Vulnerabilities > Linux > Linux Kernel > 5.1

DATE CVE VULNERABILITY TITLE RISK
2022-02-11 CVE-2022-24958 Release of Invalid Pointer or Reference vulnerability in multiple products
drivers/usb/gadget/legacy/inode.c in the Linux kernel through 5.16.8 mishandles dev->buf release.
local
low complexity
linux fedoraproject netapp debian CWE-763
7.8
2022-02-11 CVE-2022-24959 Memory Leak vulnerability in multiple products
An issue was discovered in the Linux kernel before 5.16.5.
local
low complexity
linux debian CWE-401
2.1
2022-02-04 CVE-2021-4154 Use After Free vulnerability in multiple products
A use-after-free flaw was found in cgroup1_parse_param in kernel/cgroup/cgroup-v1.c in the Linux kernel's cgroup v1 parser.
local
low complexity
linux redhat netapp CWE-416
8.8
2022-02-04 CVE-2022-0264 Improper Handling of Exceptional Conditions vulnerability in Linux Kernel
A vulnerability was found in the Linux kernel's eBPF verifier when handling internal data structures.
local
low complexity
linux CWE-755
5.5
2022-02-04 CVE-2022-0487 Use After Free vulnerability in multiple products
A use-after-free vulnerability was found in rtsx_usb_ms_drv_remove in drivers/memstick/host/rtsx_usb_ms.c in memstick in the Linux kernel.
local
low complexity
linux redhat debian CWE-416
2.1
2022-02-04 CVE-2022-24448 Use of Uninitialized Resource vulnerability in multiple products
An issue was discovered in fs/nfs/dir.c in the Linux kernel before 5.16.5.
local
low complexity
linux debian CWE-908
3.3
2022-01-21 CVE-2021-4001 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Linux Kernel
A race condition was found in the Linux kernel's ebpf verifier between bpf_map_update_elem and bpf_map_freeze due to a missing lock in kernel/bpf/syscall.c.
local
high complexity
linux CWE-367
4.1
2022-01-21 CVE-2021-4032 Incomplete Cleanup vulnerability in Linux Kernel
A vulnerability was found in the Linux kernel's KVM subsystem in arch/x86/kvm/lapic.c kvm_free_lapic when a failure allocation was detected.
local
low complexity
linux CWE-459
4.9
2022-01-18 CVE-2021-4083 Race Condition vulnerability in multiple products
A read-after-free memory flaw was found in the Linux kernel's garbage collection for Unix domain socket file handlers in the way users call close() and fget() simultaneously and can potentially trigger a race condition.
local
high complexity
linux netapp debian oracle CWE-362
7.0
2022-01-11 CVE-2021-46283 Improper Initialization vulnerability in Linux Kernel
nf_tables_newset in net/netfilter/nf_tables_api.c in the Linux kernel before 5.12.13 allows local users to cause a denial of service (NULL pointer dereference and general protection fault) because of the missing initialization for nft_set_elem_expr_alloc.
local
low complexity
linux CWE-665
4.9