5.17.5

DATE	CVE	VULNERABILITY TITLE	RISK
2022-06-18	CVE-2022-33981	Use After Free vulnerability in multiple products drivers/block/floppy.c in the Linux kernel before 5.17.6 is vulnerable to a denial of service, because of a concurrency use-after-free flaw after deallocating raw_cmd in the raw_cmd_ioctl function. local low complexity linux debian CWE-416	3.3
2022-06-05	CVE-2022-32296	Use of Insufficiently Random Values vulnerability in Linux Kernel The Linux kernel before 5.17.9 allows TCP servers to identify clients by observing what source ports are used. local low complexity linux CWE-330	3.3
2022-06-02	CVE-2022-32250	Use After Free vulnerability in multiple products net/netfilter/nf_tables_api.c in the Linux kernel through 5.18.1 allows a local user (able to create user/net namespaces) to escalate privileges to root because an incorrect NFT_STATEFUL_EXPR check leads to a use-after-free. local low complexity linux fedoraproject debian netapp CWE-416	7.8
2022-06-02	CVE-2022-1652	Use After Free vulnerability in multiple products Linux Kernel could allow a local attacker to execute arbitrary code on the system, caused by a concurrency use-after-free flaw in the bad_flp_intr function. local low complexity linux redhat debian netapp CWE-416	7.8
2022-06-02	CVE-2022-1943	Out-of-bounds Write vulnerability in Linux Kernel A flaw out of bounds memory write in the Linux kernel UDF file system functionality was found in the way user triggers some file operation which triggers udf_write_fi(). local low complexity linux CWE-787	7.8
2022-05-26	CVE-2022-1882	Use After Free vulnerability in multiple products A use-after-free flaw was found in the Linux kernel’s pipes functionality in how a user performs manipulations with the pipe post_one_notification() after free_pipe_info() that is already called. local low complexity linux netapp CWE-416	7.8
2022-05-18	CVE-2022-1734	Use After Free vulnerability in multiple products A flaw in Linux Kernel found in nfcmrvl_nci_unregister_dev() in drivers/nfc/nfcmrvl/main.c can lead to use after free both read or write when non synchronized between cleanup routine and firmware download routine. local high complexity linux debian netapp CWE-416	7.0
2022-05-16	CVE-2022-1679	Use After Free vulnerability in multiple products A use-after-free flaw was found in the Linux kernel’s Atheros wireless adapter driver in the way a user forces the ath9k_htc_wait_for_target function to fail with some input messages. local low complexity linux debian netapp CWE-416	7.8
2022-05-02	CVE-2022-29968	Missing Initialization of Resource vulnerability in multiple products An issue was discovered in the Linux kernel through 5.17.5. local low complexity linux fedoraproject netapp CWE-909	7.8
2022-03-03	CVE-2021-3640	Race Condition vulnerability in multiple products A flaw use-after-free in function sco_sock_sendmsg() of the Linux kernel HCI subsystem was found in the way user calls ioct UFFDIO_REGISTER or other way triggers race condition of the call sco_conn_del() together with the call sco_sock_sendmsg() with the expected controllable faulting memory page. local high complexity linux debian fedoraproject canonical netapp CWE-362	7.0