Vulnerabilities > Linux > Linux Kernel > 2.6.20.21

DATE CVE VULNERABILITY TITLE RISK
2020-08-19 CVE-2020-24394 Incorrect Permission Assignment for Critical Resource vulnerability in multiple products
In the Linux kernel before 5.7.8, fs/nfsd/vfs.c (in the NFS server) can set incorrect permissions on new filesystem objects when the filesystem lacks ACL support, aka CID-22cf8419f131.
7.1
2020-07-30 CVE-2020-16166 Use of Insufficiently Random Values vulnerability in multiple products
The Linux kernel through 5.7.11 allows remote attackers to make observations that help to obtain sensitive information about the internal state of the network RNG, aka CID-f227e3ec3b5c.
3.7
2020-07-15 CVE-2020-15780 Missing Authorization vulnerability in multiple products
An issue was discovered in drivers/acpi/acpi_configfs.c in the Linux kernel before 5.7.7.
local
low complexity
linux opensuse canonical CWE-862
7.2
2020-07-15 CVE-2019-20908 Improper Privilege Management vulnerability in multiple products
An issue was discovered in drivers/firmware/efi/efi.c in the Linux kernel before 5.4.
6.9
2020-07-13 CVE-2019-19338 Information Exposure Through Discrepancy vulnerability in multiple products
A flaw was found in the fix for CVE-2019-11135, in the Linux upstream kernel versions before 5.5 where, the way Intel CPUs handle speculative execution of instructions when a TSX Asynchronous Abort (TAA) error occurs.
2.1
2020-06-18 CVE-2020-14416 Use After Free vulnerability in multiple products
In the Linux kernel before 5.4.16, a race condition in tty->disc_data handling in the slip and slcan line discipline could lead to a use-after-free, aka CID-0ace17d56824.
4.7
2020-06-12 CVE-2020-10732 Use of Uninitialized Resource vulnerability in multiple products
A flaw was found in the Linux kernel's implementation of Userspace core dumps.
local
low complexity
linux opensuse canonical netapp CWE-908
4.4
2020-06-09 CVE-2020-13974 Integer Overflow or Wraparound vulnerability in multiple products
An issue was discovered in the Linux kernel 4.4 through 5.7.1.
local
low complexity
linux debian canonical CWE-190
7.8
2020-06-03 CVE-2019-20812 Resource Exhaustion vulnerability in Linux Kernel
An issue was discovered in the Linux kernel before 5.4.7.
local
low complexity
linux CWE-400
4.9
2020-06-03 CVE-2019-20811 An issue was discovered in the Linux kernel before 5.0.6.
local
low complexity
linux debian canonical
5.5