Linux

Linux Kernel

14022 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2019-18680

Exploit
  • EPSS 1.7%
  • Veröffentlicht 04.11.2019 15:15:11
  • Zuletzt bearbeitet 21.11.2024 04:33:31

An issue was discovered in the Linux kernel 4.4.x before 4.4.195. There is a NULL pointer dereference in rds_tcp_kill_sock() in net/rds/tcp.c that will cause denial of service, aka CID-91573ae4aed0.

7.8

CVE-2019-18198

Exploit
  • EPSS 0.1%
  • Veröffentlicht 18.10.2019 22:15:14
  • Zuletzt bearbeitet 21.11.2024 04:32:48

In the Linux kernel before 5.3.4, a reference count usage error in the fib6_rule_suppress() function in the fib6 suppression feature of net/ipv6/fib6_rules.c, when handling the FIB_LOOKUP_NOREF flag, can be exploited by a local attacker to corrupt me...

8.8

CVE-2019-17666

  • EPSS 0.44%
  • Veröffentlicht 17.10.2019 02:15:13
  • Zuletzt bearbeitet 21.11.2024 04:32:44

rtl_p2p_noa_ie in drivers/net/wireless/realtek/rtlwifi/ps.c in the Linux kernel through 5.3.6 lacks a certain upper-bound check, leading to a buffer overflow.

6.5

CVE-2019-17351

  • EPSS 0.09%
  • Veröffentlicht 08.10.2019 00:15:10
  • Zuletzt bearbeitet 21.11.2024 04:32:08

An issue was discovered in drivers/xen/balloon.c in the Linux kernel before 5.2.3, as used in Xen through 4.12.x, allowing guest OS users to cause a denial of service because of unrestricted resource consumption during the mapping of guest memory, ak...

9.8

CVE-2019-17133

  • EPSS 1.56%
  • Veröffentlicht 04.10.2019 12:15:11
  • Zuletzt bearbeitet 21.11.2024 04:31:45

In the Linux kernel through 5.3.2, cfg80211_mgd_wext_giwessid in net/wireless/wext-sme.c does not reject a long SSID IE, leading to a Buffer Overflow.

7.5

CVE-2019-17075

  • EPSS 0.86%
  • Veröffentlicht 01.10.2019 21:15:11
  • Zuletzt bearbeitet 21.11.2024 04:31:39

An issue was discovered in write_tpt_entry in drivers/infiniband/hw/cxgb4/mem.c in the Linux kernel through 5.3.2. The cxgb4 driver is directly calling dma_map_single (a DMA function) from a stack variable. This could allow an attacker to trigger a D...

3.3

CVE-2019-17056

  • EPSS 0.07%
  • Veröffentlicht 01.10.2019 14:15:55
  • Zuletzt bearbeitet 21.11.2024 04:31:36

llcp_sock_create in net/nfc/llcp_sock.c in the AF_NFC network module in the Linux kernel through 5.3.2 does not enforce CAP_NET_RAW, which means that unprivileged users can create a raw socket, aka CID-3a359798b176.

3.3

CVE-2019-17055

  • EPSS 0.09%
  • Veröffentlicht 01.10.2019 14:15:51
  • Zuletzt bearbeitet 21.11.2024 04:31:36

base_sock_create in drivers/isdn/mISDN/socket.c in the AF_ISDN network module in the Linux kernel through 5.3.2 does not enforce CAP_NET_RAW, which means that unprivileged users can create a raw socket, aka CID-b91ee4aa2a21.

3.3

CVE-2019-17054

  • EPSS 0.1%
  • Veröffentlicht 01.10.2019 14:15:46
  • Zuletzt bearbeitet 21.11.2024 04:31:36

atalk_create in net/appletalk/ddp.c in the AF_APPLETALK network module in the Linux kernel through 5.3.2 does not enforce CAP_NET_RAW, which means that unprivileged users can create a raw socket, aka CID-6cc03e8aa36c.

3.3

CVE-2019-17053

  • EPSS 0.1%
  • Veröffentlicht 01.10.2019 14:15:42
  • Zuletzt bearbeitet 21.11.2024 04:31:36

ieee802154_create in net/ieee802154/socket.c in the AF_IEEE802154 network module in the Linux kernel through 5.3.2 does not enforce CAP_NET_RAW, which means that unprivileged users can create a raw socket, aka CID-e69dbd4619e7.