Max CVSS | 10.0 | Min CVSS | 2.1 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2019-11477 | 7.8 |
Jonathan Looney discovered that the TCP_SKB_CB(skb)->tcp_gso_segs value was subject to an integer overflow in the Linux kernel when handling TCP Selective Acknowledgments (SACKs). A remote attacker could use this to cause a denial of service. This ha
|
27-02-2024 - 21:04 | 19-06-2019 - 00:15 | |
CVE-2019-11478 | 5.0 |
Jonathan Looney discovered that the TCP retransmission queue implementation in tcp_fragment in the Linux kernel could be fragmented when handling certain TCP Selective Acknowledgment (SACK) sequences. A remote attacker could use this to cause a denia
|
27-02-2024 - 21:04 | 19-06-2019 - 00:15 | |
CVE-2019-14821 | 7.2 |
An out-of-bounds access issue was found in the Linux kernel, all versions through 5.3, in the way Linux kernel's KVM hypervisor implements the Coalesced MMIO write operation. It operates on an MMIO ring buffer 'struct kvm_coalesced_mmio' object, wher
|
16-02-2024 - 18:44 | 19-09-2019 - 18:15 | |
CVE-2019-14835 | 7.2 |
A buffer overflow flaw was found, in versions from 2.6.34 to 5.2.x, in the way Linux kernel's vhost functionality that translates virtqueue buffers to IOVs, logged the buffer descriptors during migration. A privileged guest user able to pass descript
|
15-12-2023 - 15:29 | 17-09-2019 - 16:15 | |
CVE-2019-14814 | 7.2 |
There is heap-based buffer overflow in Linux kernel, all versions up to, excluding 5.3, in the marvell wifi chip driver in Linux kernel, that allows local users to cause a denial of service(system crash) or possibly execute arbitrary code.
|
28-09-2023 - 19:09 | 20-09-2019 - 19:15 | |
CVE-2016-10905 | 6.1 |
An issue was discovered in fs/gfs2/rgrp.c in the Linux kernel before 4.8. A use-after-free is caused by the functions gfs2_clear_rgrpd and read_rindex_entry.
|
11-08-2023 - 18:57 | 19-08-2019 - 02:15 | |
CVE-2019-14816 | 7.2 |
There is heap-based buffer overflow in kernel, all versions up to, excluding 5.3, in the marvell wifi chip driver in Linux kernel, that allows local users to cause a denial of service(system crash) or possibly execute arbitrary code.
|
12-07-2023 - 19:27 | 20-09-2019 - 19:15 | |
CVE-2019-11833 | 2.1 |
fs/ext4/extents.c in the Linux kernel through 5.1.2 does not zero out the unused memory region in the extent tree block, which might allow local users to obtain sensitive information by reading uninitialized data in the filesystem.
|
01-03-2023 - 15:28 | 15-05-2019 - 13:29 | |
CVE-2019-2054 | 4.6 |
In the seccomp implementation prior to kernel version 4.8, there is a possible seccomp bypass due to seccomp policies that allow the use of ptrace. This could lead to local escalation of privilege with no additional execution privileges needed. User
|
28-02-2023 - 20:47 | 08-05-2019 - 17:29 | |
CVE-2019-3846 | 8.3 |
A flaw that allowed an attacker to corrupt memory and possibly escalate privileges was found in the mwifiex kernel module while connecting to a malicious wireless network.
|
12-02-2023 - 23:38 | 03-06-2019 - 19:29 | |
CVE-2019-10126 | 7.5 |
A flaw was found in the Linux kernel. A heap based buffer overflow in mwifiex_uap_parse_tail_ies function in drivers/net/wireless/marvell/mwifiex/ie.c might lead to memory corruption and possibly other consequences.
|
12-02-2023 - 23:32 | 14-06-2019 - 14:29 | |
CVE-2018-20961 | 10.0 |
In the Linux kernel before 4.16.4, a double free vulnerability in the f_midi_set_alt function of drivers/usb/gadget/function/f_midi.c in the f_midi driver may allow attackers to cause a denial of service or possibly have unspecified other impact.
|
19-01-2023 - 16:14 | 07-08-2019 - 15:15 | |
CVE-2019-2181 | 6.9 |
In binder_transaction of binder.c in the Android kernel, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed f
|
24-08-2020 - 17:37 | 05-09-2019 - 22:15 | |
CVE-2019-0136 | 3.3 |
Insufficient access control in the Intel(R) PROSet/Wireless WiFi Software driver before version 21.10 may allow an unauthenticated user to potentially enable denial of service via adjacent access.
|
24-08-2020 - 17:37 | 13-06-2019 - 16:29 | |
CVE-2019-12614 | 4.7 |
An issue was discovered in dlpar_parse_cc_property in arch/powerpc/platforms/pseries/dlpar.c in the Linux kernel through 5.1.6. There is an unchecked kstrdup of prop->name, which might allow an attacker to cause a denial of service (NULL pointer dere
|
25-02-2020 - 19:04 | 03-06-2019 - 22:29 | |
CVE-2018-21008 | 4.9 |
An issue was discovered in the Linux kernel before 4.16.7. A use-after-free can be caused by the function rsi_mac80211_detach in the file drivers/net/wireless/rsi/rsi_91x_mac80211.c.
|
24-09-2019 - 15:15 | 04-09-2019 - 21:15 | |
CVE-2018-20976 | 4.6 |
An issue was discovered in fs/xfs/xfs_super.c in the Linux kernel before 4.18. A use after free exists, related to xfs_fs_fill_super failure.
|
06-09-2019 - 00:15 | 19-08-2019 - 02:15 | |
CVE-2018-20856 | 4.6 |
An issue was discovered in the Linux kernel before 4.18.7. In block/blk-core.c, there is an __blk_drain_queue() use-after-free because a certain error case is mishandled.
|
13-08-2019 - 19:15 | 26-07-2019 - 05:15 | |
CVE-2019-14283 | 4.6 |
In the Linux kernel before 5.2.3, set_geometry in drivers/block/floppy.c does not validate the sect and head fields, as demonstrated by an integer overflow and out-of-bounds read. It can be triggered by an unprivileged local user when a floppy disk h
|
11-08-2019 - 23:15 | 26-07-2019 - 13:15 | |
CVE-2019-14284 | 2.1 |
In the Linux kernel before 5.2.3, drivers/block/floppy.c allows a denial of service by setup_format_params division-by-zero. Two consecutive ioctls can trigger the bug: the first one should set the drive geometry with .sect and .rate values that make
|
11-08-2019 - 23:15 | 26-07-2019 - 13:15 |