CVE-2021-31615
- EPSS 0.4%
- Veröffentlicht 25.06.2021 12:15:08
- Zuletzt bearbeitet 21.11.2024 06:06:01
Unencrypted Bluetooth Low Energy baseband links in Bluetooth Core Specifications 4.0 through 5.2 may permit an adjacent device to inject a crafted packet during the receive window of the listening device before the transmitting device initiates its p...
CVE-2021-33624
- EPSS 0.92%
- Veröffentlicht 23.06.2021 16:15:07
- Zuletzt bearbeitet 11.11.2025 16:15:33
In kernel/bpf/verifier.c in the Linux kernel before 5.12.13, a branch can be mispredicted (e.g., because of type confusion) and consequently an unprivileged BPF program can read arbitrary memory locations via a side-channel attack, aka CID-9183671af6...
CVE-2021-32078
- EPSS 0.55%
- Veröffentlicht 17.06.2021 15:15:07
- Zuletzt bearbeitet 21.11.2024 06:06:48
An Out-of-Bounds Read was discovered in arch/arm/mach-footbridge/personal-pci.c in the Linux kernel through 5.12.11 because of the lack of a check for a value that shouldn't be negative, e.g., access to element -2 of an array, aka CID-298a58e165e4.
CVE-2021-34693
- EPSS 0.47%
- Veröffentlicht 14.06.2021 22:15:20
- Zuletzt bearbeitet 21.11.2024 06:10:57
net/can/bcm.c in the Linux kernel through 5.12.10 allows local users to obtain sensitive information from kernel stack memory because parts of a data structure are uninitialized.
CVE-2021-0129
- EPSS 0.83%
- Veröffentlicht 09.06.2021 20:15:08
- Zuletzt bearbeitet 21.11.2024 05:42:01
Improper access control in BlueZ may allow an authenticated user to potentially enable information disclosure via adjacent access.
CVE-2021-3564
- EPSS 0.49%
- Veröffentlicht 08.06.2021 12:15:11
- Zuletzt bearbeitet 21.11.2024 06:21:51
A flaw double-free memory corruption in the Linux kernel HCI device initialization subsystem was found in the way user attach malicious HCI TTY Bluetooth device. A local user could use this flaw to crash the system. This flaw affects all the Linux ke...
CVE-2020-36385
- EPSS 1.48%
- Veröffentlicht 07.06.2021 12:15:08
- Zuletzt bearbeitet 21.11.2024 05:29:22
An issue was discovered in the Linux kernel before 5.10. drivers/infiniband/core/ucma.c has a use-after-free because the ctx is reached via the ctx_list in some ucma_migrate_id situations where ucma_close is called, aka CID-f5449e74802c.
CVE-2021-20292
- EPSS 0.87%
- Veröffentlicht 28.05.2021 11:15:08
- Zuletzt bearbeitet 21.11.2024 05:46:17
There is a flaw reported in the Linux kernel in versions before 5.9 in drivers/gpu/drm/nouveau/nouveau_sgdma.c in nouveau_sgdma_create_ttm in Nouveau DRM subsystem. The issue results from the lack of validating the existence of an object prior to per...
CVE-2020-25670
- EPSS 0.61%
- Veröffentlicht 26.05.2021 11:15:08
- Zuletzt bearbeitet 21.11.2024 05:18:25
A vulnerability was found in Linux Kernel where refcount leak in llcp_sock_bind() causing use-after-free which might lead to privilege escalations.
CVE-2020-25671
- EPSS 0.51%
- Veröffentlicht 26.05.2021 11:15:08
- Zuletzt bearbeitet 21.11.2024 05:18:25
A vulnerability was found in Linux Kernel, where a refcount leak in llcp_sock_connect() causing use-after-free which might lead to privilege escalations.