4.9.335

DATE	CVE	VULNERABILITY TITLE	RISK
2022-05-16	CVE-2022-1679	Use After Free vulnerability in multiple products A use-after-free flaw was found in the Linux kernel’s Atheros wireless adapter driver in the way a user forces the ath9k_htc_wait_for_target function to fail with some input messages. local low complexity linux debian netapp CWE-416	7.8
2022-05-12	CVE-2022-30594	Missing Authorization vulnerability in multiple products The Linux kernel before 5.17.2 mishandles seccomp permissions. local low complexity linux debian netapp CWE-862	7.8
2022-04-29	CVE-2022-1048	Use After Free vulnerability in multiple products A use-after-free flaw was found in the Linux kernel’s sound subsystem in the way a user triggers concurrent calls of PCM hw_params. local high complexity linux redhat debian netapp CWE-416	7.0
2022-04-29	CVE-2022-1195	Use After Free vulnerability in multiple products A use-after-free vulnerability was found in the Linux kernel in drivers/net/hamradio. local low complexity linux debian CWE-416	5.5
2022-04-22	CVE-2022-29582	Race Condition vulnerability in multiple products In the Linux kernel before 5.17.3, fs/io_uring.c has a use-after-free due to a race condition in io_uring timeouts. local high complexity linux debian CWE-362	7.0
2022-03-25	CVE-2021-4203	Race Condition vulnerability in multiple products A use-after-free read flaw was found in sock_getsockopt() in net/core/sock.c due to SO_PEERCRED and SO_PEERGROUPS race with listen() (and connect()) in the Linux kernel. network high complexity linux netapp oracle CWE-362	6.8
2022-03-25	CVE-2022-0494	Use of Uninitialized Resource vulnerability in multiple products A kernel information leak flaw was identified in the scsi_ioctl function in drivers/scsi/scsi_ioctl.c in the Linux kernel. local low complexity linux debian CWE-908	4.4
2022-03-23	CVE-2021-4197	Improper Authentication vulnerability in multiple products An unprivileged write to the file handler flaw in the Linux kernel's control groups and namespaces subsystem was found in the way users have access to some less privileged process that are controlled by cgroups and have higher privileged parent process. local low complexity linux debian oracle broadcom netapp CWE-287	7.8
2022-03-11	CVE-2022-26878	Memory Leak vulnerability in Linux Kernel drivers/bluetooth/virtio_bt.c in the Linux kernel before 5.16.3 has a memory leak (socket buffers have memory allocated but not freed). local low complexity linux CWE-401	5.5
2022-03-10	CVE-2021-4095	NULL Pointer Dereference vulnerability in multiple products A NULL pointer dereference was found in the Linux kernel's KVM when dirty ring logging is enabled without an active vCPU context. local low complexity linux fedoraproject CWE-476	5.5