Max CVSS | 9.3 | Min CVSS | 2.1 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2018-1000204 | 6.3 |
Linux Kernel version 3.18 to 4.16 incorrectly handles an SG_IO ioctl on /dev/sg0 with dxfer_direction=SG_DXFER_FROM_DEV and an empty 6-byte cmdp. This may lead to copying up to 1000 kernel heap pages to the userspace. This has been fixed upstream in
|
05-08-2024 - 13:15 | 26-06-2018 - 14:29 | |
CVE-2019-11486 | 6.9 |
The Siemens R3964 line discipline driver in drivers/tty/n_r3964.c in the Linux kernel before 5.0.8 has multiple race conditions.
|
05-10-2023 - 14:22 | 23-04-2019 - 22:29 | |
CVE-2019-11884 | 2.1 |
The do_hidp_sock_ioctl function in net/bluetooth/hidp/sock.c in the Linux kernel before 5.0.15 allows a local user to obtain potentially sensitive information from kernel stack memory via a HIDPCONNADD command, because a name field may not end with a
|
03-03-2023 - 20:53 | 10-05-2019 - 22:29 | |
CVE-2019-3882 | 4.9 |
A flaw was found in the Linux kernel's vfio interface implementation that permits violation of the user's locked memory limit. If a device is bound to a vfio driver, such as vfio-pci, and the local attacker is administratively granted ownership of th
|
12-02-2023 - 23:38 | 24-04-2019 - 16:29 | |
CVE-2019-11815 | 9.3 |
An issue was discovered in rds_tcp_kill_sock in net/rds/tcp.c in the Linux kernel before 5.0.8. There is a race condition leading to a use-after-free, related to net namespace cleanup.
|
21-07-2021 - 11:39 | 08-05-2019 - 14:29 | |
CVE-2018-17972 | 4.9 |
An issue was discovered in the proc_pid_stack function in fs/proc/base.c in the Linux kernel through 4.18.11. It does not ensure that only root may inspect the kernel stack of an arbitrary task, allowing a local attacker to exploit racy stack unwindi
|
15-10-2020 - 13:28 | 03-10-2018 - 22:29 | |
CVE-2018-15594 | 2.1 |
arch/x86/kernel/paravirt.c in the Linux kernel before 4.18.1 mishandles certain indirect calls, which makes it easier for attackers to conduct Spectre-v2 attacks against paravirtual guests.
|
03-10-2019 - 00:03 | 20-08-2018 - 08:29 | |
CVE-2018-10853 | 4.6 |
A flaw was found in the way Linux kernel KVM hypervisor before 4.18 emulated instructions such as sgdt/sidt/fxsave/fxrstor. It did not check current privilege(CPL) level while emulating unprivileged instructions. An unprivileged guest user/process co
|
03-10-2019 - 00:03 | 11-09-2018 - 14:29 | |
CVE-2018-5814 | 6.9 |
In the Linux Kernel before version 4.16.11, 4.14.43, 4.9.102, and 4.4.133, multiple race condition errors when handling probe, disconnect, and rebind operations can be exploited to trigger a use-after-free condition or a NULL pointer dereference by s
|
20-05-2019 - 15:29 | 12-06-2018 - 16:29 |