Vulnerabilities > Linux > Linux Kernel

DATE CVE VULNERABILITY TITLE RISK
2022-06-18 CVE-2022-33981 Use After Free vulnerability in Linux Kernel
drivers/block/floppy.c in the Linux kernel before 5.17.6 is vulnerable to a denial of service, because of a concurrency use-after-free flaw after deallocating raw_cmd in the raw_cmd_ioctl function.
local
low complexity
linux CWE-416
2.1
2022-06-10 CVE-2022-32981 Classic Buffer Overflow vulnerability in Linux Kernel 5.19
An issue was discovered in the Linux kernel through 5.18.3 on powerpc 32-bit platforms.
local
low complexity
linux CWE-120
4.6
2022-06-09 CVE-2022-1998 Use After Free vulnerability in multiple products
A use after free in the Linux kernel File System notify functionality was found in the way user triggers copy_info_records_to_user() call to fail in copy_event_to_user().
local
low complexity
linux fedoraproject redhat CWE-416
7.2
2022-06-06 CVE-2022-1966 Use After Free vulnerability in multiple products
A use-after-free vulnerability was found in the Linux kernel's Netfilter subsystem in net/netfilter/nf_tables_api.c.
local
low complexity
linux redhat fedoraproject debian CWE-416
7.2
2022-06-05 CVE-2022-32296 Information Exposure Through Discrepancy vulnerability in Linux Kernel
The Linux kernel before 5.17.9 allows TCP servers to identify clients by observing what source ports are used.
local
low complexity
linux CWE-203
2.1
2022-06-02 CVE-2022-32250 Use After Free vulnerability in Linux Kernel
net/netfilter/nf_tables_api.c in the Linux kernel through 5.18.1 allows a local user (able to create user/net namespaces) to escalate privileges to root because an incorrect NFT_STATEFUL_EXPR check leads to a use-after-free.
local
low complexity
linux CWE-416
7.2
2022-06-02 CVE-2022-1419 Use After Free vulnerability in Linux Kernel
The root cause of this vulnerability is that the ioctl$DRM_IOCTL_MODE_DESTROY_DUMB can decrease refcount of *drm_vgem_gem_object *(created in *vgem_gem_dumb_create*) concurrently, and *vgem_gem_dumb_create *will access the freed drm_vgem_gem_object.
local
low complexity
linux CWE-416
4.6
2022-06-02 CVE-2022-1462 Race Condition vulnerability in multiple products
An out-of-bounds read flaw was found in the Linux kernel’s TeleTYpe subsystem.
3.3
2022-06-02 CVE-2022-1652 Use After Free vulnerability in multiple products
Linux Kernel could allow a local attacker to execute arbitrary code on the system, caused by a concurrency use-after-free flaw in the bad_flp_intr function.
local
low complexity
linux redhat CWE-416
7.2
2022-06-02 CVE-2022-1786 Type Confusion vulnerability in Linux Kernel
A use-after-free flaw was found in the Linux kernel’s io_uring subsystem in the way a user sets up a ring with IORING_SETUP_IOPOLL with more than one task completing submissions on this ring.
local
low complexity
linux CWE-843
7.2