CVE-2022-2078
- EPSS 1.01%
- Veröffentlicht 30.06.2022 13:15:08
- Zuletzt bearbeitet 21.11.2024 07:00:16
A vulnerability was found in the Linux kernel's nft_set_desc_concat_parse() function .This flaw allows an attacker to trigger a buffer overflow via nft_set_desc_concat_parse() , causing a denial of service and possibly to run code.
CVE-2022-34494
- EPSS 0.28%
- Veröffentlicht 26.06.2022 16:15:07
- Zuletzt bearbeitet 21.11.2024 07:09:40
rpmsg_virtio_add_ctrl_dev in drivers/rpmsg/virtio_rpmsg_bus.c in the Linux kernel before 5.18.4 has a double free.
CVE-2022-34495
- EPSS 0.33%
- Veröffentlicht 26.06.2022 16:15:07
- Zuletzt bearbeitet 21.11.2024 07:09:40
rpmsg_probe in drivers/rpmsg/virtio_rpmsg_bus.c in the Linux kernel before 5.18.4 has a double free.
CVE-2022-33981
- EPSS 0.55%
- Veröffentlicht 18.06.2022 16:15:08
- Zuletzt bearbeitet 05.05.2025 17:18:15
drivers/block/floppy.c in the Linux kernel before 5.17.6 is vulnerable to a denial of service, because of a concurrency use-after-free flaw after deallocating raw_cmd in the raw_cmd_ioctl function.
CVE-2022-21166
- EPSS 5.9%
- Veröffentlicht 15.06.2022 21:15:09
- Zuletzt bearbeitet 05.05.2025 17:17:41
Incomplete cleanup in specific special register write operations for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
CVE-2022-21123
- EPSS 6.28%
- Veröffentlicht 15.06.2022 20:15:17
- Zuletzt bearbeitet 05.05.2025 17:17:37
Incomplete cleanup of multi-core shared buffers for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
CVE-2022-21125
- EPSS 6.45%
- Veröffentlicht 15.06.2022 20:15:17
- Zuletzt bearbeitet 05.05.2025 17:17:37
Incomplete cleanup of microarchitectural fill buffers on some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
CVE-2022-21499
- EPSS 0.61%
- Veröffentlicht 09.06.2022 21:15:07
- Zuletzt bearbeitet 21.11.2024 06:44:50
KGDB and KDB allow read and write access to kernel memory, and thus should be restricted during lockdown. An attacker with access to a serial port could trigger the debugger so it is important that the debugger respect the lockdown mode when/if it is...
- EPSS 0.04%
- Veröffentlicht 06.06.2022 18:15:08
- Zuletzt bearbeitet 07.11.2023 03:42:21
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2022-32250. Reason: This candidate is a duplicate of CVE-2022-32250. Notes: All CVE users should reference CVE-2022-32250 instead of this candidate. All references and descriptions in...
CVE-2022-32296
- EPSS 0.43%
- Veröffentlicht 05.06.2022 22:15:08
- Zuletzt bearbeitet 21.11.2024 07:06:07
The Linux kernel before 5.17.9 allows TCP servers to identify clients by observing what source ports are used. This occurs because of use of Algorithm 4 ("Double-Hash Port Selection Algorithm") of RFC 6056.