Vulnerabilities > Linux > Linux Kernel > 4.14.141

DATE CVE VULNERABILITY TITLE RISK
2019-11-22 CVE-2019-19227 NULL Pointer Dereference vulnerability in Linux Kernel
In the AppleTalk subsystem in the Linux kernel before 5.1, there is a potential NULL pointer dereference because register_snap_client may return NULL.
local
low complexity
linux CWE-476
2.1
2019-11-21 CVE-2019-19037 NULL Pointer Dereference vulnerability in Linux Kernel
ext4_empty_dir in fs/ext4/namei.c in the Linux kernel through 5.3.12 allows a NULL pointer dereference because ext4_read_dirblock(inode,0,DIRENT_HTREE) can be zero.
network
linux CWE-476
4.3
2019-11-21 CVE-2019-19039 Information Exposure Through Log Files vulnerability in multiple products
__btrfs_free_extent in fs/btrfs/extent-tree.c in the Linux kernel through 5.3.12 calls btrfs_print_leaf in a certain ENOENT case, which allows local users to obtain potentially sensitive information about register values via the dmesg program.
local
low complexity
linux debian canonical CWE-532
5.5
2019-11-21 CVE-2019-19036 NULL Pointer Dereference vulnerability in Linux Kernel
btrfs_root_node in fs/btrfs/ctree.c in the Linux kernel through 5.3.12 allows a NULL pointer dereference because rcu_dereference(root->node) can be zero.
network
linux CWE-476
4.3
2019-11-18 CVE-2019-19083 Memory Leak vulnerability in multiple products
Memory leaks in *clock_source_create() functions under drivers/gpu/drm/amd/display/dc in the Linux kernel before 5.3.8 allow attackers to cause a denial of service (memory consumption).
4.7
2019-11-18 CVE-2019-19082 Memory Leak vulnerability in multiple products
Memory leaks in *create_resource_pool() functions under drivers/gpu/drm/amd/display/dc in the Linux kernel through 5.3.11 allow attackers to cause a denial of service (memory consumption).
4.7
2019-11-18 CVE-2019-19081 Memory Leak vulnerability in multiple products
A memory leak in the nfp_flower_spawn_vnic_reprs() function in drivers/net/ethernet/netronome/nfp/flower/main.c in the Linux kernel before 5.3.4 allows attackers to cause a denial of service (memory consumption), aka CID-8ce39eb5a67a.
7.1
2019-11-18 CVE-2019-19080 Memory Leak vulnerability in multiple products
Four memory leaks in the nfp_flower_spawn_phy_reprs() function in drivers/net/ethernet/netronome/nfp/flower/main.c in the Linux kernel before 5.3.4 allow attackers to cause a denial of service (memory consumption), aka CID-8572cea1461a.
7.1
2019-11-18 CVE-2019-19078 Memory Leak vulnerability in multiple products
A memory leak in the ath10k_usb_hif_tx_sg() function in drivers/net/wireless/ath/ath10k/usb.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service (memory consumption) by triggering usb_submit_urb() failures, aka CID-b8d17e7d93d2.
network
low complexity
linux canonical CWE-401
7.5
2019-11-18 CVE-2019-19077 Memory Leak vulnerability in multiple products
A memory leak in the bnxt_re_create_srq() function in drivers/infiniband/hw/bnxt_re/ib_verbs.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service (memory consumption) by triggering copy to udata failures, aka CID-4a9d46a9fe14.
local
low complexity
linux canonical opensuse CWE-401
4.9