Linux

Linux Kernel

14022 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
3.3

CVE-2021-20239

  • EPSS 0.09%
  • Veröffentlicht 28.05.2021 11:15:08
  • Zuletzt bearbeitet 21.11.2024 05:46:11

A flaw was found in the Linux kernel in versions before 5.4.92 in the BPF protocol. This flaw allows an attacker with a local account to leak information about kernel internal addresses. The highest threat from this vulnerability is to confidentialit...

7.2

CVE-2021-20292

  • EPSS 0.09%
  • Veröffentlicht 28.05.2021 11:15:08
  • Zuletzt bearbeitet 21.11.2024 05:46:17

There is a flaw reported in the Linux kernel in versions before 5.9 in drivers/gpu/drm/nouveau/nouveau_sgdma.c in nouveau_sgdma_create_ttm in Nouveau DRM subsystem. The issue results from the lack of validating the existence of an object prior to per...

5.5

CVE-2020-10774

  • EPSS 0.04%
  • Veröffentlicht 27.05.2021 19:15:07
  • Zuletzt bearbeitet 21.11.2024 04:56:02

A memory disclosure flaw was found in the Linux kernel's versions before 4.18.0-193.el8 in the sysctl subsystem when reading the /proc/sys/kernel/rh_features file. This flaw allows a local user to read uninitialized values from the kernel memory. The...

7.8

CVE-2021-33200

  • EPSS 0.03%
  • Veröffentlicht 27.05.2021 13:15:08
  • Zuletzt bearbeitet 21.11.2024 06:08:30

kernel/bpf/verifier.c in the Linux kernel through 5.12.7 enforces incorrect limits for pointer arithmetic operations, aka CID-bb01a1bba579. This can be abused to perform out-of-bounds reads and writes in kernel memory, leading to local privilege esca...

5.5

CVE-2008-2544

Exploit
  • EPSS 0.04%
  • Veröffentlicht 27.05.2021 13:15:07
  • Zuletzt bearbeitet 21.11.2024 00:47:07

Mounting /proc filesystem via chroot command silently mounts it in read-write mode. The user could bypass the chroot environment and gain write access to files, he would never have otherwise.

4.4

CVE-2021-20177

  • EPSS 0.04%
  • Veröffentlicht 26.05.2021 21:15:08
  • Zuletzt bearbeitet 21.11.2024 05:46:04

A flaw was found in the Linux kernel's implementation of string matching within a packet. A privileged user (with root or CAP_NET_ADMIN) when inserting iptables rules could insert a rule which can panic the system. Kernel before kernel 5.5-rc1 is aff...

7.8

CVE-2020-27815

Exploit
  • EPSS 0.18%
  • Veröffentlicht 26.05.2021 13:15:07
  • Zuletzt bearbeitet 21.11.2024 05:21:51

A flaw was found in the JFS filesystem code in the Linux Kernel which allows a local attacker with the ability to set extended attributes to panic the system, causing memory corruption or escalating privileges. The highest threat from this vulnerabil...

7

CVE-2020-25668

Exploit
  • EPSS 0.13%
  • Veröffentlicht 26.05.2021 12:15:15
  • Zuletzt bearbeitet 21.11.2024 05:18:24

A flaw was found in Linux Kernel because access to the global variable fg_console is not properly synchronized leading to a use after free in con_font_op.

7.8

CVE-2020-25669

Exploit
  • EPSS 0.14%
  • Veröffentlicht 26.05.2021 12:15:15
  • Zuletzt bearbeitet 21.11.2024 05:18:24

A vulnerability was found in the Linux Kernel where the function sunkbd_reinit having been scheduled by sunkbd_interrupt before sunkbd being freed. Though the dangling pointer is set to NULL in sunkbd_disconnect, there is still an alias in sunkbd_rei...

7.8

CVE-2020-25670

Exploit
  • EPSS 0.22%
  • Veröffentlicht 26.05.2021 11:15:08
  • Zuletzt bearbeitet 21.11.2024 05:18:25

A vulnerability was found in Linux Kernel where refcount leak in llcp_sock_bind() causing use-after-free which might lead to privilege escalations.