Max CVSS | 10.0 | Min CVSS | 1.9 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2019-2215 | 4.6 |
A use-after-free in binder.c allows an elevation of privilege from an application to the Linux Kernel. No user interaction is required to exploit this vulnerability, however exploitation does require either the installation of a malicious local appli
|
25-07-2024 - 14:10 | 11-10-2019 - 19:15 | |
CVE-2019-19527 | 7.2 |
In the Linux kernel before 5.2.10, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/hid/usbhid/hiddev.c driver, aka CID-9c09b214f30e.
|
04-08-2023 - 17:50 | 03-12-2019 - 16:15 | |
CVE-2019-15098 | 4.9 |
drivers/net/wireless/ath/ath6kl/usb.c in the Linux kernel through 5.2.9 has a NULL pointer dereference via an incomplete address in an endpoint descriptor.
|
03-03-2023 - 19:30 | 16-08-2019 - 02:15 | |
CVE-2019-15217 | 4.9 |
An issue was discovered in the Linux kernel before 5.2.3. There is a NULL pointer dereference caused by a malicious USB device in the drivers/media/usb/zr364xx/zr364xx.c driver.
|
03-03-2023 - 15:04 | 19-08-2019 - 22:15 | |
CVE-2019-19332 | 5.6 |
An out-of-bounds memory write issue was found in the Linux Kernel, version 3.13 through 5.4, in the way the Linux kernel's KVM hypervisor handled the 'KVM_GET_EMULATED_CPUID' ioctl(2) request to get CPUID features emulated by the KVM hypervisor. A us
|
12-02-2023 - 23:37 | 09-01-2020 - 15:15 | |
CVE-2019-14901 | 10.0 |
A heap overflow flaw was found in the Linux kernel, all versions 3.x.x and 4.x.x before 4.18.0, in Marvell WiFi chip driver. The vulnerability allows a remote attacker to cause a system crash, resulting in a denial of service, or execute arbitrary co
|
12-02-2023 - 23:37 | 29-11-2019 - 15:15 | |
CVE-2019-14896 | 10.0 |
A heap-based buffer overflow vulnerability was found in the Linux kernel, version kernel-2.6.32, in Marvell WiFi chip driver. A remote attacker could cause a denial of service (system crash) or, possibly execute arbitrary code, when the lbs_ibss_join
|
12-02-2023 - 23:36 | 27-11-2019 - 09:15 | |
CVE-2019-14897 | 7.5 |
A stack-based buffer overflow was found in the Linux kernel, version kernel-2.6.32, in Marvell WiFi chip driver. An attacker is able to cause a denial of service (system crash) or, possibly execute arbitrary code, when a STA works in IBSS mode (allow
|
12-02-2023 - 23:36 | 29-11-2019 - 15:15 | |
CVE-2019-14895 | 7.5 |
A heap-based buffer overflow was discovered in the Linux kernel, all versions 3.x.x and 4.x.x before 4.18.0, in Marvell WiFi chip driver. The flaw could occur when the station attempts a connection negotiation during the handling of the remote device
|
12-02-2023 - 23:36 | 29-11-2019 - 14:15 | |
CVE-2019-19052 | 7.8 |
A memory leak in the gs_can_open() function in drivers/net/can/usb/gs_usb.c in the Linux kernel before 5.3.11 allows attackers to cause a denial of service (memory consumption) by triggering usb_submit_urb() failures, aka CID-fb5be6a7b486.
|
19-01-2023 - 16:48 | 18-11-2019 - 06:15 | |
CVE-2019-17666 | 8.3 |
rtl_p2p_noa_ie in drivers/net/wireless/realtek/rtlwifi/ps.c in the Linux kernel through 5.3.6 lacks a certain upper-bound check, leading to a buffer overflow.
|
19-01-2023 - 16:05 | 17-10-2019 - 02:15 | |
CVE-2019-19966 | 2.1 |
In the Linux kernel before 5.1.6, there is a use-after-free in cpia2_exit() in drivers/media/usb/cpia2/cpia2_v4l.c that will cause denial of service, aka CID-dea37a972655.
|
20-12-2022 - 22:15 | 25-12-2019 - 04:15 | |
CVE-2019-19922 | 2.1 |
kernel/sched/fair.c in the Linux kernel before 5.3.9, when cpu.cfs_quota_us is used (e.g., with Kubernetes), allows attackers to cause a denial of service against non-cpu-bound applications by generating a workload that triggers unwanted slice expira
|
14-12-2022 - 19:15 | 22-12-2019 - 20:15 | |
CVE-2019-15505 | 10.0 |
drivers/media/usb/dvb-usb/technisat-usb2.c in the Linux kernel through 5.2.9 has an out-of-bounds read via crafted USB device traffic (which may be remote via usbip or usbredir).
|
16-11-2022 - 14:09 | 23-08-2019 - 06:15 | |
CVE-2019-19947 | 2.1 |
In the Linux kernel through 5.4.6, there are information leaks of uninitialized memory to a USB device in the drivers/net/can/usb/kvaser_usb/kvaser_usb_leaf.c driver, aka CID-da2311a6385c.
|
09-11-2022 - 21:49 | 24-12-2019 - 00:15 | |
CVE-2019-19057 | 2.1 |
Two memory leaks in the mwifiex_pcie_init_evt_ring() function in drivers/net/wireless/marvell/mwifiex/pcie.c in the Linux kernel through 5.3.11 allow attackers to cause a denial of service (memory consumption) by triggering mwifiex_map_pci_memory() f
|
07-11-2022 - 15:14 | 18-11-2019 - 06:15 | |
CVE-2019-19051 | 4.9 |
A memory leak in the i2400m_op_rfkill_sw_toggle() function in drivers/net/wimax/i2400m/op-rfkill.c in the Linux kernel before 5.3.11 allows attackers to cause a denial of service (memory consumption), aka CID-6f3ef5c25cc7.
|
07-11-2022 - 14:55 | 18-11-2019 - 06:15 | |
CVE-2019-17133 | 7.5 |
In the Linux kernel through 5.3.2, cfg80211_mgd_wext_giwessid in net/wireless/wext-sme.c does not reject a long SSID IE, leading to a Buffer Overflow.
|
03-11-2022 - 02:41 | 04-10-2019 - 12:15 | |
CVE-2019-10220 | 9.3 |
Linux kernel CIFS implementation, version 4.9.0 is vulnerable to a relative paths injection in directory entry lists.
|
03-11-2022 - 02:41 | 27-11-2019 - 16:15 | |
CVE-2019-16746 | 7.5 |
An issue was discovered in net/wireless/nl80211.c in the Linux kernel through 5.2.17. It does not check the length of variable elements in a beacon head, leading to a buffer overflow.
|
03-11-2022 - 02:39 | 24-09-2019 - 06:15 | |
CVE-2019-19523 | 4.9 |
In the Linux kernel before 5.3.7, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/usb/misc/adutux.c driver, aka CID-44efc269db79.
|
31-10-2022 - 14:52 | 03-12-2019 - 16:15 | |
CVE-2019-19524 | 4.9 |
In the Linux kernel before 5.3.12, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/input/ff-memless.c driver, aka CID-fa3a5a1880c9.
|
31-10-2022 - 14:52 | 03-12-2019 - 16:15 | |
CVE-2019-19531 | 4.6 |
In the Linux kernel before 5.2.9, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/usb/misc/yurex.c driver, aka CID-fc05481b2fca.
|
31-10-2022 - 14:51 | 03-12-2019 - 16:15 | |
CVE-2019-19530 | 4.9 |
In the Linux kernel before 5.2.10, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/usb/class/cdc-acm.c driver, aka CID-c52873e5a1ef.
|
31-10-2022 - 14:51 | 03-12-2019 - 16:15 | |
CVE-2019-17052 | 2.1 |
ax25_create in net/ax25/af_ax25.c in the AF_AX25 network module in the Linux kernel 3.16 through 5.3.2 does not enforce CAP_NET_RAW, which means that unprivileged users can create a raw socket, aka CID-0614e2b73768.
|
07-10-2022 - 01:38 | 01-10-2019 - 14:15 | |
CVE-2019-19536 | 2.1 |
In the Linux kernel before 5.2.9, there is an info-leak bug that can be caused by a malicious USB device in the drivers/net/can/usb/peak_usb/pcan_usb_pro.c driver, aka CID-ead16e53c2f0.
|
31-03-2022 - 18:22 | 03-12-2019 - 16:15 | |
CVE-2019-19534 | 2.1 |
In the Linux kernel before 5.3.11, there is an info-leak bug that can be caused by a malicious USB device in the drivers/net/can/usb/peak_usb/pcan_usb_core.c driver, aka CID-f7a1337f0d29.
|
31-03-2022 - 18:21 | 03-12-2019 - 16:15 | |
CVE-2019-19965 | 1.9 |
In the Linux kernel through 5.4.6, there is a NULL pointer dereference in drivers/scsi/libsas/sas_discover.c because of mishandling of port disconnection during discovery, related to a PHY down race condition, aka CID-f70267f379b5.
|
31-03-2022 - 18:19 | 25-12-2019 - 04:15 | |
CVE-2019-17055 | 2.1 |
base_sock_create in drivers/isdn/mISDN/socket.c in the AF_ISDN network module in the Linux kernel through 5.3.2 does not enforce CAP_NET_RAW, which means that unprivileged users can create a raw socket, aka CID-b91ee4aa2a21.
|
31-03-2022 - 18:13 | 01-10-2019 - 14:15 | |
CVE-2019-19066 | 4.7 |
A memory leak in the bfad_im_get_stats() function in drivers/scsi/bfa/bfad_attr.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service (memory consumption) by triggering bfa_port_get_stats() failures, aka CID-0e62395da2bd.
|
14-06-2021 - 18:15 | 18-11-2019 - 06:15 | |
CVE-2019-19062 | 4.7 |
A memory leak in the crypto_report() function in crypto/crypto_user_base.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service (memory consumption) by triggering crypto_report_alg() failures, aka CID-ffdde5932042.
|
24-08-2020 - 17:37 | 18-11-2019 - 06:15 | |
CVE-2019-19056 | 4.7 |
A memory leak in the mwifiex_pcie_alloc_cmdrsp_buf() function in drivers/net/wireless/marvell/mwifiex/pcie.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service (memory consumption) by triggering mwifiex_map_pci_memory()
|
24-08-2020 - 17:37 | 18-11-2019 - 06:15 | |
CVE-2019-19533 | 2.1 |
In the Linux kernel before 5.3.4, there is an info-leak bug that can be caused by a malicious USB device in the drivers/media/usb/ttusb-dec/ttusb_dec.c driver, aka CID-a10feaf8c464.
|
18-01-2020 - 07:15 | 03-12-2019 - 16:15 | |
CVE-2019-19537 | 4.7 |
In the Linux kernel before 5.2.10, there is a race condition bug that can be caused by a malicious USB device in the USB character device driver layer, aka CID-303911cfc5b9. This affects drivers/usb/core/file.c.
|
18-01-2020 - 07:15 | 03-12-2019 - 16:15 | |
CVE-2019-19532 | 4.6 |
In the Linux kernel before 5.3.9, there are multiple out-of-bounds write bugs that can be caused by a malicious USB device in the Linux kernel HID drivers, aka CID-d9d4b1e46d95. This affects drivers/hid/hid-axff.c, drivers/hid/hid-dr.c, drivers/hid/h
|
07-01-2020 - 06:15 | 03-12-2019 - 16:15 | |
CVE-2019-19767 | 4.3 |
The Linux kernel before 5.4.2 mishandles ext4_expand_extra_isize, as demonstrated by use-after-free errors in __ext4_expand_extra_isize and ext4_xattr_set_entry, related to fs/ext4/inode.c and fs/ext4/super.c, aka CID-4ea99936a163.
|
03-01-2020 - 11:15 | 12-12-2019 - 20:15 | |
CVE-2019-19227 | 2.1 |
In the AppleTalk subsystem in the Linux kernel before 5.1, there is a potential NULL pointer dereference because register_snap_client may return NULL. This will lead to denial of service in net/appletalk/aarp.c and net/appletalk/ddp.c, as demonstrate
|
12-12-2019 - 16:15 | 22-11-2019 - 14:15 | |
CVE-2019-17054 | 2.1 |
atalk_create in net/appletalk/ddp.c in the AF_APPLETALK network module in the Linux kernel through 5.3.2 does not enforce CAP_NET_RAW, which means that unprivileged users can create a raw socket, aka CID-6cc03e8aa36c.
|
25-10-2019 - 20:15 | 01-10-2019 - 14:15 | |
CVE-2019-17056 | 2.1 |
llcp_sock_create in net/nfc/llcp_sock.c in the AF_NFC network module in the Linux kernel through 5.3.2 does not enforce CAP_NET_RAW, which means that unprivileged users can create a raw socket, aka CID-3a359798b176.
|
25-10-2019 - 20:15 | 01-10-2019 - 14:15 | |
CVE-2019-17053 | 2.1 |
ieee802154_create in net/ieee802154/socket.c in the AF_IEEE802154 network module in the Linux kernel through 5.3.2 does not enforce CAP_NET_RAW, which means that unprivileged users can create a raw socket, aka CID-e69dbd4619e7.
|
25-10-2019 - 20:15 | 01-10-2019 - 14:15 | |
CVE-2019-15291 | 4.9 |
An issue was discovered in the Linux kernel through 5.2.9. There is a NULL pointer dereference caused by a malicious USB device in the flexcop_usb_probe function in the drivers/media/usb/b2c2/flexcop-usb.c driver.
|
06-09-2019 - 00:15 | 20-08-2019 - 14:15 |