CVE-2021-42008
- EPSS 1.48%
- Veröffentlicht 05.10.2021 00:15:07
- Zuletzt bearbeitet 21.11.2024 06:27:03
The decode_data function in drivers/net/hamradio/6pack.c in the Linux kernel before 5.13.13 has a slab out-of-bounds write. Input from a process that has the CAP_NET_ADMIN capability can lead to root access.
CVE-2021-3653
- EPSS 0.41%
- Veröffentlicht 29.09.2021 20:15:08
- Zuletzt bearbeitet 21.11.2024 06:22:04
A flaw was found in the KVM's AMD code for supporting SVM nested virtualization. The flaw occurs when processing the VMCB (virtual machine control block) provided by the L1 guest to spawn/handle a nested guest (L2). Due to improper validation of the ...
CVE-2021-20317
- EPSS 0.37%
- Veröffentlicht 27.09.2021 11:15:07
- Zuletzt bearbeitet 21.11.2024 05:46:21
A flaw was found in the Linux kernel. A corrupted timer tree caused the task wakeup to be missing in the timerqueue_add function in lib/timerqueue.c. This flaw allows a local attacker with special user privileges to cause a denial of service, slowing...
- EPSS 0.3%
- Veröffentlicht 03.09.2021 01:15:07
- Zuletzt bearbeitet 21.11.2024 06:24:14
A race condition was discovered in ext4_write_inline_data_end in fs/ext4/inline.c in the ext4 subsystem in the Linux kernel through 5.13.13.
CVE-2021-21781
- EPSS 0.53%
- Veröffentlicht 18.08.2021 15:15:07
- Zuletzt bearbeitet 21.11.2024 05:48:57
An information disclosure vulnerability exists in the ARM SIGPAGE functionality of Linux Kernel v5.4.66 and v5.4.54. The latest version (5.11-rc4) seems to still be vulnerable. A userland application can read the contents of the sigpage, which can le...
CVE-2021-3573
- EPSS 0.37%
- Veröffentlicht 13.08.2021 14:15:07
- Zuletzt bearbeitet 21.11.2024 06:21:52
A use-after-free in function hci_sock_bound_ioctl() of the Linux kernel HCI subsystem was found in the way user calls ioct HCIUNBLOCKADDR or other way triggers race condition of the call hci_unregister_dev() together with one of the calls hci_sock_bl...
CVE-2021-38198
- EPSS 0.47%
- Veröffentlicht 08.08.2021 20:15:07
- Zuletzt bearbeitet 21.11.2024 06:16:37
arch/x86/kvm/mmu/paging_tmpl.h in the Linux kernel before 5.12.11 incorrectly computes the access permissions of a shadow page, leading to a missing guest protection page fault.
CVE-2021-38204
- EPSS 0.33%
- Veröffentlicht 08.08.2021 20:15:07
- Zuletzt bearbeitet 21.11.2024 06:16:39
drivers/usb/host/max3421-hcd.c in the Linux kernel before 5.13.6 allows physically proximate attackers to cause a denial of service (use-after-free and panic) by removing a MAX-3421 USB device in certain situations.
CVE-2021-38205
- EPSS 0.33%
- Veröffentlicht 08.08.2021 20:15:07
- Zuletzt bearbeitet 21.11.2024 06:16:39
drivers/net/ethernet/xilinx/xilinx_emaclite.c in the Linux kernel before 5.13.3 makes it easier for attackers to defeat an ASLR protection mechanism because it prints a kernel pointer (i.e., the real IOMEM pointer).
CVE-2021-38208
- EPSS 0.49%
- Veröffentlicht 08.08.2021 20:15:07
- Zuletzt bearbeitet 21.11.2024 06:16:40
net/nfc/llcp_sock.c in the Linux kernel before 5.12.10 allows local unprivileged users to cause a denial of service (NULL pointer dereference and BUG) by making a getsockname call after a certain type of failure of a bind call.