4.14.299

DATE	CVE	VULNERABILITY TITLE	RISK
2022-08-29	CVE-2022-0850	Unspecified vulnerability in Linux Kernel A vulnerability was found in linux kernel, where an information leak occurs via ext4_extent_header to userspace. local low complexity linux	7.1
2022-08-29	CVE-2022-1016	Missing Initialization of Resource vulnerability in multiple products A flaw was found in the Linux kernel in net/netfilter/nf_tables_core.c:nft_do_chain, which can cause a use-after-free. local low complexity linux redhat CWE-909	5.5
2022-08-29	CVE-2022-1199	Use After Free vulnerability in multiple products A flaw was found in the Linux kernel. network low complexity linux redhat netapp CWE-416	7.5
2022-08-29	CVE-2022-2961	Race Condition vulnerability in multiple products A use-after-free flaw was found in the Linux kernel’s PLP Rose functionality in the way a user triggers a race condition by calling bind while simultaneously triggering the rose_bind() function. local high complexity linux fedoraproject netapp CWE-362	7.0
2022-08-26	CVE-2022-0171	Improper Cross-boundary Removal of Sensitive Data vulnerability in multiple products A flaw was found in the Linux kernel. local low complexity linux redhat debian CWE-212	5.5
2022-08-24	CVE-2021-4204	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products An out-of-bounds (OOB) memory access flaw was found in the Linux kernel's eBPF due to an Improper Input Validation. local low complexity linux debian redhat netapp CWE-119	7.1
2022-08-22	CVE-2021-3659	NULL Pointer Dereference vulnerability in multiple products A NULL pointer dereference flaw was found in the Linux kernel’s IEEE 802.15.4 wireless networking subsystem in the way the user closes the LR-WPAN connection. local low complexity linux fedoraproject redhat CWE-476	5.5
2022-08-22	CVE-2022-2873	Incorrect Calculation of Buffer Size vulnerability in multiple products An out-of-bounds memory access flaw was found in the Linux kernel Intel’s iSMT SMBus host controller driver in the way a user triggers the I2C_SMBUS_BLOCK_DATA (with the ioctl I2C_SMBUS) with malicious input data. local low complexity linux fedoraproject redhat netapp debian CWE-131	5.5
2022-07-04	CVE-2022-34918	Type Confusion vulnerability in multiple products An issue was discovered in the Linux kernel through 5.18.9. local low complexity linux debian canonical netapp CWE-843	7.8
2022-06-05	CVE-2022-32296	Use of Insufficiently Random Values vulnerability in Linux Kernel The Linux kernel before 5.17.9 allows TCP servers to identify clients by observing what source ports are used. local low complexity linux CWE-330	3.3