CVE-2022-1205
- EPSS 0.36%
- Veröffentlicht 31.08.2022 16:15:09
- Zuletzt bearbeitet 21.11.2024 06:40:15
A NULL pointer dereference flaw was found in the Linux kernel’s Amateur Radio AX.25 protocol functionality in the way a user connects with the protocol. This flaw allows a local user to crash the system.
- EPSS 0.26%
- Veröffentlicht 31.08.2022 16:15:09
- Zuletzt bearbeitet 21.11.2024 06:40:20
An issue found in linux-kernel that leads to a race condition in rose_connect(). The rose driver uses rose_neigh->use to represent how many objects are using the rose_neigh. When a user wants to delete a rose_route via rose_ioctl(), the rose driver c...
- EPSS 0.3%
- Veröffentlicht 29.08.2022 15:15:10
- Zuletzt bearbeitet 21.11.2024 07:01:59
A use-after-free flaw was found in the Linux kernel’s PLP Rose functionality in the way a user triggers a race condition by calling bind while simultaneously triggering the rose_bind() function. This flaw allows a local user to crash or potentially e...
CVE-2022-0400
- EPSS 1.22%
- Veröffentlicht 29.08.2022 15:15:09
- Zuletzt bearbeitet 21.11.2024 06:38:32
An out-of-bounds read vulnerability was discovered in linux kernel in the smc protocol stack, causing remote dos.
CVE-2022-0480
- EPSS 0.27%
- Veröffentlicht 29.08.2022 15:15:09
- Zuletzt bearbeitet 21.11.2024 06:38:44
A flaw was found in the filelock_init in fs/locks.c function in the Linux kernel. This issue can lead to host memory exhaustion due to memcg not limiting the number of Portable Operating System Interface (POSIX) file locks.
- EPSS 0.73%
- Veröffentlicht 26.08.2022 16:15:09
- Zuletzt bearbeitet 21.11.2024 06:22:41
A flaw was found in the way the dumpable flag setting was handled when certain SUID binaries executed its descendants. The prerequisite is a SUID binary that sets real UID equal to effective UID, and real GID equal to effective GID. The descendant wi...
CVE-2021-3714
- EPSS 1.1%
- Veröffentlicht 23.08.2022 16:15:09
- Zuletzt bearbeitet 21.11.2024 06:22:13
A flaw was found in the Linux kernels memory deduplication mechanism. Previous work has shown that memory deduplication can be attacked via a local exploitation mechanism. The same technique can be used if an attacker can upload page sized files and ...
- EPSS 0.05%
- Veröffentlicht 22.07.2022 11:15:07
- Zuletzt bearbeitet 07.11.2023 03:46:17
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. Reason: This CVE has been rejected as it was incorrectly assigned. All references and descriptions in this candidate have been removed to prevent accidental usage
CVE-2022-23825
- EPSS 0.77%
- Veröffentlicht 14.07.2022 20:15:08
- Zuletzt bearbeitet 21.11.2024 06:49:19
Aliases in the branch predictor may cause some AMD processors to predict the wrong branch type potentially leading to information disclosure.
CVE-2022-29900
- EPSS 3.76%
- Veröffentlicht 12.07.2022 19:15:08
- Zuletzt bearbeitet 21.11.2024 06:59:55
Mis-trained branch predictions for return instructions may allow arbitrary speculative code execution under certain microarchitecture-dependent conditions.