CVE-2019-17351
- EPSS 0.41%
- Veröffentlicht 08.10.2019 00:15:10
- Zuletzt bearbeitet 21.11.2024 04:32:08
An issue was discovered in drivers/xen/balloon.c in the Linux kernel before 5.2.3, as used in Xen through 4.12.x, allowing guest OS users to cause a denial of service because of unrestricted resource consumption during the mapping of guest memory, ak...
CVE-2019-17133
- EPSS 6.65%
- Veröffentlicht 04.10.2019 12:15:11
- Zuletzt bearbeitet 21.11.2024 04:31:45
In the Linux kernel through 5.3.2, cfg80211_mgd_wext_giwessid in net/wireless/wext-sme.c does not reject a long SSID IE, leading to a Buffer Overflow.
CVE-2019-17075
- EPSS 6.24%
- Veröffentlicht 01.10.2019 21:15:11
- Zuletzt bearbeitet 21.11.2024 04:31:39
An issue was discovered in write_tpt_entry in drivers/infiniband/hw/cxgb4/mem.c in the Linux kernel through 5.3.2. The cxgb4 driver is directly calling dma_map_single (a DMA function) from a stack variable. This could allow an attacker to trigger a D...
CVE-2019-17056
- EPSS 0.57%
- Veröffentlicht 01.10.2019 14:15:55
- Zuletzt bearbeitet 21.11.2024 04:31:36
llcp_sock_create in net/nfc/llcp_sock.c in the AF_NFC network module in the Linux kernel through 5.3.2 does not enforce CAP_NET_RAW, which means that unprivileged users can create a raw socket, aka CID-3a359798b176.
CVE-2019-17055
- EPSS 0.54%
- Veröffentlicht 01.10.2019 14:15:51
- Zuletzt bearbeitet 21.11.2024 04:31:36
base_sock_create in drivers/isdn/mISDN/socket.c in the AF_ISDN network module in the Linux kernel through 5.3.2 does not enforce CAP_NET_RAW, which means that unprivileged users can create a raw socket, aka CID-b91ee4aa2a21.
CVE-2019-17054
- EPSS 0.51%
- Veröffentlicht 01.10.2019 14:15:46
- Zuletzt bearbeitet 21.11.2024 04:31:36
atalk_create in net/appletalk/ddp.c in the AF_APPLETALK network module in the Linux kernel through 5.3.2 does not enforce CAP_NET_RAW, which means that unprivileged users can create a raw socket, aka CID-6cc03e8aa36c.
CVE-2019-17053
- EPSS 0.51%
- Veröffentlicht 01.10.2019 14:15:42
- Zuletzt bearbeitet 21.11.2024 04:31:36
ieee802154_create in net/ieee802154/socket.c in the AF_IEEE802154 network module in the Linux kernel through 5.3.2 does not enforce CAP_NET_RAW, which means that unprivileged users can create a raw socket, aka CID-e69dbd4619e7.
CVE-2019-17052
- EPSS 0.64%
- Veröffentlicht 01.10.2019 14:15:40
- Zuletzt bearbeitet 21.11.2024 04:31:36
ax25_create in net/ax25/af_ax25.c in the AF_AX25 network module in the Linux kernel 3.16 through 5.3.2 does not enforce CAP_NET_RAW, which means that unprivileged users can create a raw socket, aka CID-0614e2b73768.
CVE-2019-16994
- EPSS 0.45%
- Veröffentlicht 30.09.2019 13:15:11
- Zuletzt bearbeitet 21.11.2024 04:31:30
In the Linux kernel before 5.0, a memory leak exists in sit_init_net() in net/ipv6/sit.c when register_netdev() fails to register sitn->fb_tunnel_dev, which may cause denial of service, aka CID-07f12b26e21a.
CVE-2019-16995
- EPSS 3.53%
- Veröffentlicht 30.09.2019 13:15:11
- Zuletzt bearbeitet 21.11.2024 04:31:30
In the Linux kernel before 5.0.3, a memory leak exits in hsr_dev_finalize() in net/hsr/hsr_device.c if hsr_add_port fails to add a port, which may cause denial of service, aka CID-6caabe7f197d.