Vulnerabilities > Linux > Acrn > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-07-02 | CVE-2021-36143 | NULL Pointer Dereference vulnerability in Linux Acrn ACRN before 2.5 has a hw/pci/virtio/virtio.c vq_endchains NULL Pointer Dereference. | 5.0 |
| 2021-07-02 | CVE-2021-36144 | Use After Free vulnerability in Linux Acrn The polling timer handler in ACRN before 2.5 has a use-after-free for a freed virtio device, related to devicemodel/hw/pci/virtio/*.c. | 5.0 |
| 2021-07-02 | CVE-2021-36145 | Use After Free vulnerability in Linux Acrn The Device Model in ACRN through 2.5 has a devicemodel/core/mem.c use-after-free for a freed rb_entry. | 5.0 |
| 2021-07-02 | CVE-2021-36146 | NULL Pointer Dereference vulnerability in Linux Acrn ACRN before 2.5 has a devicemodel/hw/pci/xhci.c NULL Pointer Dereference for a trb pointer. | 5.0 |
| 2021-07-02 | CVE-2021-36147 | NULL Pointer Dereference vulnerability in Linux Acrn An issue was discovered in ACRN before 2.5. | 5.0 |
| 2021-07-02 | CVE-2021-36148 | Classic Buffer Overflow vulnerability in Linux Acrn An issue was discovered in ACRN before 2.5. | 6.8 |
| 2019-11-13 | CVE-2019-18844 | Reachable Assertion vulnerability in Linux Acrn The Device Model in ACRN before 2019w25.5-140000p relies on assert calls in devicemodel/hw/pci/core.c and devicemodel/include/pci_core.h (instead of other mechanisms for propagating error information or diagnostic information), which might allow attackers to cause a denial of service (assertion failure) within pci core. | 5.0 |