CVE-2020-15437
- EPSS 0.44%
- Veröffentlicht 23.11.2020 21:15:11
- Zuletzt bearbeitet 21.11.2024 05:05:33
The Linux kernel before version 5.8 is vulnerable to a NULL pointer dereference in drivers/tty/serial/8250/8250_core.c:serial8250_isa_init_ports() that allows local users to cause a denial of service by using the p->serial_in pointer which uninitiali...
CVE-2020-12352
- EPSS 5.71%
- Veröffentlicht 23.11.2020 17:15:12
- Zuletzt bearbeitet 21.11.2024 04:59:33
Improper access control in BlueZ may allow an unauthenticated user to potentially enable information disclosure via adjacent access.
CVE-2020-28974
- EPSS 0.51%
- Veröffentlicht 20.11.2020 18:15:12
- Zuletzt bearbeitet 21.11.2024 05:23:25
A slab-out-of-bounds read in fbcon in the Linux kernel before 5.9.7 could be used by local attackers to read privileged information or potentially crash the kernel, aka CID-3c4e0dff2095. This occurs because KD_FONT_OP_COPY in drivers/tty/vt/vt.c can ...
CVE-2020-4788
- EPSS 0.39%
- Veröffentlicht 20.11.2020 04:15:11
- Zuletzt bearbeitet 21.11.2024 05:33:15
IBM Power9 (AIX 7.1, 7.2, and VIOS 3.1) processors could allow a local user to obtain sensitive information from the data in the L1 cache under extenuating circumstances. IBM X-Force ID: 189296.
CVE-2020-28915
- EPSS 0.37%
- Veröffentlicht 18.11.2020 08:15:12
- Zuletzt bearbeitet 21.11.2024 05:23:17
A buffer over-read (at the framebuffer layer) in the fbcon code in the Linux kernel before 5.8.15 could be used by local attackers to read kernel memory, aka CID-6735b4632def.
CVE-2020-12912
- EPSS 0.46%
- Veröffentlicht 12.11.2020 20:15:15
- Zuletzt bearbeitet 21.11.2024 05:00:32
A potential vulnerability in the AMD extension to Linux "hwmon" service may allow an attacker to use the Linux-based Running Average Power Limit (RAPL) interface to show various side channel attacks. In line with industry partners, AMD has updated th...
CVE-2020-8694
- EPSS 0.45%
- Veröffentlicht 12.11.2020 18:15:16
- Zuletzt bearbeitet 21.11.2024 05:39:15
Insufficient access control in the Linux kernel driver for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
CVE-2020-27152
- EPSS 0.56%
- Veröffentlicht 06.11.2020 08:15:13
- Zuletzt bearbeitet 21.11.2024 05:20:47
An issue was discovered in ioapic_lazy_update_eoi in arch/x86/kvm/ioapic.c in the Linux kernel before 5.9.2. It has an infinite loop related to improper interaction between a resampler and edge triggering, aka CID-77377064c3a9.
CVE-2020-27673
- EPSS 0.41%
- Veröffentlicht 22.10.2020 21:15:14
- Zuletzt bearbeitet 21.11.2024 05:21:38
An issue was discovered in the Linux kernel through 5.9.1, as used with Xen through 4.14.x. Guest OS users can cause a denial of service (host OS hang) via a high rate of events to dom0, aka CID-e99502f76271.
CVE-2020-27675
- EPSS 0.27%
- Veröffentlicht 22.10.2020 21:15:14
- Zuletzt bearbeitet 21.11.2024 05:21:38
An issue was discovered in the Linux kernel through 5.9.1, as used with Xen through 4.14.x. drivers/xen/events/events_base.c allows event-channel removal during the event-handling loop (a race condition). This can cause a use-after-free or NULL point...