5.2.12

DATE	CVE	VULNERABILITY TITLE	RISK
2019-09-19	CVE-2019-14821	An out-of-bounds access issue was found in the Linux kernel, all versions through 5.3, in the way Linux kernel's KVM hypervisor implements the Coalesced MMIO write operation. local low complexity linux redhat canonical opensuse fedoraproject debian netapp oracle	8.8
2019-09-17	CVE-2019-14835	A buffer overflow flaw was found, in versions from 2.6.34 to 5.2.x, in the way Linux kernel's vhost functionality that translates virtqueue buffers to IOVs, logged the buffer descriptors during migration. local low complexity linux canonical debian fedoraproject opensuse netapp redhat huawei	7.8
2019-09-13	CVE-2019-15031	Improper Synchronization vulnerability in multiple products In the Linux kernel through 5.2.14 on the powerpc platform, a local user can read vector registers of other users' processes via an interrupt. local low complexity linux redhat canonical opensuse CWE-662	4.4
2019-09-13	CVE-2019-15030	Missing Authorization vulnerability in multiple products In the Linux kernel through 5.2.14 on the powerpc platform, a local user can read vector registers of other users' processes via a Facility Unavailable exception. local low complexity linux redhat canonical opensuse CWE-862	4.4
2019-09-06	CVE-2019-16089	NULL Pointer Dereference vulnerability in Linux Kernel An issue was discovered in the Linux kernel through 5.2.13. local high complexity linux CWE-476	4.1
2019-08-23	CVE-2019-15505	Out-of-bounds Read vulnerability in multiple products drivers/media/usb/dvb-usb/technisat-usb2.c in the Linux kernel through 5.2.9 has an out-of-bounds read via crafted USB device traffic (which may be remote via usbip or usbredir). network low complexity linux debian canonical CWE-125 critical	9.8
2019-08-23	CVE-2019-15504	Double Free vulnerability in multiple products drivers/net/wireless/rsi/rsi_91x_usb.c in the Linux kernel through 5.2.9 has a Double Free via crafted USB device traffic (which may be remote via usbip or usbredir). network low complexity linux canonical CWE-415 critical	9.8
2019-08-19	CVE-2018-20976	Use After Free vulnerability in Linux Kernel An issue was discovered in fs/xfs/xfs_super.c in the Linux kernel before 4.18. local low complexity linux CWE-416	7.8
2019-08-19	CVE-2016-10905	Use After Free vulnerability in Linux Kernel An issue was discovered in fs/gfs2/rgrp.c in the Linux kernel before 4.8. local low complexity linux CWE-416	7.8
2019-08-16	CVE-2019-15099	NULL Pointer Dereference vulnerability in multiple products drivers/net/wireless/ath/ath10k/usb.c in the Linux kernel through 5.2.8 has a NULL pointer dereference via an incomplete address in an endpoint descriptor. network low complexity linux canonical CWE-476	7.5