3.9.1

DATE	CVE	VULNERABILITY TITLE	RISK
2019-12-03	CVE-2019-19525	Use After Free vulnerability in multiple products In the Linux kernel before 5.3.6, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/net/ieee802154/atusb.c driver, aka CID-7fd25e6fc035. low complexity linux debian opensuse CWE-416	4.6
2019-12-03	CVE-2019-19524	Use After Free vulnerability in multiple products In the Linux kernel before 5.3.12, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/input/ff-memless.c driver, aka CID-fa3a5a1880c9. low complexity linux debian canonical CWE-416	4.6
2019-12-03	CVE-2019-19523	Use After Free vulnerability in multiple products In the Linux kernel before 5.3.7, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/usb/misc/adutux.c driver, aka CID-44efc269db79. low complexity linux debian opensuse CWE-416	4.6
2019-11-30	CVE-2019-19462	NULL Pointer Dereference vulnerability in multiple products relay_open in kernel/relay.c in the Linux kernel through 5.4.1 allows local users to cause a denial of service (such as relay blockage) by triggering a NULL alloc_percpu result. local low complexity linux netapp canonical opensuse debian CWE-476	5.5
2019-11-29	CVE-2019-19377	Use After Free vulnerability in multiple products In the Linux kernel 5.0.21, mounting a crafted btrfs filesystem image, performing some operations, and unmounting can lead to a use-after-free in btrfs_queue_work in fs/btrfs/async-thread.c. local low complexity linux netapp CWE-416	7.8
2019-11-29	CVE-2019-14897	Stack-based Buffer Overflow vulnerability in multiple products A stack-based buffer overflow was found in the Linux kernel, version kernel-2.6.32, in Marvell WiFi chip driver. network low complexity linux debian canonical CWE-121 critical	9.8
2019-11-29	CVE-2019-14895	Heap-based Buffer Overflow vulnerability in multiple products A heap-based buffer overflow was discovered in the Linux kernel, all versions 3.x.x and 4.x.x before 4.18.0, in Marvell WiFi chip driver. network low complexity linux debian canonical fedoraproject opensuse CWE-122 critical	9.8
2019-11-27	CVE-2019-18660	Information Exposure vulnerability in multiple products The Linux kernel before 5.4.1 on powerpc allows Information Exposure because the Spectre-RSB mitigation is not in place for all applicable CPUs, aka CID-39e72bf96f58. local high complexity linux redhat canonical fedoraproject opensuse CWE-200	4.7
2019-11-27	CVE-2019-10220	Path Traversal vulnerability in multiple products Linux kernel CIFS implementation, version 4.9.0 is vulnerable to a relative paths injection in directory entry lists. network low complexity linux debian canonical CWE-22	8.8
2019-11-27	CVE-2019-14896	Heap-based Buffer Overflow vulnerability in multiple products A heap-based buffer overflow vulnerability was found in the Linux kernel, version kernel-2.6.32, in Marvell WiFi chip driver. network low complexity linux redhat fedoraproject canonical debian CWE-122 critical	9.8