5.4.217

DATE	CVE	VULNERABILITY TITLE	RISK
2022-06-30	CVE-2022-2078	Stack-based Buffer Overflow vulnerability in multiple products A vulnerability was found in the Linux kernel's nft_set_desc_concat_parse() function .This flaw allows an attacker to trigger a buffer overflow via nft_set_desc_concat_parse() , causing a denial of service and possibly to run code. local low complexity linux redhat debian CWE-121	5.5
2022-06-18	CVE-2022-33981	Use After Free vulnerability in multiple products drivers/block/floppy.c in the Linux kernel before 5.17.6 is vulnerable to a denial of service, because of a concurrency use-after-free flaw after deallocating raw_cmd in the raw_cmd_ioctl function. local low complexity linux debian CWE-416	3.3
2022-06-05	CVE-2022-32296	Use of Insufficiently Random Values vulnerability in Linux Kernel The Linux kernel before 5.17.9 allows TCP servers to identify clients by observing what source ports are used. local low complexity linux CWE-330	3.3
2022-06-02	CVE-2022-1419	Use After Free vulnerability in multiple products The root cause of this vulnerability is that the ioctl$DRM_IOCTL_MODE_DESTROY_DUMB can decrease refcount of drm_vgem_gem_object (created in vgem_gem_dumb_create) concurrently, and vgem_gem_dumb_create will access the freed drm_vgem_gem_object. local low complexity linux debian CWE-416	7.8
2022-06-02	CVE-2022-1789	NULL Pointer Dereference vulnerability in multiple products With shadow paging enabled, the INVPCID instruction results in a call to kvm_mmu_invpcid_gva. low complexity linux fedoraproject redhat debian CWE-476	6.8
2022-05-02	CVE-2022-29968	Missing Initialization of Resource vulnerability in multiple products An issue was discovered in the Linux kernel through 5.17.5. local low complexity linux fedoraproject netapp CWE-909	7.8
2022-04-29	CVE-2022-1015	Out-of-bounds Write vulnerability in multiple products A flaw was found in the Linux kernel in linux/net/netfilter/nf_tables_api.c of the netfilter subsystem. local low complexity linux fedoraproject CWE-787	6.6
2022-04-29	CVE-2022-1195	Use After Free vulnerability in multiple products A use-after-free vulnerability was found in the Linux kernel in drivers/net/hamradio. local low complexity linux debian CWE-416	5.5
2022-04-22	CVE-2022-29582	Race Condition vulnerability in multiple products In the Linux kernel before 5.17.3, fs/io_uring.c has a use-after-free due to a race condition in io_uring timeouts. local high complexity linux debian CWE-362	7.0
2022-04-02	CVE-2022-28356	In the Linux kernel before 5.17.1, a refcount leak bug was found in net/llc/af_llc.c. local low complexity linux debian	5.5