Vulnerabilities > Linux > Acrn

DATE CVE VULNERABILITY TITLE RISK
2021-07-02 CVE-2021-36143 NULL Pointer Dereference vulnerability in Linux Acrn
ACRN before 2.5 has a hw/pci/virtio/virtio.c vq_endchains NULL Pointer Dereference.
network
low complexity
linux CWE-476
5.0
2021-07-02 CVE-2021-36144 Use After Free vulnerability in Linux Acrn
The polling timer handler in ACRN before 2.5 has a use-after-free for a freed virtio device, related to devicemodel/hw/pci/virtio/*.c.
network
low complexity
linux CWE-416
5.0
2021-07-02 CVE-2021-36145 Use After Free vulnerability in Linux Acrn
The Device Model in ACRN through 2.5 has a devicemodel/core/mem.c use-after-free for a freed rb_entry.
network
low complexity
linux CWE-416
5.0
2021-07-02 CVE-2021-36146 NULL Pointer Dereference vulnerability in Linux Acrn
ACRN before 2.5 has a devicemodel/hw/pci/xhci.c NULL Pointer Dereference for a trb pointer.
network
low complexity
linux CWE-476
5.0
2021-07-02 CVE-2021-36147 NULL Pointer Dereference vulnerability in Linux Acrn
An issue was discovered in ACRN before 2.5.
network
low complexity
linux CWE-476
5.0
2021-07-02 CVE-2021-36148 Classic Buffer Overflow vulnerability in Linux Acrn
An issue was discovered in ACRN before 2.5.
network
linux CWE-120
6.8
2019-11-13 CVE-2019-18844 Reachable Assertion vulnerability in Linux Acrn
The Device Model in ACRN before 2019w25.5-140000p relies on assert calls in devicemodel/hw/pci/core.c and devicemodel/include/pci_core.h (instead of other mechanisms for propagating error information or diagnostic information), which might allow attackers to cause a denial of service (assertion failure) within pci core.
network
low complexity
linux CWE-617
5.0