Vulnerabilities > Linux > Linux Kernel > 4.14.271
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2022-02-16 | CVE-2022-25258 | NULL Pointer Dereference vulnerability in multiple products An issue was discovered in drivers/usb/gadget/composite.c in the Linux kernel before 5.16.10. | 4.6 |
2022-02-16 | CVE-2021-3753 | Out-of-bounds Read vulnerability in multiple products A race problem was seen in the vt_k_ioctl in drivers/tty/vt/vt_ioctl.c in the Linux kernel, which may cause an out of bounds read in vt as the write access to vc_mode is not protected by lock-in vt_ioctl (KDSETMDE). | 4.7 |
2022-02-16 | CVE-2021-3773 | A flaw in netfilter could allow a network-connected attacker to infer openvpn connection endpoint information for further use in traditional network attacks. | 9.8 |
2022-02-16 | CVE-2022-0617 | NULL Pointer Dereference vulnerability in multiple products A flaw null pointer dereference in the Linux kernel UDF file system functionality was found in the way user triggers udf_file_write_iter function for the malicious UDF image. | 5.5 |
2022-02-14 | CVE-2021-44879 | NULL Pointer Dereference vulnerability in Linux Kernel In gc_data_segment in fs/f2fs/gc.c in the Linux kernel before 5.16.3, special files are not considered, leading to a move_data_page NULL pointer dereference. | 5.5 |
2022-02-11 | CVE-2022-0382 | Missing Initialization of Resource vulnerability in Linux Kernel An information leak flaw was found due to uninitialized memory in the Linux kernel's TIPC protocol subsystem, in the way a user sends a TIPC datagram to one or more destinations. | 5.5 |
2022-02-11 | CVE-2022-24958 | Release of Invalid Pointer or Reference vulnerability in multiple products drivers/usb/gadget/legacy/inode.c in the Linux kernel through 5.16.8 mishandles dev->buf release. | 7.8 |
2022-02-04 | CVE-2022-0264 | Improper Handling of Exceptional Conditions vulnerability in Linux Kernel A vulnerability was found in the Linux kernel's eBPF verifier when handling internal data structures. | 5.5 |
2022-02-04 | CVE-2022-24448 | Use of Uninitialized Resource vulnerability in multiple products An issue was discovered in fs/nfs/dir.c in the Linux kernel before 5.16.5. | 3.3 |
2022-01-21 | CVE-2021-4001 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Linux Kernel A race condition was found in the Linux kernel's ebpf verifier between bpf_map_update_elem and bpf_map_freeze due to a missing lock in kernel/bpf/syscall.c. | 4.1 |