5.10.119

DATE	CVE	VULNERABILITY TITLE	RISK
2022-03-25	CVE-2022-0500	Out-of-bounds Write vulnerability in multiple products A flaw was found in unrestricted eBPF usage by the BPF_BTF_LOAD, leading to a possible out-of-bounds memory write in the Linux kernel’s BPF subsystem due to the way a user loads BTF. local low complexity linux fedoraproject netapp CWE-787	7.8
2022-03-23	CVE-2021-4149	Improper Locking vulnerability in multiple products A vulnerability was found in btrfs_alloc_tree_b in fs/btrfs/extent-tree.c in the Linux kernel due to an improper lock operation in btrfs. local low complexity linux debian CWE-667	5.5
2022-03-23	CVE-2022-27666	Out-of-bounds Write vulnerability in multiple products A heap buffer overflow flaw was found in IPsec ESP transformation code in net/ipv4/esp4.c and net/ipv6/esp6.c. local low complexity linux fedoraproject redhat netapp debian CWE-787	7.8
2022-03-18	CVE-2021-45868	Use After Free vulnerability in multiple products In the Linux kernel before 5.15.3, fs/quota/quota_tree.c does not validate the block number in the quota tree (on disk). local low complexity linux netapp CWE-416	5.5
2022-03-12	CVE-2022-26966	An issue was discovered in the Linux kernel before 5.16.12. local low complexity linux netapp debian	5.5
2022-03-11	CVE-2022-26878	Memory Leak vulnerability in Linux Kernel drivers/bluetooth/virtio_bt.c in the Linux kernel before 5.16.3 has a memory leak (socket buffers have memory allocated but not freed). local low complexity linux CWE-401	5.5
2022-03-10	CVE-2021-4095	NULL Pointer Dereference vulnerability in multiple products A NULL pointer dereference was found in the Linux kernel's KVM when dirty ring logging is enabled without an active vCPU context. local low complexity linux fedoraproject CWE-476	5.5
2022-03-10	CVE-2022-0433	NULL Pointer Dereference vulnerability in multiple products A NULL pointer dereference flaw was found in the Linux kernel's BPF subsystem in the way a user triggers the map_get_next_key function of the BPF bloom filter. local low complexity linux fedoraproject CWE-476	5.5
2022-03-10	CVE-2021-3739	NULL Pointer Dereference vulnerability in multiple products A NULL pointer dereference flaw was found in the btrfs_rm_device function in fs/btrfs/volumes.c in the Linux Kernel, where triggering the bug requires ‘CAP_SYS_ADMIN’. local low complexity linux fedoraproject netapp CWE-476	7.1
2022-03-10	CVE-2021-3732	Unspecified vulnerability in Linux Kernel A flaw was found in the Linux kernel's OverlayFS subsystem in the way the user mounts the TmpFS filesystem with OverlayFS. local low complexity linux	5.5