5.11.15

DATE	CVE	VULNERABILITY TITLE	RISK
2021-05-11	CVE-2021-32606	Use After Free vulnerability in multiple products In the Linux kernel 5.11 through 5.12.2, isotp_setsockopt in net/can/isotp.c allows privilege escalation to root by leveraging a use-after-free. local low complexity linux fedoraproject CWE-416	7.8
2021-05-10	CVE-2021-32399	Race Condition vulnerability in multiple products net/bluetooth/hci_request.c in the Linux kernel through 5.12.2 has a race condition for removal of the HCI controller. local high complexity linux debian netapp CWE-362	7.0
2021-05-06	CVE-2021-31916	An out-of-bounds (OOB) memory write flaw was found in list_devices in drivers/md/dm-ioctl.c in the Multi-device driver module in the Linux kernel before 5.12. local low complexity linux redhat debian	6.7
2021-05-06	CVE-2021-31829	Incorrect Authorization vulnerability in multiple products kernel/bpf/verifier.c in the Linux kernel through 5.12.1 performs undesirable speculative loads, leading to disclosure of stack content via side-channel attacks, aka CID-801c6058d14a. local low complexity linux fedoraproject debian CWE-863	5.5
2021-05-06	CVE-2021-3501	A flaw was found in the Linux kernel in versions before 5.12. local low complexity linux redhat fedoraproject netapp	7.1
2021-04-22	CVE-2021-23133	Race Condition vulnerability in multiple products A race condition in Linux kernel SCTP sockets (net/sctp/socket.c) before 5.12-rc8 can lead to kernel privilege escalation from the context of a network service or an unprivileged process. local high complexity linux fedoraproject debian netapp broadcom CWE-362	7.0
2021-04-20	CVE-2021-29155	Out-of-bounds Read vulnerability in multiple products An issue was discovered in the Linux kernel through 5.11.x. local low complexity linux fedoraproject debian CWE-125	5.5
2021-04-19	CVE-2021-3506	An out-of-bounds (OOB) memory access flaw was found in fs/f2fs/node.c in the f2fs module in the Linux kernel in versions before 5.12.0-rc4. local low complexity linux debian netapp	7.1
2021-03-26	CVE-2020-35508	A flaw possibility of race condition and incorrect initialization of the process id was found in the Linux kernel child/parent process identification handling while filtering signal handlers. local high complexity linux redhat netapp	4.5
2021-03-23	CVE-2021-20219	Unspecified vulnerability in Linux Kernel A denial of service vulnerability was found in n_tty_receive_char_special in drivers/tty/n_tty.c of the Linux kernel. local low complexity linux	5.5