Vulnerabilities > Linux > Linux Kernel > 5.17.15

DATE CVE VULNERABILITY TITLE RISK
2022-09-02 CVE-2022-39188 Race Condition vulnerability in multiple products
An issue was discovered in include/asm-generic/tlb.h in the Linux kernel before 5.19.
local
high complexity
linux debian CWE-362
4.7
4.7
2022-09-02 CVE-2022-39189 An issue was discovered the x86 KVM subsystem in the Linux kernel before 5.18.17.
local
low complexity
linux netapp
7.8
7.8
2022-09-02 CVE-2022-39190 An issue was discovered in net/netfilter/nf_tables_api.c in the Linux kernel before 5.19.6.
local
low complexity
linux debian
5.5
5.5
2022-08-31 CVE-2022-1976 Use After Free vulnerability in Linux Kernel
A flaw was found in the Linux kernel’s implementation of IO-URING.
local
low complexity
linux CWE-416
7.8
7.8
2022-08-31 CVE-2022-2153 NULL Pointer Dereference vulnerability in multiple products
A flaw was found in the Linux kernel’s KVM when attempting to set a SynIC IRQ.
local
low complexity
linux fedoraproject redhat debian CWE-476
5.5
5.5
2022-08-31 CVE-2022-2590 Race Condition vulnerability in Linux Kernel
A race condition was found in the way the Linux kernel's memory subsystem handled the copy-on-write (COW) breakage of private read-only shared memory mappings.
local
high complexity
linux CWE-362
7.0
7.0
2022-08-31 CVE-2022-3028 Out-of-bounds Write vulnerability in multiple products
A race condition was found in the Linux kernel's IP framework for transforming packets (XFRM subsystem) when multiple calls to xfrm_probe_algs occurred simultaneously.
local
high complexity
linux fedoraproject debian CWE-787
7.0
7.0
2022-08-29 CVE-2022-0850 Unspecified vulnerability in Linux Kernel
A vulnerability was found in linux kernel, where an information leak occurs via ext4_extent_header to userspace.
local
low complexity
linux
7.1
7.1
2022-08-29 CVE-2022-2961 Race Condition vulnerability in multiple products
A use-after-free flaw was found in the Linux kernel’s PLP Rose functionality in the way a user triggers a race condition by calling bind while simultaneously triggering the rose_bind() function.
local
high complexity
linux fedoraproject netapp CWE-362
7.0
7.0
2022-08-26 CVE-2022-0168 NULL Pointer Dereference vulnerability in multiple products
A denial of service (DOS) issue was found in the Linux kernel’s smb2_ioctl_query_info function in the fs/cifs/smb2ops.c Common Internet File System (CIFS) due to an incorrect return from the memdup_user function.
local
low complexity
linux redhat CWE-476
4.4
4.4