Vulnerabilities > Linux > Linux Kernel > 4.4.271

DATE CVE VULNERABILITY TITLE RISK
2022-02-16 CVE-2021-3760 Use After Free vulnerability in multiple products
A flaw was found in the Linux kernel.
local
low complexity
linux fedoraproject debian netapp CWE-416
7.8
2022-02-16 CVE-2021-3773 A flaw in netfilter could allow a network-connected attacker to infer openvpn connection endpoint information for further use in traditional network attacks.
network
low complexity
linux fedoraproject redhat oracle
critical
9.8
2022-02-16 CVE-2022-0617 NULL Pointer Dereference vulnerability in multiple products
A flaw null pointer dereference in the Linux kernel UDF file system functionality was found in the way user triggers udf_file_write_iter function for the malicious UDF image.
local
low complexity
linux debian CWE-476
5.5
2022-02-14 CVE-2021-44879 NULL Pointer Dereference vulnerability in Linux Kernel
In gc_data_segment in fs/f2fs/gc.c in the Linux kernel before 5.16.3, special files are not considered, leading to a move_data_page NULL pointer dereference.
local
low complexity
linux CWE-476
5.5
2022-02-11 CVE-2022-0382 Missing Initialization of Resource vulnerability in Linux Kernel
An information leak flaw was found due to uninitialized memory in the Linux kernel's TIPC protocol subsystem, in the way a user sends a TIPC datagram to one or more destinations.
local
low complexity
linux CWE-909
5.5
2022-02-11 CVE-2022-24958 Release of Invalid Pointer or Reference vulnerability in multiple products
drivers/usb/gadget/legacy/inode.c in the Linux kernel through 5.16.8 mishandles dev->buf release.
local
low complexity
linux fedoraproject netapp debian CWE-763
7.8
2022-02-04 CVE-2022-0264 Improper Handling of Exceptional Conditions vulnerability in Linux Kernel
A vulnerability was found in the Linux kernel's eBPF verifier when handling internal data structures.
local
low complexity
linux CWE-755
5.5
2022-02-04 CVE-2022-24448 Use of Uninitialized Resource vulnerability in multiple products
An issue was discovered in fs/nfs/dir.c in the Linux kernel before 5.16.5.
local
low complexity
linux debian CWE-908
3.3
2022-01-21 CVE-2021-4001 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Linux Kernel
A race condition was found in the Linux kernel's ebpf verifier between bpf_map_update_elem and bpf_map_freeze due to a missing lock in kernel/bpf/syscall.c.
local
high complexity
linux CWE-367
4.1
2022-01-06 CVE-2021-28714 Allocation of Resources Without Limits or Throttling vulnerability in multiple products
Guest can force Linux netback driver to hog large amounts of kernel memory T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Incoming data packets for a guest in the Linux kernel's netback driver are buffered until the guest is ready to process them.
local
low complexity
linux debian CWE-770
6.5