Vulnerabilities > Linux

DATE CVE VULNERABILITY TITLE RISK
2022-07-12 CVE-2011-4916 Information Exposure vulnerability in Linux Kernel
Linux kernel through 3.1 allows local users to obtain sensitive keystroke information via access to /dev/pts/ and /dev/tty*.
local
low complexity
linux CWE-200
2.1
2022-07-06 CVE-2022-2318 Use After Free vulnerability in Linux Kernel
There are use-after-free vulnerabilities caused by timer handler in net/rose/rose_timer.c of linux that allow attackers to crash linux kernel without any privileges.
local
low complexity
linux CWE-416
4.9
2022-07-05 CVE-2022-26365 Information Exposure vulnerability in multiple products
Linux disk/nic frontends data leaks T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Linux Block and Network PV device frontends don't zero memory regions before sharing them with the backend (CVE-2022-26365, CVE-2022-33740).
local
low complexity
xen linux fedoraproject CWE-200
3.6
2022-07-05 CVE-2022-33740 Information Exposure vulnerability in multiple products
Linux disk/nic frontends data leaks T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Linux Block and Network PV device frontends don't zero memory regions before sharing them with the backend (CVE-2022-26365, CVE-2022-33740).
local
low complexity
xen linux fedoraproject CWE-200
3.6
2022-07-05 CVE-2022-33741 Information Exposure vulnerability in multiple products
Linux disk/nic frontends data leaks T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Linux Block and Network PV device frontends don't zero memory regions before sharing them with the backend (CVE-2022-26365, CVE-2022-33740).
local
low complexity
xen linux fedoraproject CWE-200
3.6
2022-07-05 CVE-2022-33742 Information Exposure vulnerability in multiple products
Linux disk/nic frontends data leaks T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Linux Block and Network PV device frontends don't zero memory regions before sharing them with the backend (CVE-2022-26365, CVE-2022-33740).
local
low complexity
xen linux fedoraproject CWE-200
3.6
2022-07-05 CVE-2022-33743 network backend may cause Linux netfront to use freed SKBs While adding logic to support XDP (eXpress Data Path), a code label was moved in a way allowing for SKBs having references (pointers) retained for further processing to nevertheless be freed.
local
low complexity
xen linux
4.6
2022-07-05 CVE-2022-33744 Unspecified vulnerability in Linux Kernel
Arm guests can cause Dom0 DoS via PV devices When mapping pages of guests on Arm, dom0 is using an rbtree to keep track of the foreign mappings.
local
linux
1.9
2022-07-04 CVE-2022-34918 Type Confusion vulnerability in Linux Kernel
An issue was discovered in the Linux kernel through 5.18.9.
local
low complexity
linux CWE-843
7.2
2022-06-30 CVE-2022-1852 NULL Pointer Dereference vulnerability in Linux Kernel
A NULL pointer dereference flaw was found in the Linux kernel’s KVM module, which can lead to a denial of service in the x86_emulate_insn in arch/x86/kvm/emulate.c.
local
low complexity
linux CWE-476
2.1