Vulnerabilities (CVE)

Vendor filter

Linux Subscribe

Product filter

Linux Kernel Subscribe

Filter

2304 total CVE
CVE Vendors Products Updated CVSS
CVE-2018-20855 1 Linux 1 Linux Kernel 2019-08-16 2.1
An issue was discovered in the Linux kernel before 4.18.7. In create_qp_common in drivers/infiniband/hw/mlx5/qp.c, mlx5_ib_create_qp_resp was never initialized, resulting in a leak of stack memory to userspace.
CVE-2019-14763 1 Linux 1 Linux Kernel 2019-08-15 4.9
In the Linux kernel before 4.16.4, a double-locking error in drivers/usb/dwc3/gadget.c may potentially cause a deadlock with f_hid.
CVE-2018-20961 1 Linux 1 Linux Kernel 2019-08-15 10.0
In the Linux kernel before 4.16.4, a double free vulnerability in the f_midi_set_alt function of drivers/usb/gadget/function/f_midi.c in the f_midi driver may allow attackers to cause a denial of service or possibly have unspecified other impact.
CVE-2007-2764 1 Linux 1 Linux Kernel 2019-08-14 7.8
The embedded Linux kernel in certain Sun-Brocade SilkWorm switches before 20070516 does not properly handle a situation in which a non-root user creates a kernel process, which allows attackers to cause a denial of service (oops and device...
CVE-2018-20856 1 Linux 1 Linux Kernel 2019-08-13 4.6
An issue was discovered in the Linux kernel before 4.18.7. In block/blk-core.c, there is an __blk_drain_queue() use-after-free because a certain error case is mishandled.
CVE-2018-20169 3 Linux, Canonical, Debian 3 Linux Kernel, Ubuntu Linux, Debian Linux 2019-08-13 7.2
An issue was discovered in the Linux kernel before 4.19.9. The USB subsystem mishandles size checks during the reading of an extra descriptor, related to __usb_get_extra_descriptor in drivers/usb/core/usb.c.
CVE-2018-14617 3 Linux, Canonical, Debian 3 Linux Kernel, Ubuntu Linux, Debian Linux 2019-08-13 7.1
An issue was discovered in the Linux kernel through 4.17.10. There is a NULL pointer dereference and panic in hfsplus_lookup() in fs/hfsplus/dir.c when opening a file (that is purportedly a hard link) in an hfs+ filesystem that has malformed...
CVE-2018-14615 1 Linux 1 Linux Kernel 2019-08-13 7.1
An issue was discovered in the Linux kernel through 4.17.10. There is a buffer overflow in truncate_inline_inode() in fs/f2fs/inline.c when umounting an f2fs image, because a length value may be negative.
CVE-2018-14609 3 Linux, Canonical, Debian 3 Linux Kernel, Ubuntu Linux, Debian Linux 2019-08-13 7.1
An issue was discovered in the Linux kernel through 4.17.10. There is an invalid pointer dereference in __del_reloc_root() in fs/btrfs/relocation.c when mounting a crafted btrfs image, related to removing reloc rb_trees when reloc control has not...
CVE-2018-13098 1 Linux 1 Linux Kernel 2019-08-13 4.3
An issue was discovered in fs/f2fs/inode.c in the Linux kernel through 4.17.3. A denial of service (slab out-of-bounds read and BUG) can occur for a modified f2fs filesystem image in which FI_EXTRA_ATTR is set in an inode.
CVE-2018-13096 3 Linux, Canonical, Debian 3 Linux Kernel, Ubuntu Linux, Debian Linux 2019-08-13 4.3
An issue was discovered in fs/f2fs/super.c in the Linux kernel through 4.17.3. A denial of service (out-of-bounds memory access and BUG) can occur upon encountering an abnormal bitmap size when mounting a crafted f2fs image.
CVE-2019-14284 1 Linux 1 Linux Kernel 2019-08-11 2.1
In the Linux kernel before 5.2.3, drivers/block/floppy.c allows a denial of service by setup_format_params division-by-zero. Two consecutive ioctls can trigger the bug: the first one should set the drive geometry with .sect and .rate values that...
CVE-2019-14283 1 Linux 1 Linux Kernel 2019-08-11 4.6
In the Linux kernel before 5.2.3, set_geometry in drivers/block/floppy.c does not validate the sect and head fields, as demonstrated by an integer overflow and out-of-bounds read. It can be triggered by an unprivileged local user when a floppy...
CVE-2019-10142 1 Linux 1 Linux Kernel 2019-08-07 4.6
A flaw was found in the Linux kernel's freescale hypervisor manager implementation, kernel versions 5.0.x up to, excluding 5.0.17. A parameter passed to an ioctl was incorrectly validated and used in size calculations for the page size...
CVE-2019-7222 6 Debian, Fedoraproject, Linux and 3 more 7 Debian Linux, Fedora, Linux Kernel and 4 more 2019-08-06 2.1
The KVM implementation in the Linux kernel through 4.20.5 has an Information Leak.
CVE-2018-8087 3 Linux, Canonical, Debian 3 Linux Kernel, Ubuntu Linux, Debian Linux 2019-08-06 4.9
Memory leak in the hwsim_new_radio_nl function in drivers/net/wireless/mac80211_hwsim.c in the Linux kernel through 4.15.9 allows local users to cause a denial of service (memory consumption) by triggering an out-of-array error case.
CVE-2018-16885 2 Linux, Redhat 2 Linux Kernel, Enterprise Linux Server 2019-08-06 4.9
A flaw was found in the Linux kernel that allows the userspace to call memcpy_fromiovecend() and similar functions with a zero offset and buffer length which causes the read beyond the buffer boundaries, in certain cases causing a memory access...
CVE-2018-16658 3 Canonical, Debian, Linux 3 Ubuntu Linux, Debian Linux, Linux Kernel 2019-08-06 3.6
An issue was discovered in the Linux kernel before 4.18.6. An information leak in cdrom_ioctl_drive_status in drivers/cdrom/cdrom.c could be used by local attackers to read kernel memory because a cast from unsigned long to int interferes with...
CVE-2018-14625 3 Linux, Canonical, Debian 3 Linux Kernel, Ubuntu Linux, Debian Linux 2019-08-06 4.4
A flaw was found in the Linux Kernel where an attacker may be able to have an uncontrolled read to kernel-memory from within a vm guest. A race condition between connect() and close() function may allow an attacker using the AF_VSOCK protocol to...
CVE-2018-13093 1 Linux 1 Linux Kernel 2019-08-06 4.3
An issue was discovered in fs/xfs/xfs_icache.c in the Linux kernel through 4.17.3. There is a NULL pointer dereference and panic in lookup_slow() on a NULL inode->i_ops pointer when doing pathwalks on a corrupted xfs image. This occurs because of...