CVE-2019-17052
- EPSS 0.64%
- Veröffentlicht 01.10.2019 14:15:40
- Zuletzt bearbeitet 21.11.2024 04:31:36
ax25_create in net/ax25/af_ax25.c in the AF_AX25 network module in the Linux kernel 3.16 through 5.3.2 does not enforce CAP_NET_RAW, which means that unprivileged users can create a raw socket, aka CID-0614e2b73768.
CVE-2019-16921
- EPSS 1.99%
- Veröffentlicht 27.09.2019 13:15:10
- Zuletzt bearbeitet 21.11.2024 04:31:20
In the Linux kernel before 4.17, hns_roce_alloc_ucontext in drivers/infiniband/hw/hns/hns_roce_main.c does not initialize the resp data structure, which might allow attackers to obtain sensitive information from kernel stack memory, aka CID-df7e40425...
CVE-2019-16746
- EPSS 12.65%
- Veröffentlicht 24.09.2019 06:15:10
- Zuletzt bearbeitet 21.11.2024 04:31:06
An issue was discovered in net/wireless/nl80211.c in the Linux kernel through 5.2.17. It does not check the length of variable elements in a beacon head, leading to a buffer overflow.
CVE-2019-16714
- EPSS 2.7%
- Veröffentlicht 23.09.2019 12:15:10
- Zuletzt bearbeitet 21.11.2024 04:31:02
In the Linux kernel before 5.2.14, rds6_inc_info_copy in net/rds/recv.c allows attackers to obtain sensitive information from kernel stack memory because tos and flags fields are not initialized.
CVE-2019-14814
- EPSS 0.87%
- Veröffentlicht 20.09.2019 19:15:11
- Zuletzt bearbeitet 21.11.2024 04:27:24
There is heap-based buffer overflow in Linux kernel, all versions up to, excluding 5.3, in the marvell wifi chip driver in Linux kernel, that allows local users to cause a denial of service(system crash) or possibly execute arbitrary code.
CVE-2019-14816
- EPSS 0.91%
- Veröffentlicht 20.09.2019 19:15:11
- Zuletzt bearbeitet 21.11.2024 04:27:25
There is heap-based buffer overflow in kernel, all versions up to, excluding 5.3, in the marvell wifi chip driver in Linux kernel, that allows local users to cause a denial of service(system crash) or possibly execute arbitrary code.
CVE-2019-14821
- EPSS 0.76%
- Veröffentlicht 19.09.2019 18:15:10
- Zuletzt bearbeitet 21.11.2024 04:27:25
An out-of-bounds access issue was found in the Linux kernel, all versions through 5.3, in the way Linux kernel's KVM hypervisor implements the Coalesced MMIO write operation. It operates on an MMIO ring buffer 'struct kvm_coalesced_mmio' object, wher...
CVE-2019-16413
- EPSS 2.9%
- Veröffentlicht 19.09.2019 00:15:10
- Zuletzt bearbeitet 21.11.2024 04:30:40
An issue was discovered in the Linux kernel before 5.0.4. The 9p filesystem did not protect i_size_write() properly, which causes an i_size_read() infinite loop and denial of service on SMP systems.
CVE-2019-14835
- EPSS 0.63%
- Veröffentlicht 17.09.2019 16:15:10
- Zuletzt bearbeitet 21.11.2024 04:27:27
A buffer overflow flaw was found, in versions from 2.6.34 to 5.2.x, in the way Linux kernel's vhost functionality that translates virtqueue buffers to IOVs, logged the buffer descriptors during migration. A privileged guest user able to pass descript...
CVE-2019-16232
- EPSS 0.58%
- Veröffentlicht 11.09.2019 16:15:11
- Zuletzt bearbeitet 21.11.2024 04:30:20
drivers/net/wireless/marvell/libertas/if_sdio.c in the Linux kernel 5.2.14 does not check the alloc_workqueue return value, leading to a NULL pointer dereference.