CVE-2019-18660
- EPSS 0.74%
- Veröffentlicht 27.11.2019 23:15:10
- Zuletzt bearbeitet 21.11.2024 04:33:28
The Linux kernel before 5.4.1 on powerpc allows Information Exposure because the Spectre-RSB mitigation is not in place for all applicable CPUs, aka CID-39e72bf96f58. This is related to arch/powerpc/kernel/entry_64.S and arch/powerpc/kernel/security....
CVE-2019-10220
- EPSS 5.12%
- Veröffentlicht 27.11.2019 16:15:11
- Zuletzt bearbeitet 21.11.2024 04:18:41
Linux kernel CIFS implementation, version 4.9.0 is vulnerable to a relative paths injection in directory entry lists.
- EPSS 8.67%
- Veröffentlicht 27.11.2019 09:15:11
- Zuletzt bearbeitet 21.11.2024 04:27:38
A heap-based buffer overflow vulnerability was found in the Linux kernel, version kernel-2.6.32, in Marvell WiFi chip driver. A remote attacker could cause a denial of service (system crash) or, possibly execute arbitrary code, when the lbs_ibss_join...
CVE-2019-18675
- EPSS 0.53%
- Veröffentlicht 25.11.2019 14:15:12
- Zuletzt bearbeitet 21.11.2024 04:33:30
The Linux kernel through 5.3.13 has a start_offset+size Integer Overflow in cpia2_remap_buffer in drivers/media/usb/cpia2/cpia2_core.c because cpia2 has its own mmap implementation. This allows local users (with /dev/video0 access) to obtain read and...
CVE-2019-10207
- EPSS 0.88%
- Veröffentlicht 25.11.2019 14:15:11
- Zuletzt bearbeitet 21.11.2024 04:18:39
A flaw was found in the Linux kernel's Bluetooth implementation of UART, all versions kernel 3.x.x before 4.18.0 and kernel 5.x.x. An attacker with local access and write permissions to the Bluetooth hardware could use this flaw to issue a specially ...
CVE-2019-19227
- EPSS 0.64%
- Veröffentlicht 22.11.2019 14:15:11
- Zuletzt bearbeitet 21.11.2024 04:34:22
In the AppleTalk subsystem in the Linux kernel before 5.1, there is a potential NULL pointer dereference because register_snap_client may return NULL. This will lead to denial of service in net/appletalk/aarp.c and net/appletalk/ddp.c, as demonstrate...
CVE-2019-19036
- EPSS 1.84%
- Veröffentlicht 21.11.2019 02:15:23
- Zuletzt bearbeitet 21.11.2024 04:34:02
btrfs_root_node in fs/btrfs/ctree.c in the Linux kernel through 5.3.12 allows a NULL pointer dereference because rcu_dereference(root->node) can be zero.
CVE-2019-19039
- EPSS 0.73%
- Veröffentlicht 21.11.2019 02:15:23
- Zuletzt bearbeitet 21.11.2024 04:34:02
__btrfs_free_extent in fs/btrfs/extent-tree.c in the Linux kernel through 5.3.12 calls btrfs_print_leaf in a certain ENOENT case, which allows local users to obtain potentially sensitive information about register values via the dmesg program. NOTE: ...
- EPSS 0.53%
- Veröffentlicht 18.11.2019 06:15:13
- Zuletzt bearbeitet 21.11.2024 04:34:08
Memory leaks in drivers/net/wireless/ath/ath9k/htc_hst.c in the Linux kernel through 5.3.11 allow attackers to cause a denial of service (memory consumption) by triggering wait_for_completion_timeout() failures. This affects the htc_config_pipe_credi...
CVE-2019-19074
- EPSS 4.43%
- Veröffentlicht 18.11.2019 06:15:13
- Zuletzt bearbeitet 21.11.2024 04:34:08
A memory leak in the ath9k_wmi_cmd() function in drivers/net/wireless/ath/ath9k/wmi.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service (memory consumption), aka CID-728c1e2a05e4.