| Max CVSS | 9.3 | Min CVSS | 1.9 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2019-11191 | 1.9 |
The Linux kernel through 5.0.7, when CONFIG_IA32_AOUT is enabled and ia32_aout is loaded, allows local users to bypass ASLR on setuid a.out programs (if any exist) because install_exec_creds() is called too late in load_aout_binary() in fs/binfmt_aou
|
04-08-2024 - 23:15 | 12-04-2019 - 00:29 | |
| CVE-2019-11810 | 7.8 |
An issue was discovered in the Linux kernel before 5.0.7. A NULL pointer dereference can occur when megasas_create_frame_pool() fails in megasas_alloc_cmds() in drivers/scsi/megaraid/megaraid_sas_base.c. This causes a Denial of Service, related to a
|
02-12-2022 - 19:46 | 07-05-2019 - 14:29 | |
| CVE-2019-11815 | 9.3 |
An issue was discovered in rds_tcp_kill_sock in net/rds/tcp.c in the Linux kernel before 5.0.8. There is a race condition leading to a use-after-free, related to net namespace cleanup.
|
21-07-2021 - 11:39 | 08-05-2019 - 14:29 | |
| CVE-2019-11190 | 4.7 |
The Linux kernel before 4.8 allows local users to bypass ASLR on setuid programs (such as /bin/su) because install_exec_creds() is called too late in load_elf_binary() in fs/binfmt_elf.c, and thus the ptrace_may_access() check has a race condition wh
|
07-06-2019 - 07:29 | 12-04-2019 - 00:29 |