| Max CVSS | 6.9 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2018-16880 | 6.9 |
A flaw was found in the Linux kernel's handle_rx() function in the [vhost_net] driver. A malicious virtual guest, under specific conditions, can trigger an out-of-bounds write in a kmalloc-8 slab on a virtual host which may lead to a kernel memory co
|
19-07-2023 - 00:54 | 29-01-2019 - 16:29 | |
| CVE-2018-18397 | 2.1 |
The userfaultfd implementation in the Linux kernel before 4.19.7 mishandles access control for certain UFFDIO_ ioctl calls, as demonstrated by allowing local users to write data into holes in a tmpfs file (if the user has read-only access to that fil
|
24-08-2020 - 17:37 | 12-12-2018 - 10:29 | |
| CVE-2019-6133 | 4.4 |
In PolicyKit (aka polkit) 0.115, the "start time" protection mechanism can be bypassed because fork() is not atomic, and therefore authorization decisions are improperly cached. This is related to lack of uid checking in polkitbackend/polkitbackendin
|
24-08-2020 - 17:37 | 11-01-2019 - 14:29 |