CVE-2019-20429
- EPSS 1.9%
- Veröffentlicht 27.01.2020 05:15:12
- Zuletzt bearbeitet 21.11.2024 04:38:27
In the Lustre file system before 2.12.3, the ptlrpc module has an out-of-bounds read and panic (via a modified lm_bufcount field) due to the lack of validation for specific fields of packets sent by a client. This is caused by interaction between spt...
CVE-2019-20423
- EPSS 2.06%
- Veröffentlicht 27.01.2020 05:15:11
- Zuletzt bearbeitet 21.11.2024 04:38:26
In the Lustre file system before 2.12.3, the ptlrpc module has a buffer overflow and panic due to the lack of validation for specific fields of packets sent by a client. The function target_handle_connect() mishandles a certain size value when a clie...
CVE-2019-20425
- EPSS 1.9%
- Veröffentlicht 27.01.2020 05:15:11
- Zuletzt bearbeitet 21.11.2024 04:38:26
In the Lustre file system before 2.12.3, the ptlrpc module has an out-of-bounds access and panic due to the lack of validation for specific fields of packets sent by a client. In the function lustre_msg_string, there is no validation of a certain len...
CVE-2019-20426
- EPSS 1.92%
- Veröffentlicht 27.01.2020 05:15:11
- Zuletzt bearbeitet 21.11.2024 04:38:26
In the Lustre file system before 2.12.3, the ptlrpc module has an out-of-bounds access and panic due to the lack of validation for specific fields of packets sent by a client. In the function ldlm_cancel_hpreq_check, there is no lock_count bounds che...
CVE-2019-14615
- EPSS 1.45%
- Veröffentlicht 17.01.2020 18:15:12
- Zuletzt bearbeitet 21.11.2024 04:27:02
Insufficient control flow in certain data structures for some Intel(R) Processors with Intel(R) Processor Graphics may allow an unauthenticated user to potentially enable information disclosure via local access.
CVE-2019-9503
- EPSS 3.28%
- Veröffentlicht 16.01.2020 21:15:12
- Zuletzt bearbeitet 21.11.2024 04:51:44
The Broadcom brcmfmac WiFi driver prior to commit a4176ec356c73a46c07c181c6d04039fafa34a9f is vulnerable to a frame validation bypass. If the brcmfmac driver receives a firmware event frame from a remote source, the is_wlc_event_frame function will c...
CVE-2007-4774
- EPSS 1.74%
- Veröffentlicht 15.01.2020 17:15:13
- Zuletzt bearbeitet 21.11.2024 00:36:25
The Linux kernel before 2.4.36-rc1 has a race condition. It was possible to bypass systrace policies by flooding the ptraced process with SIGCONT signals, which can can wake up a PTRACED process.
CVE-2019-19332
- EPSS 0.68%
- Veröffentlicht 09.01.2020 15:15:10
- Zuletzt bearbeitet 21.11.2024 04:34:35
An out-of-bounds memory write issue was found in the Linux Kernel, version 3.13 through 5.4, in the way the Linux kernel's KVM hypervisor handled the 'KVM_GET_EMULATED_CPUID' ioctl(2) request to get CPUID features emulated by the KVM hypervisor. A us...
CVE-2020-0009
- EPSS 0.69%
- Veröffentlicht 08.01.2020 16:15:11
- Zuletzt bearbeitet 21.11.2024 04:52:44
In calc_vm_may_flags of ashmem.c, there is a possible arbitrary write to shared memory due to a permissions bypass. This could lead to local escalation of privilege by corrupting memory shared between processes, with no additional execution privilege...
CVE-2019-20096
- EPSS 0.99%
- Veröffentlicht 30.12.2019 05:15:11
- Zuletzt bearbeitet 21.11.2024 04:38:03
In the Linux kernel before 5.1, there is a memory leak in __feat_register_sp() in net/dccp/feat.c, which may cause denial of service, aka CID-1d3ff0950e2b.