Vulnerabilities > Linux > Linux Kernel > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-08-16 | CVE-2019-15118 | Uncontrolled Recursion vulnerability in multiple products check_input_term in sound/usb/mixer.c in the Linux kernel through 5.2.9 mishandles recursion, leading to kernel stack exhaustion. | 5.5 |
| 2019-08-16 | CVE-2019-15098 | NULL Pointer Dereference vulnerability in multiple products drivers/net/wireless/ath/ath6kl/usb.c in the Linux kernel through 5.2.9 has a NULL pointer dereference via an incomplete address in an endpoint descriptor. | 4.6 |
| 2019-08-16 | CVE-2019-15090 | Out-of-bounds Read vulnerability in multiple products An issue was discovered in drivers/scsi/qedi/qedi_dbg.c in the Linux kernel before 5.1.12. | 6.7 |
| 2019-08-15 | CVE-2019-10140 | A vulnerability was found in Linux kernel's, versions up to 3.10, implementation of overlayfs. | 5.5 |
| 2019-08-07 | CVE-2019-14763 | Improper Locking vulnerability in multiple products In the Linux kernel before 4.16.4, a double-locking error in drivers/usb/dwc3/gadget.c may potentially cause a deadlock with f_hid. | 5.5 |
| 2019-07-27 | CVE-2015-9289 | Out-of-bounds Read vulnerability in Linux Kernel In the Linux kernel before 4.1.4, a buffer overflow occurs when checking userspace params in drivers/media/dvb-frontends/cx24116.c. | 5.5 |
| 2019-07-27 | CVE-2010-5332 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Linux Kernel In the Linux kernel before 2.6.37, an out of bounds array access happened in drivers/net/mlx4/port.c. | 5.6 |
| 2019-07-26 | CVE-2019-14284 | Divide By Zero vulnerability in Linux Kernel In the Linux kernel before 5.2.3, drivers/block/floppy.c allows a denial of service by setup_format_params division-by-zero. | 6.2 |
| 2019-07-26 | CVE-2019-14283 | Integer Overflow or Wraparound vulnerability in Linux Kernel In the Linux kernel before 5.2.3, set_geometry in drivers/block/floppy.c does not validate the sect and head fields, as demonstrated by an integer overflow and out-of-bounds read. | 6.8 |
| 2019-07-19 | CVE-2019-13648 | Resource Management Errors vulnerability in Linux Kernel In the Linux kernel through 5.2.1 on the powerpc platform, when hardware transactional memory is disabled, a local user can cause a denial of service (TM Bad Thing exception and system crash) via a sigreturn() system call that sends a crafted signal frame. | 5.5 |