5.15.17

DATE	CVE	VULNERABILITY TITLE	RISK
2022-08-29	CVE-2022-2961	Race Condition vulnerability in multiple products A use-after-free flaw was found in the Linux kernel’s PLP Rose functionality in the way a user triggers a race condition by calling bind while simultaneously triggering the rose_bind() function. local high complexity linux fedoraproject netapp CWE-362	7.0
2022-08-26	CVE-2022-0168	NULL Pointer Dereference vulnerability in multiple products A denial of service (DOS) issue was found in the Linux kernel’s smb2_ioctl_query_info function in the fs/cifs/smb2ops.c Common Internet File System (CIFS) due to an incorrect return from the memdup_user function. local low complexity linux redhat CWE-476	4.4
2022-08-26	CVE-2022-0171	Improper Cross-boundary Removal of Sensitive Data vulnerability in multiple products A flaw was found in the Linux kernel. local low complexity linux redhat debian CWE-212	5.5
2022-08-25	CVE-2022-2959	Improper Locking vulnerability in Linux Kernel A race condition was found in the Linux kernel's watch queue due to a missing lock in pipe_resize_ring(). local high complexity linux CWE-667	7.0
2022-08-24	CVE-2022-2978	Use After Free vulnerability in multiple products A flaw use after free in the Linux kernel NILFS file system was found in the way user triggers function security_inode_alloc to fail with following call to function nilfs_mdt_destroy. local low complexity linux debian CWE-416	7.8
2022-08-23	CVE-2022-2938	Use After Free vulnerability in multiple products A flaw was found in the Linux kernel's implementation of Pressure Stall Information. local low complexity linux redhat fedoraproject netapp CWE-416	7.8
2022-08-22	CVE-2022-2873	Incorrect Calculation of Buffer Size vulnerability in multiple products An out-of-bounds memory access flaw was found in the Linux kernel Intel’s iSMT SMBus host controller driver in the way a user triggers the I2C_SMBUS_BLOCK_DATA (with the ioctl I2C_SMBUS) with malicious input data. local low complexity linux fedoraproject redhat netapp debian CWE-131	5.5
2022-08-12	CVE-2022-2503	Improper Authentication vulnerability in Linux Kernel Dm-verity is used for extending root-of-trust to root filesystems. local low complexity linux CWE-287	6.7
2022-08-05	CVE-2022-1158	Use After Free vulnerability in multiple products A flaw was found in KVM. local low complexity linux fedoraproject redhat CWE-416	7.8
2022-08-05	CVE-2022-1973	Use After Free vulnerability in multiple products A use-after-free flaw was found in the Linux kernel in log_replay in fs/ntfs3/fslog.c in the NTFS journal. local low complexity linux fedoraproject netapp CWE-416	7.1