CVE-2021-22555
- EPSS 78.68%
- Veröffentlicht 07.07.2021 12:15:08
- Zuletzt bearbeitet 27.10.2025 17:06:32
A heap out-of-bounds write affecting Linux since v2.6.19-rc1 was discovered in net/netfilter/x_tables.c. This allows an attacker to gain privileges or cause a DoS (via heap memory corruption) through user name space
CVE-2021-31615
- EPSS 0.4%
- Veröffentlicht 25.06.2021 12:15:08
- Zuletzt bearbeitet 21.11.2024 06:06:01
Unencrypted Bluetooth Low Energy baseband links in Bluetooth Core Specifications 4.0 through 5.2 may permit an adjacent device to inject a crafted packet during the receive window of the listening device before the transmitting device initiates its p...
CVE-2020-28097
- EPSS 0.52%
- Veröffentlicht 24.06.2021 12:15:07
- Zuletzt bearbeitet 21.11.2024 05:22:21
The vgacon subsystem in the Linux kernel before 5.8.10 mishandles software scrollback. There is a vgacon_scrolldelta out-of-bounds read, aka CID-973c096f6a85.
CVE-2021-0512
- EPSS 0.28%
- Veröffentlicht 21.06.2021 17:15:08
- Zuletzt bearbeitet 21.11.2024 05:42:50
In __hidinput_change_resolution_multipliers of hid-input.c, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is no...
CVE-2021-32078
- EPSS 0.55%
- Veröffentlicht 17.06.2021 15:15:07
- Zuletzt bearbeitet 21.11.2024 06:06:48
An Out-of-Bounds Read was discovered in arch/arm/mach-footbridge/personal-pci.c in the Linux kernel through 5.12.11 because of the lack of a check for a value that shouldn't be negative, e.g., access to element -2 of an array, aka CID-298a58e165e4.
CVE-2021-34693
- EPSS 0.47%
- Veröffentlicht 14.06.2021 22:15:20
- Zuletzt bearbeitet 21.11.2024 06:10:57
net/can/bcm.c in the Linux kernel through 5.12.10 allows local users to obtain sensitive information from kernel stack memory because parts of a data structure are uninitialized.
CVE-2021-0129
- EPSS 0.83%
- Veröffentlicht 09.06.2021 20:15:08
- Zuletzt bearbeitet 21.11.2024 05:42:01
Improper access control in BlueZ may allow an authenticated user to potentially enable information disclosure via adjacent access.
CVE-2021-3564
- EPSS 0.49%
- Veröffentlicht 08.06.2021 12:15:11
- Zuletzt bearbeitet 21.11.2024 06:21:51
A flaw double-free memory corruption in the Linux kernel HCI device initialization subsystem was found in the way user attach malicious HCI TTY Bluetooth device. A local user could use this flaw to crash the system. This flaw affects all the Linux ke...
CVE-2020-36386
- EPSS 0.54%
- Veröffentlicht 07.06.2021 20:15:08
- Zuletzt bearbeitet 21.11.2024 05:29:23
An issue was discovered in the Linux kernel before 5.8.1. net/bluetooth/hci_event.c has a slab out-of-bounds read in hci_extended_inquiry_result_evt, aka CID-51c19bf3d5cf.
CVE-2018-25015
- EPSS 0.57%
- Veröffentlicht 07.06.2021 20:15:07
- Zuletzt bearbeitet 21.11.2024 04:03:21
An issue was discovered in the Linux kernel before 4.14.16. There is a use-after-free in net/sctp/socket.c for a held lock after a peel off, aka CID-a0ff660058b8.