5.11.2

DATE	CVE	VULNERABILITY TITLE	RISK
2021-05-14	CVE-2021-33033	Use After Free vulnerability in Linux Kernel The Linux kernel before 5.11.14 has a use-after-free in cipso_v4_genopt in net/ipv4/cipso_ipv4.c because the CIPSO and CALIPSO refcounting for the DOI definitions is mishandled, aka CID-ad5d07f4a9cd. local low complexity linux CWE-416	4.6
2021-05-14	CVE-2021-33034	Use After Free vulnerability in multiple products In the Linux kernel before 5.12.4, net/bluetooth/hci_event.c has a use-after-free when destroying an hci_chan, aka CID-5c4c8c954409. local low complexity linux fedoraproject debian CWE-416	7.8
2021-05-12	CVE-2021-23134	Use After Free vulnerability in multiple products Use After Free vulnerability in nfc sockets in the Linux Kernel before 5.12.4 allows local attackers to elevate their privileges. local low complexity linux fedoraproject debian CWE-416	7.8
2021-05-11	CVE-2021-32606	Use After Free vulnerability in multiple products In the Linux kernel 5.11 through 5.12.2, isotp_setsockopt in net/can/isotp.c allows privilege escalation to root by leveraging a use-after-free. local low complexity linux fedoraproject CWE-416	7.8
2021-05-10	CVE-2021-32399	Race Condition vulnerability in multiple products net/bluetooth/hci_request.c in the Linux kernel through 5.12.2 has a race condition for removal of the HCI controller. local linux debian netapp CWE-362	4.4
2021-05-06	CVE-2021-31916	Out-of-bounds Write vulnerability in multiple products An out-of-bounds (OOB) memory write flaw was found in list_devices in drivers/md/dm-ioctl.c in the Multi-device driver module in the Linux kernel before 5.12. local low complexity linux redhat debian CWE-787	6.1
2021-05-06	CVE-2021-31829	Incorrect Authorization vulnerability in multiple products kernel/bpf/verifier.c in the Linux kernel through 5.12.1 performs undesirable speculative loads, leading to disclosure of stack content via side-channel attacks, aka CID-801c6058d14a. local low complexity linux fedoraproject debian CWE-863	5.5
2021-05-06	CVE-2021-3501	Out-of-bounds Write vulnerability in multiple products A flaw was found in the Linux kernel in versions before 5.12. local low complexity linux redhat fedoraproject netapp CWE-787	3.6
2021-04-22	CVE-2021-23133	Race Condition vulnerability in multiple products A race condition in Linux kernel SCTP sockets (net/sctp/socket.c) before 5.12-rc8 can lead to kernel privilege escalation from the context of a network service or an unprivileged process. local high complexity linux fedoraproject debian netapp broadcom CWE-362	7.0
2021-04-20	CVE-2021-29155	Out-of-bounds Read vulnerability in multiple products An issue was discovered in the Linux kernel through 5.11.x. local low complexity linux fedoraproject debian CWE-125	5.5