
  • Veröffentlicht 11.02.2022 18:15:10
  • Zuletzt bearbeitet 21.11.2024 06:38:30

An information leak flaw was found due to uninitialized memory in the Linux kernel's TIPC protocol subsystem, in the way a user sends a TIPC datagram to one or more destinations. This flaw allows a local user to read some kernel memory. This issue is...

5.5

CVE-2021-45402

Exploit
  • EPSS 0.07%
  • Veröffentlicht 11.02.2022 15:15:07
  • Zuletzt bearbeitet 21.11.2024 06:32:09

The check_alu_op() function in kernel/bpf/verifier.c in the Linux kernel through v5.16-rc5 did not properly update bounds while handling the mov32 instruction, which allows local users to obtain potentially sensitive address information, aka a "point...

7.8

CVE-2022-24958

  • EPSS 0.05%
  • Veröffentlicht 11.02.2022 06:15:06
  • Zuletzt bearbeitet 21.11.2024 06:51:27

drivers/usb/gadget/legacy/inode.c in the Linux kernel through 5.16.8 mishandles dev->buf release.

5.5

CVE-2022-24959

  • EPSS 0.06%
  • Veröffentlicht 11.02.2022 06:15:06
  • Zuletzt bearbeitet 21.11.2024 06:51:27

An issue was discovered in the Linux kernel before 5.16.5. There is a memory leak in yam_siocdevprivate in drivers/net/hamradio/yam.c.

8.8

CVE-2021-4154

  • EPSS 0.84%
  • Veröffentlicht 04.02.2022 23:15:12
  • Zuletzt bearbeitet 21.11.2024 06:37:00

A use-after-free flaw was found in cgroup1_parse_param in kernel/cgroup/cgroup-v1.c in the Linux kernel's cgroup v1 parser. A local attacker with a user privilege could cause a privilege escalation by exploiting the fsconfig syscall parameter leading...

5.5

CVE-2022-0264

  • EPSS 0.08%
  • Veröffentlicht 04.02.2022 23:15:12
  • Zuletzt bearbeitet 21.11.2024 06:38:15

A vulnerability was found in the Linux kernel's eBPF verifier when handling internal data structures. Internal memory locations could be returned to userspace. A local attacker with the permissions to insert eBPF code to the kernel can use this to le...

5.5

CVE-2022-0487

  • EPSS 0.05%
  • Veröffentlicht 04.02.2022 23:15:12
  • Zuletzt bearbeitet 21.11.2024 06:38:45

A use-after-free vulnerability was found in rtsx_usb_ms_drv_remove in drivers/memstick/host/rtsx_usb_ms.c in memstick in the Linux kernel. In this flaw, a local attacker with a user privilege may impact system Confidentiality. This flaw affects kerne...

3.3

CVE-2022-24448

  • EPSS 0.02%
  • Veröffentlicht 04.02.2022 20:15:08
  • Zuletzt bearbeitet 21.11.2024 06:50:26

An issue was discovered in fs/nfs/dir.c in the Linux kernel before 5.16.5. If an application sets the O_DIRECTORY flag, and tries to open a regular file, nfs_atomic_open() performs a regular lookup. If a regular file is found, ENOTDIR should occur, b...

5.5

CVE-2022-0286

Exploit
  • EPSS 0.07%
  • Veröffentlicht 31.01.2022 16:15:10
  • Zuletzt bearbeitet 21.11.2024 06:38:18

A flaw was found in the Linux kernel. A null pointer dereference in bond_ipsec_add_sa() may lead to local denial of service.