Linux

Linux Kernel

12214 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2019-14895

  • EPSS 3%
  • Veröffentlicht 29.11.2019 14:15:11
  • Zuletzt bearbeitet 21.11.2024 04:27:37

A heap-based buffer overflow was discovered in the Linux kernel, all versions 3.x.x and 4.x.x before 4.18.0, in Marvell WiFi chip driver. The flaw could occur when the station attempts a connection negotiation during the handling of the remote device...

4.4

CVE-2019-19318

Exploit
  • EPSS 0.35%
  • Veröffentlicht 28.11.2019 00:15:11
  • Zuletzt bearbeitet 21.11.2024 04:34:34

In the Linux kernel 5.3.11, mounting a crafted btrfs image twice can cause an rwsem_down_write_slowpath use-after-free because (in rwsem_can_spin_on_owner in kernel/locking/rwsem.c) rwsem_owner_flags returns an already freed pointer,

6.5

CVE-2019-19319

Exploit
  • EPSS 0.44%
  • Veröffentlicht 27.11.2019 23:15:11
  • Zuletzt bearbeitet 21.11.2024 04:34:34

In the Linux kernel before 5.2, a setxattr operation, after a mount of a crafted ext4 image, can cause a slab-out-of-bounds write access because of an ext4_xattr_set_entry use-after-free in fs/ext4/xattr.c when a large old_size value is used in a mem...

4.7

CVE-2019-18660

  • EPSS 0.03%
  • Veröffentlicht 27.11.2019 23:15:10
  • Zuletzt bearbeitet 21.11.2024 04:33:28

The Linux kernel before 5.4.1 on powerpc allows Information Exposure because the Spectre-RSB mitigation is not in place for all applicable CPUs, aka CID-39e72bf96f58. This is related to arch/powerpc/kernel/entry_64.S and arch/powerpc/kernel/security....

9.3

CVE-2019-10220

  • EPSS 0.74%
  • Veröffentlicht 27.11.2019 16:15:11
  • Zuletzt bearbeitet 21.11.2024 04:18:41

Linux kernel CIFS implementation, version 4.9.0 is vulnerable to a relative paths injection in directory entry lists.

10

CVE-2019-14896

  • EPSS 1.78%
  • Veröffentlicht 27.11.2019 09:15:11
  • Zuletzt bearbeitet 21.11.2024 04:27:38

A heap-based buffer overflow vulnerability was found in the Linux kernel, version kernel-2.6.32, in Marvell WiFi chip driver. A remote attacker could cause a denial of service (system crash) or, possibly execute arbitrary code, when the lbs_ibss_join...

7.8

CVE-2019-19252

  • EPSS 0.14%
  • Veröffentlicht 25.11.2019 18:15:11
  • Zuletzt bearbeitet 21.11.2024 04:34:25

vcs_write in drivers/tty/vt/vc_screen.c in the Linux kernel through 5.3.13 does not prevent write access to vcsu devices, aka CID-0c9acb1af77a.

7.8

CVE-2019-18675

Exploit
  • EPSS 0.13%
  • Veröffentlicht 25.11.2019 14:15:12
  • Zuletzt bearbeitet 21.11.2024 04:33:30

The Linux kernel through 5.3.13 has a start_offset+size Integer Overflow in cpia2_remap_buffer in drivers/media/usb/cpia2/cpia2_core.c because cpia2 has its own mmap implementation. This allows local users (with /dev/video0 access) to obtain read and...

5.5

CVE-2019-10207

  • EPSS 0.7%
  • Veröffentlicht 25.11.2019 14:15:11
  • Zuletzt bearbeitet 21.11.2024 04:18:39

A flaw was found in the Linux kernel's Bluetooth implementation of UART, all versions kernel 3.x.x before 4.18.0 and kernel 5.x.x. An attacker with local access and write permissions to the Bluetooth hardware could use this flaw to issue a specially ...

7.8

CVE-2019-14815

  • EPSS 0.18%
  • Veröffentlicht 25.11.2019 11:15:11
  • Zuletzt bearbeitet 21.11.2024 04:27:25

A vulnerability was found in Linux Kernel, where a Heap Overflow was found in mwifiex_set_wmm_params() function of Marvell Wifi Driver.