Vulnerabilities > Linux > Linux Kernel > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-08-29 | CVE-2022-2961 | Race Condition vulnerability in multiple products A use-after-free flaw was found in the Linux kernel’s PLP Rose functionality in the way a user triggers a race condition by calling bind while simultaneously triggering the rose_bind() function. | 7.0 |
| 2022-08-26 | CVE-2021-3864 | Improper Access Control vulnerability in multiple products A flaw was found in the way the dumpable flag setting was handled when certain SUID binaries executed its descendants. | 7.0 |
| 2022-08-25 | CVE-2022-2959 | Improper Locking vulnerability in Linux Kernel A race condition was found in the Linux kernel's watch queue due to a missing lock in pipe_resize_ring(). | 7.0 |
| 2022-08-24 | CVE-2021-4028 | Use After Free vulnerability in multiple products A flaw in the Linux kernel's implementation of RDMA communications manager listener code allowed an attacker with local access to setup a socket to listen on a high port allowing for a list element to be used after free. | 7.8 |
| 2022-08-24 | CVE-2021-4037 | Improper Access Control vulnerability in multiple products A vulnerability was found in the fs/inode.c:inode_init_owner() function logic of the LInux kernel that allows local users to create files for the XFS file-system with an unintended group ownership and with group execution and SGID permission bits set, in a scenario where a directory is SGID and belongs to a certain group and is writable by a user who is not a member of this group. | 7.8 |
| 2022-08-24 | CVE-2021-4204 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products An out-of-bounds (OOB) memory access flaw was found in the Linux kernel's eBPF due to an Improper Input Validation. | 7.1 |
| 2022-08-24 | CVE-2022-2978 | Use After Free vulnerability in multiple products A flaw use after free in the Linux kernel NILFS file system was found in the way user triggers function security_inode_alloc to fail with following call to function nilfs_mdt_destroy. | 7.8 |
| 2022-08-23 | CVE-2022-2938 | Use After Free vulnerability in multiple products A flaw was found in the Linux kernel's implementation of Pressure Stall Information. | 7.8 |
| 2022-08-05 | CVE-2022-1158 | Use After Free vulnerability in multiple products A flaw was found in KVM. | 7.8 |
| 2022-08-05 | CVE-2022-1973 | Use After Free vulnerability in multiple products A use-after-free flaw was found in the Linux kernel in log_replay in fs/ntfs3/fslog.c in the NTFS journal. | 7.1 |