CVE-2019-3846
- EPSS 0.38%
- Published 03.06.2019 19:29:02
- Last modified 21.11.2024 04:42:41
A flaw that allowed an attacker to corrupt memory and possibly escalate privileges was found in the mwifiex kernel module while connecting to a malicious wireless network.
CVE-2019-3900
- EPSS 0.09%
- Published 25.04.2019 15:29:00
- Last modified 21.11.2024 04:42:49
An infinite loop issue was found in the vhost_net kernel module in Linux Kernel up to and including v5.1-rc6, while handling incoming packets in handle_rx(). It could occur if one end sends packets faster than the other end can process them. A guest ...
CVE-2019-3882
- EPSS 0.08%
- Published 24.04.2019 16:29:02
- Last modified 21.11.2024 04:42:47
A flaw was found in the Linux kernel's vfio interface implementation that permits violation of the user's locked memory limit. If a device is bound to a vfio driver, such as vfio-pci, and the local attacker is administratively granted ownership of th...
CVE-2019-3901
- EPSS 0.07%
- Published 22.04.2019 16:29:01
- Last modified 21.11.2024 04:42:49
A race condition in perf_event_open() allows local attackers to leak sensitive data from setuid programs. As no relevant locks (in particular the cred_guard_mutex) are held during the ptrace_may_access() call, it is possible for the specified target ...
CVE-2019-3874
- EPSS 0.07%
- Published 25.03.2019 19:29:01
- Last modified 21.11.2024 04:42:46
The SCTP socket buffer used by a userspace application is not accounted by the cgroups subsystem. An attacker can use this flaw to cause a denial of service attack. Kernel 3.10.x and 4.18.x branches are believed to be vulnerable.