Max CVSS | 7.9 | Min CVSS | 1.9 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2019-12382 | 4.9 |
An issue was discovered in drm_load_edid_firmware in drivers/gpu/drm/drm_edid_load.c in the Linux kernel through 5.1.5. There is an unchecked kstrdup of fwstr, which might allow an attacker to cause a denial of service (NULL pointer dereference and s
|
05-08-2024 - 00:15 | 28-05-2019 - 03:29 | |
CVE-2018-20169 | 7.2 |
An issue was discovered in the Linux kernel before 4.19.9. The USB subsystem mishandles size checks during the reading of an extra descriptor, related to __usb_get_extra_descriptor in drivers/usb/core/usb.c.
|
04-03-2024 - 22:59 | 17-12-2018 - 07:29 | |
CVE-2019-14815 | 7.2 |
A vulnerability was found in Linux Kernel, where a Heap Overflow was found in mwifiex_set_wmm_params() function of Marvell Wifi Driver.
|
13-07-2023 - 13:33 | 25-11-2019 - 11:15 | |
CVE-2019-11884 | 2.1 |
The do_hidp_sock_ioctl function in net/bluetooth/hidp/sock.c in the Linux kernel before 5.0.15 allows a local user to obtain potentially sensitive information from kernel stack memory via a HIDPCONNADD command, because a name field may not end with a
|
03-03-2023 - 20:53 | 10-05-2019 - 22:29 | |
CVE-2019-15221 | 4.9 |
An issue was discovered in the Linux kernel before 5.1.17. There is a NULL pointer dereference caused by a malicious USB device in the sound/usb/line6/pcm.c driver.
|
03-03-2023 - 15:00 | 19-08-2019 - 22:15 | |
CVE-2019-3901 | 1.9 |
A race condition in perf_event_open() allows local attackers to leak sensitive data from setuid programs. As no relevant locks (in particular the cred_guard_mutex) are held during the ptrace_may_access() call, it is possible for the specified target
|
12-02-2023 - 23:38 | 22-04-2019 - 16:29 | |
CVE-2019-10207 | 2.1 |
A flaw was found in the Linux kernel's Bluetooth implementation of UART, all versions kernel 3.x.x before 4.18.0 and kernel 5.x.x. An attacker with local access and write permissions to the Bluetooth hardware could use this flaw to issue a specially
|
12-02-2023 - 23:33 | 25-11-2019 - 14:15 | |
CVE-2019-15916 | 7.8 |
An issue was discovered in the Linux kernel before 5.0.1. There is a memory leak in register_queue_kobjects() in net/core/net-sysfs.c, which will cause denial of service.
|
17-01-2023 - 21:34 | 04-09-2019 - 15:15 | |
CVE-2019-16746 | 7.5 |
An issue was discovered in net/wireless/nl80211.c in the Linux kernel through 5.2.17. It does not check the length of variable elements in a beacon head, leading to a buffer overflow.
|
03-11-2022 - 02:39 | 24-09-2019 - 06:15 | |
CVE-2019-9503 | 7.9 |
The Broadcom brcmfmac WiFi driver prior to commit a4176ec356c73a46c07c181c6d04039fafa34a9f is vulnerable to a frame validation bypass. If the brcmfmac driver receives a firmware event frame from a remote source, the is_wlc_event_frame function will c
|
18-04-2022 - 18:09 | 16-01-2020 - 21:15 | |
CVE-2019-10639 | 5.0 |
The Linux kernel 4.x (starting from 4.1) and 5.x before 5.0.8 allows Information Exposure (partial kernel address disclosure), leading to a KASLR bypass. Specifically, it is possible to extract the KASLR kernel image offset using the IP ID values the
|
14-06-2021 - 18:15 | 05-07-2019 - 23:15 | |
CVE-2019-10638 | 4.3 |
In the Linux kernel before 5.1.7, a device can be tracked by an attacker using the IP ID values the kernel produces for connection-less protocols (e.g., UDP and ICMP). When such traffic is sent to multiple destination IP addresses, it is possible to
|
14-06-2021 - 18:15 | 05-07-2019 - 23:15 | |
CVE-2015-9289 | 4.9 |
In the Linux kernel before 4.1.4, a buffer overflow occurs when checking userspace params in drivers/media/dvb-frontends/cx24116.c. The maximum size for a DiSEqC command is 6, according to the userspace API. However, the code allows larger values suc
|
11-12-2019 - 19:29 | 27-07-2019 - 22:15 | |
CVE-2017-17807 | 2.1 |
The KEYS subsystem in the Linux kernel before 4.14.6 omitted an access-control check when adding a key to the current task's "default request-key keyring" via the request_key() system call, allowing a local user to use a sequence of crafted system ca
|
03-10-2019 - 00:03 | 20-12-2017 - 23:29 | |
CVE-2018-19985 | 2.1 |
The function hso_get_config_data in drivers/net/usb/hso.c in the Linux kernel through 4.19.8 reads if_num from the USB device (as a u8) and uses it to index a small array, resulting in an object out-of-bounds (OOB) read that potentially allows arbitr
|
03-09-2019 - 00:15 | 21-03-2019 - 16:00 | |
CVE-2019-14283 | 4.6 |
In the Linux kernel before 5.2.3, set_geometry in drivers/block/floppy.c does not validate the sect and head fields, as demonstrated by an integer overflow and out-of-bounds read. It can be triggered by an unprivileged local user when a floppy disk h
|
11-08-2019 - 23:15 | 26-07-2019 - 13:15 | |
CVE-2019-13233 | 4.4 |
In arch/x86/lib/insn-eval.c in the Linux kernel before 5.1.9, there is a use-after-free for access to an LDT entry because of a race condition between modify_ldt() and a #BR exception for an MPX bounds violation.
|
20-07-2019 - 12:15 | 04-07-2019 - 13:15 | |
CVE-2019-11190 | 4.7 |
The Linux kernel before 4.8 allows local users to bypass ASLR on setuid programs (such as /bin/su) because install_exec_creds() is called too late in load_elf_binary() in fs/binfmt_elf.c, and thus the ptrace_may_access() check has a race condition wh
|
07-06-2019 - 07:29 | 12-04-2019 - 00:29 | |
CVE-2018-7191 | 4.9 |
In the tun subsystem in the Linux kernel before 4.13.14, dev_get_valid_name is not called before register_netdevice. This allows local users to cause a denial of service (NULL pointer dereference and panic) via an ioctl(TUNSETIFF) call with a dev nam
|
31-05-2019 - 12:29 | 17-05-2019 - 05:29 |