Vulnerabilities > Linux

DATE CVE VULNERABILITY TITLE RISK
2021-10-11 CVE-2021-42252 Unspecified vulnerability in Linux Kernel
An issue was discovered in aspeed_lpc_ctrl_mmap in drivers/soc/aspeed/aspeed-lpc-ctrl.c in the Linux kernel before 5.14.6.
local
low complexity
linux
4.6
2021-10-05 CVE-2021-42008 Out-of-bounds Write vulnerability in Linux Kernel
The decode_data function in drivers/net/hamradio/6pack.c in the Linux kernel before 5.13.13 has a slab out-of-bounds write.
local
linux CWE-787
6.9
2021-10-02 CVE-2021-41864 Integer Overflow or Wraparound vulnerability in Linux Kernel
prealloc_elems_and_freelist in kernel/bpf/stackmap.c in the Linux kernel through 5.14.9 allows unprivileged users to trigger an eBPF multiplication integer overflow with a resultant out-of-bounds write.
local
low complexity
linux CWE-190
4.6
2021-09-29 CVE-2021-3653 Missing Authorization vulnerability in multiple products
A flaw was found in the KVM's AMD code for supporting SVM nested virtualization.
local
low complexity
linux redhat CWE-862
6.1
2021-09-27 CVE-2021-20317 Improper Initialization vulnerability in Linux Kernel
A flaw was found in the Linux kernel.
local
low complexity
linux CWE-665
4.9
2021-09-20 CVE-2021-38300 Unspecified vulnerability in Linux Kernel
arch/mips/net/bpf_jit.c in the Linux kernel before 5.4.10 can generate undesirable machine code when transforming unprivileged cBPF programs, allowing execution of arbitrary code within the kernel context.
local
low complexity
linux
7.2
2021-09-19 CVE-2021-41073 Improper Privilege Management vulnerability in multiple products
loop_rw_iter in fs/io_uring.c in the Linux kernel 5.10 through 5.14.6 allows local users to gain privileges by using IORING_OP_PROVIDE_BUFFERS to trigger a free of a kernel buffer, as demonstrated by using /proc/<pid>/maps for exploitation.
local
low complexity
linux debian CWE-269
7.2
2021-09-03 CVE-2021-40490 Race Condition vulnerability in multiple products
A race condition was discovered in ext4_write_inline_data_end in fs/ext4/inline.c in the ext4 subsystem in the Linux kernel through 5.13.13.
4.4
2021-08-18 CVE-2021-21781 Use of Uninitialized Resource vulnerability in Linux Kernel 5.4.54/5.4.66
An information disclosure vulnerability exists in the ARM SIGPAGE functionality of Linux Kernel v5.4.66 and v5.4.54.
local
low complexity
linux CWE-908
2.1
2021-08-13 CVE-2021-3573 Use After Free vulnerability in multiple products
A use-after-free in function hci_sock_bound_ioctl() of the Linux kernel HCI subsystem was found in the way user calls ioct HCIUNBLOCKADDR or other way triggers race condition of the call hci_unregister_dev() together with one of the calls hci_sock_blacklist_add(), hci_sock_blacklist_del(), hci_get_conn_info(), hci_get_auth_info().
6.9