5.9.14

DATE	CVE	VULNERABILITY TITLE	RISK
2021-01-29	CVE-2021-3347	Use After Free vulnerability in multiple products An issue was discovered in the Linux kernel through 5.10.11. local low complexity linux debian fedoraproject CWE-416	7.8
2021-01-19	CVE-2021-3178	Path Traversal vulnerability in multiple products fs/nfsd/nfs3xdr.c in the Linux kernel through 5.10.8, when there is an NFS export of a subdirectory of a filesystem, allows remote attackers to traverse to other parts of the filesystem via READDIRPLUS. network low complexity linux fedoraproject debian CWE-22	6.5
2021-01-13	CVE-2020-28374	Path Traversal vulnerability in multiple products In drivers/target/target_core_xcopy.c in the Linux kernel before 5.10.7, insufficient identifier checking in the LIO SCSI target code can be used by remote attackers to read or write files via directory traversal in an XCOPY request, aka CID-2896c93811e3. network low complexity linux fedoraproject debian CWE-22	8.1
2021-01-05	CVE-2020-36158	Classic Buffer Overflow vulnerability in multiple products mwifiex_cmd_802_11_ad_hoc_start in drivers/net/wireless/marvell/mwifiex/join.c in the Linux kernel through 5.10.4 might allow remote attackers to execute arbitrary code via a long SSID value, aka CID-5c455c5ab332. local low complexity linux fedoraproject debian netapp CWE-120	6.7
2020-12-15	CVE-2020-29569	Use After Free vulnerability in multiple products An issue was discovered in the Linux kernel through 5.10.1, as used with Xen through 4.14.x. local low complexity xen linux netapp debian CWE-416	8.8
2020-12-15	CVE-2020-27777	Missing Authorization vulnerability in multiple products A flaw was found in the way RTAS handled memory accesses in userspace to kernel communication. local low complexity linux redhat CWE-862	6.7
2020-12-02	CVE-2020-25656	Use After Free vulnerability in multiple products A flaw was found in the Linux kernel. local high complexity linux redhat debian starwindsoftware CWE-416	4.1
2020-11-17	CVE-2020-25705	Use of Insufficiently Random Values vulnerability in multiple products A flaw in ICMP packets in the Linux kernel may allow an attacker to quickly scan open UDP ports. network linux redhat CWE-330	5.8
2020-01-31	CVE-2019-3016	Race Condition vulnerability in Linux Kernel In a Linux KVM guest that has PV TLB enabled, a process in the guest kernel may be able to read memory locations from another process in the same guest. local high complexity linux CWE-362	4.7
2019-08-19	CVE-2018-20976	Use After Free vulnerability in Linux Kernel An issue was discovered in fs/xfs/xfs_super.c in the Linux kernel before 4.18. local low complexity linux CWE-416	7.8