Vulnerabilities > Linux > Linux Kernel > 4.14.109

DATE CVE VULNERABILITY TITLE RISK
2023-05-08 CVE-2023-32233 Use After Free vulnerability in multiple products
In the Linux kernel through 6.3.1, a use-after-free in Netfilter nf_tables when processing batch requests can be abused to perform arbitrary read and write operations on kernel memory.
local
low complexity
linux redhat netapp CWE-416
7.8
2023-05-05 CVE-2023-32269 Use After Free vulnerability in Linux Kernel
An issue was discovered in the Linux kernel before 6.1.11.
local
low complexity
linux CWE-416
6.7
2023-04-28 CVE-2023-31436 Out-of-bounds Write vulnerability in Linux Kernel
qfq_change_class in net/sched/sch_qfq.c in the Linux kernel before 6.2.13 allows an out-of-bounds write because lmax can exceed QFQ_MIN_LMAX.
local
low complexity
linux CWE-787
7.8
2023-04-26 CVE-2023-0458 NULL Pointer Dereference vulnerability in multiple products
A speculative pointer dereference problem exists in the Linux Kernel on the do_prlimit() function.
local
high complexity
linux debian CWE-476
4.7
2023-04-25 CVE-2023-0045 Externally Controlled Reference to a Resource in Another Sphere vulnerability in multiple products
The current implementation of the prctl syscall does not issue an IBPB immediately during the syscall.
network
low complexity
linux debian netapp CWE-610
7.5
2023-04-24 CVE-2023-2007 Improper Locking vulnerability in multiple products
The specific flaw exists within the DPT I2O Controller driver.
local
low complexity
linux debian netapp CWE-667
7.8
2023-04-24 CVE-2023-2019 A flaw was found in the Linux kernel's netdevsim device driver, within the scheduling of events.
local
low complexity
linux redhat
4.4
2023-04-21 CVE-2023-1998 Information Exposure Through Discrepancy vulnerability in multiple products
The Linux kernel allows userspace processes to enable mitigations by calling prctl with PR_SET_SPECULATION_CTRL which disables the speculation feature as well as by using seccomp.
local
high complexity
linux debian CWE-203
5.6
2023-04-20 CVE-2023-2177 NULL Pointer Dereference vulnerability in Linux Kernel
A null pointer dereference issue was found in the sctp network protocol in net/sctp/stream_sched.c in Linux Kernel.
local
low complexity
linux CWE-476
5.5
2023-04-20 CVE-2023-2194 Out-of-bounds Write vulnerability in multiple products
An out-of-bounds write vulnerability was found in the Linux kernel's SLIMpro I2C device driver.
local
low complexity
linux fedoraproject redhat CWE-787
6.7