Linux Kernel

DATE	CVE	VULNERABILITY TITLE	RISK
2021-01-26	CVE-2020-35513	A flaw incorrect umask during file or directory modification in the Linux kernel NFS (network file system) functionality was found in the way user create and delete object using NFSv4.2 or newer if both simultaneously accessing the NFS by the other process that is not using new NFSv4.2. network low complexity linux redhat	4.9
2021-01-19	CVE-2021-3178	Path Traversal vulnerability in multiple products fs/nfsd/nfs3xdr.c in the Linux kernel through 5.10.8, when there is an NFS export of a subdirectory of a filesystem, allows remote attackers to traverse to other parts of the filesystem via READDIRPLUS. network low complexity linux fedoraproject debian CWE-22	6.5
2021-01-14	CVE-2020-16119	Use After Free vulnerability in multiple products Use-after-free vulnerability in the Linux kernel exploitable by a local attacker due to reuse of a DCCP socket with an attached dccps_hc_tx_ccid object as a listener after being released. local low complexity linux canonical debian CWE-416	7.8
2021-01-13	CVE-2020-28374	Path Traversal vulnerability in multiple products In drivers/target/target_core_xcopy.c in the Linux kernel before 5.10.7, insufficient identifier checking in the LIO SCSI target code can be used by remote attackers to read or write files via directory traversal in an XCOPY request, aka CID-2896c93811e3. network low complexity linux fedoraproject debian CWE-22	8.1
2021-01-05	CVE-2020-36158	Classic Buffer Overflow vulnerability in multiple products mwifiex_cmd_802_11_ad_hoc_start in drivers/net/wireless/marvell/mwifiex/join.c in the Linux kernel through 5.10.4 might allow remote attackers to execute arbitrary code via a long SSID value, aka CID-5c455c5ab332. local low complexity linux fedoraproject debian netapp CWE-120	6.7
2020-12-15	CVE-2020-29569	Use After Free vulnerability in multiple products An issue was discovered in the Linux kernel through 5.10.1, as used with Xen through 4.14.x. local low complexity xen linux netapp debian CWE-416	8.8
2020-12-15	CVE-2020-27777	A flaw was found in the way RTAS handled memory accesses in userspace to kernel communication. local low complexity linux redhat	6.7
2020-12-11	CVE-2020-27825	A use-after-free flaw was found in kernel/trace/ring_buffer.c in Linux kernel (before 5.10-rc1). local high complexity linux redhat debian netapp	5.7
2020-12-11	CVE-2020-27786	A flaw was found in the Linux kernel’s implementation of MIDI, where an attacker with a local account and the permissions to issue ioctl commands to midi devices could trigger a use-after-free issue. local low complexity linux redhat netapp	7.8
2020-12-09	CVE-2020-29661	Improper Locking vulnerability in multiple products A locking issue was discovered in the tty subsystem of the Linux kernel through 5.9.13. local low complexity linux fedoraproject debian netapp broadcom oracle CWE-667	7.8