Netapp

Hci Compute Node

39 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2019-19462

  • EPSS 0.1%
  • Veröffentlicht 30.11.2019 01:15:10
  • Zuletzt bearbeitet 21.11.2024 04:34:47

relay_open in kernel/relay.c in the Linux kernel through 5.4.1 allows local users to cause a denial of service (such as relay blockage) by triggering a NULL alloc_percpu result.

7.8

CVE-2019-19069

  • EPSS 1.11%
  • Veröffentlicht 18.11.2019 06:15:12
  • Zuletzt bearbeitet 21.11.2024 04:34:07

A memory leak in the fastrpc_dma_buf_attach() function in drivers/misc/fastrpc.c in the Linux kernel before 5.3.9 allows attackers to cause a denial of service (memory consumption) by triggering dma_get_sgtable() failures, aka CID-fc739a058d99.

7.8

CVE-2019-19050

  • EPSS 1.08%
  • Veröffentlicht 18.11.2019 06:15:11
  • Zuletzt bearbeitet 21.11.2024 04:34:04

A memory leak in the crypto_reportstat() function in crypto/crypto_user_stat.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service (memory consumption) by triggering crypto_reportstat_alg() failures, aka CID-c03b04dcdba1.

9.8

CVE-2019-18805

  • EPSS 0.57%
  • Veröffentlicht 07.11.2019 14:15:11
  • Zuletzt bearbeitet 21.11.2024 04:33:36

An issue was discovered in net/ipv4/sysctl_net_ipv4.c in the Linux kernel before 5.0.11. There is a net/ipv4/tcp_input.c signed integer overflow in tcp_ack_update_rtt() when userspace writes a very large integer to /proc/sys/net/ipv4/tcp_min_rtt_wlen...

7.8

CVE-2019-13272

Warnung Exploit
  • EPSS 81.24%
  • Veröffentlicht 17.07.2019 13:15:10
  • Zuletzt bearbeitet 03.04.2025 20:28:35

In the Linux kernel before 5.1.17, ptrace_link in kernel/ptrace.c mishandles the recording of the credentials of a process that wants to create a ptrace relationship, which allows local users to obtain root access by leveraging certain scenarios with...

9.3

CVE-2019-11815

Exploit
  • EPSS 1.19%
  • Veröffentlicht 08.05.2019 14:29:00
  • Zuletzt bearbeitet 21.11.2024 04:21:49

An issue was discovered in rds_tcp_kill_sock in net/rds/tcp.c in the Linux kernel before 5.0.8. There is a race condition leading to a use-after-free, related to net namespace cleanup.

9.3

CVE-2018-20836

  • EPSS 1.88%
  • Veröffentlicht 07.05.2019 14:29:00
  • Zuletzt bearbeitet 21.11.2024 04:02:16

An issue was discovered in the Linux kernel before 4.20. There is a race condition in smp_task_timedout() and smp_task_done() in drivers/scsi/libsas/sas_expander.c, leading to a use-after-free.

5.9

CVE-2019-1559

  • EPSS 5.05%
  • Veröffentlicht 27.02.2019 23:29:00
  • Zuletzt bearbeitet 21.11.2024 04:36:48

If an application encounters a fatal protocol error and then calls SSL_shutdown() twice (once to send a close_notify, and once to receive one) then OpenSSL can respond differently to the calling application if a 0 byte record is received with invalid...

5.6

CVE-2017-5715

Exploit
  • EPSS 90.98%
  • Veröffentlicht 04.01.2018 13:29:00
  • Zuletzt bearbeitet 06.05.2025 15:15:51

Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.