CVE-2020-11494
- EPSS 0.72%
- Veröffentlicht 02.04.2020 21:15:13
- Zuletzt bearbeitet 21.11.2024 04:58:00
An issue was discovered in slc_bump in drivers/net/can/slcan.c in the Linux kernel 3.16 through 5.6.2. It allows attackers to read uninitialized can_frame data, potentially containing sensitive information from kernel stack memory, if the configurati...
CVE-2020-10942
- EPSS 0.96%
- Veröffentlicht 24.03.2020 22:15:12
- Zuletzt bearbeitet 21.11.2024 04:56:25
In the Linux kernel before 5.5.8, get_raw_socket in drivers/vhost/net.c lacks validation of an sk_family field, which might allow attackers to trigger kernel stack corruption via crafted system calls.
CVE-2020-0066
- EPSS 0.15%
- Veröffentlicht 10.03.2020 21:15:13
- Zuletzt bearbeitet 21.11.2024 04:52:50
In the netlink driver, there is a possible out of bounds write due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions...
CVE-2020-9383
- EPSS 0.73%
- Veröffentlicht 25.02.2020 16:15:11
- Zuletzt bearbeitet 21.11.2024 05:40:31
An issue was discovered in the Linux kernel 3.16 through 5.5.6. set_fdc in drivers/block/floppy.c leads to a wait_til_ready out-of-bounds read because the FDC index is not checked for errors before assigning it, aka CID-2e90ca68b0d2.
CVE-2011-4915
- EPSS 0.51%
- Veröffentlicht 20.02.2020 18:15:11
- Zuletzt bearbeitet 21.11.2024 01:33:17
fs/proc/base.c in the Linux kernel through 3.1 allows local users to obtain sensitive keystroke information via access to /proc/interrupts.
- EPSS 0.15%
- Veröffentlicht 13.02.2020 15:15:12
- Zuletzt bearbeitet 21.11.2024 04:52:46
In binder_thread_release of binder.c, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product...
CVE-2020-8647
- EPSS 0.41%
- Veröffentlicht 06.02.2020 01:15:10
- Zuletzt bearbeitet 21.11.2024 05:39:10
There is a use-after-free vulnerability in the Linux kernel through 5.5.2 in the vc_do_resize function in drivers/tty/vt/vt.c.
CVE-2020-8648
- EPSS 0.66%
- Veröffentlicht 06.02.2020 01:15:10
- Zuletzt bearbeitet 21.11.2024 05:39:11
There is a use-after-free vulnerability in the Linux kernel through 5.5.2 in the n_tty_receive_buf_common function in drivers/tty/n_tty.c.
CVE-2020-8649
- EPSS 0.49%
- Veröffentlicht 06.02.2020 01:15:10
- Zuletzt bearbeitet 21.11.2024 05:39:11
There is a use-after-free vulnerability in the Linux kernel through 5.5.2 in the vgacon_invert_region function in drivers/video/console/vgacon.c.
CVE-2019-20427
- EPSS 4.9%
- Veröffentlicht 27.01.2020 05:15:12
- Zuletzt bearbeitet 21.11.2024 04:38:26
In the Lustre file system before 2.12.3, the ptlrpc module has a buffer overflow and panic, and possibly remote code execution, due to the lack of validation for specific fields of packets sent by a client. Interaction between req_capsule_get_size an...