Vulnerabilities > Linux > Linux Kernel > 5.10.28
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2022-03-25 | CVE-2022-0500 | Out-of-bounds Write vulnerability in multiple products A flaw was found in unrestricted eBPF usage by the BPF_BTF_LOAD, leading to a possible out-of-bounds memory write in the Linux kernel’s BPF subsystem due to the way a user loads BTF. | 7.8 |
2022-03-25 | CVE-2022-0995 | Out-of-bounds Write vulnerability in multiple products An out-of-bounds (OOB) memory write flaw was found in the Linux kernel’s watch_queue event notification subsystem. | 7.8 |
2022-03-23 | CVE-2021-4148 | Improper Validation of Integrity Check Value vulnerability in multiple products A vulnerability was found in the Linux kernel's block_invalidatepage in fs/buffer.c in the filesystem. | 4.9 |
2022-03-23 | CVE-2021-4149 | Improper Locking vulnerability in multiple products A vulnerability was found in btrfs_alloc_tree_b in fs/btrfs/extent-tree.c in the Linux kernel due to an improper lock operation in btrfs. | 5.5 |
2022-03-23 | CVE-2021-4150 | Use After Free vulnerability in Linux Kernel A use-after-free flaw was found in the add_partition in block/partitions/core.c in the Linux kernel. | 4.9 |
2022-03-23 | CVE-2021-4197 | Improper Authentication vulnerability in multiple products An unprivileged write to the file handler flaw in the Linux kernel's control groups and namespaces subsystem was found in the way users have access to some less privileged process that are controlled by cgroups and have higher privileged parent process. | 7.8 |
2022-03-23 | CVE-2022-0854 | Memory Leak vulnerability in multiple products A memory leak flaw was found in the Linux kernel’s DMA subsystem, in the way a user calls DMA_FROM_DEVICE. | 5.5 |
2022-03-23 | CVE-2022-27666 | Out-of-bounds Write vulnerability in multiple products A heap buffer overflow flaw was found in IPsec ESP transformation code in net/ipv4/esp4.c and net/ipv6/esp6.c. | 7.8 |
2022-03-18 | CVE-2022-1011 | Use After Free vulnerability in multiple products A use-after-free flaw was found in the Linux kernel’s FUSE filesystem in the way a user triggers write(). | 7.8 |
2022-03-18 | CVE-2021-45868 | Use After Free vulnerability in multiple products In the Linux kernel before 5.15.3, fs/quota/quota_tree.c does not validate the block number in the quota tree (on disk). | 5.5 |