Vulnerabilities > Linux > Linux Kernel > 4.4.38

DATE CVE VULNERABILITY TITLE RISK
2019-08-19 CVE-2016-10906 Use After Free vulnerability in Linux Kernel
An issue was discovered in drivers/net/ethernet/arc/emac_main.c in the Linux kernel before 4.5.
local
high complexity
linux CWE-416
7.0
2019-08-19 CVE-2016-10905 Use After Free vulnerability in Linux Kernel
An issue was discovered in fs/gfs2/rgrp.c in the Linux kernel before 4.8.
local
low complexity
linux CWE-416
7.8
2019-08-16 CVE-2019-15118 Uncontrolled Recursion vulnerability in multiple products
check_input_term in sound/usb/mixer.c in the Linux kernel through 5.2.9 mishandles recursion, leading to kernel stack exhaustion.
local
low complexity
linux canonical debian opensuse netapp CWE-674
5.5
2019-08-16 CVE-2019-15117 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Linux Kernel
parse_audio_mixer_unit in sound/usb/mixer.c in the Linux kernel through 5.2.9 mishandles a short descriptor, leading to out-of-bounds memory access.
local
low complexity
linux CWE-119
7.8
2019-08-16 CVE-2019-15098 NULL Pointer Dereference vulnerability in multiple products
drivers/net/wireless/ath/ath6kl/usb.c in the Linux kernel through 5.2.9 has a NULL pointer dereference via an incomplete address in an endpoint descriptor.
4.6
2019-08-16 CVE-2019-15090 Out-of-bounds Read vulnerability in multiple products
An issue was discovered in drivers/scsi/qedi/qedi_dbg.c in the Linux kernel before 5.1.12.
local
low complexity
linux canonical opensuse CWE-125
6.7
2019-08-13 CVE-2017-18509 Improper Input Validation vulnerability in multiple products
An issue was discovered in net/ipv6/ip6mr.c in the Linux kernel before 4.11.
local
low complexity
linux debian canonical CWE-20
7.8
2019-08-07 CVE-2019-14763 Improper Locking vulnerability in multiple products
In the Linux kernel before 4.16.4, a double-locking error in drivers/usb/dwc3/gadget.c may potentially cause a deadlock with f_hid.
local
low complexity
linux canonical CWE-667
5.5
2019-08-07 CVE-2018-20961 Double Free vulnerability in Linux Kernel
In the Linux kernel before 4.16.4, a double free vulnerability in the f_midi_set_alt function of drivers/usb/gadget/function/f_midi.c in the f_midi driver may allow attackers to cause a denial of service or possibly have unspecified other impact.
network
low complexity
linux CWE-415
critical
9.8
2019-07-30 CVE-2018-16871 A flaw was found in the Linux kernel's NFS implementation, all versions 3.x and all versions 4.x up to 4.20.
network
low complexity
linux redhat netapp
7.5