Vulnerabilities > Linux > Linux Kernel > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-12-09 | CVE-2020-29660 | Improper Locking vulnerability in multiple products A locking inconsistency issue was discovered in the tty subsystem of the Linux kernel through 5.9.13. | 4.4 |
| 2020-12-02 | CVE-2020-25704 | A flaw memory leak in the Linux kernel performance monitoring subsystem was found in the way if using PERF_EVENT_IOC_SET_FILTER. | 5.5 |
| 2020-12-02 | CVE-2020-25656 | A flaw was found in the Linux kernel. | 4.1 |
| 2020-11-28 | CVE-2020-29373 | Path Traversal vulnerability in Linux Kernel An issue was discovered in fs/io_uring.c in the Linux kernel before 5.6. | 6.5 |
| 2020-11-28 | CVE-2020-29372 | Race Condition vulnerability in multiple products An issue was discovered in do_madvise in mm/madvise.c in the Linux kernel before 5.6.8. | 4.7 |
| 2020-11-28 | CVE-2019-20934 | Use After Free vulnerability in Linux Kernel An issue was discovered in the Linux kernel before 5.2.6. | 5.3 |
| 2020-11-23 | CVE-2020-15437 | NULL Pointer Dereference vulnerability in Linux Kernel The Linux kernel before version 5.8 is vulnerable to a NULL pointer dereference in drivers/tty/serial/8250/8250_core.c:serial8250_isa_init_ports() that allows local users to cause a denial of service by using the p->serial_in pointer which uninitialized. | 4.4 |
| 2020-11-23 | CVE-2020-15436 | Use After Free vulnerability in multiple products Use-after-free vulnerability in fs/block_dev.c in the Linux kernel before 5.8 allows local users to gain privileges or cause a denial of service by leveraging improper access to a certain error field. | 6.7 |
| 2020-11-23 | CVE-2020-12352 | Missing Initialization of Resource vulnerability in Linux Kernel Improper access control in BlueZ may allow an unauthenticated user to potentially enable information disclosure via adjacent access. | 6.5 |
| 2020-11-20 | CVE-2020-28974 | Out-of-bounds Read vulnerability in multiple products A slab-out-of-bounds read in fbcon in the Linux kernel before 5.9.7 could be used by local attackers to read privileged information or potentially crash the kernel, aka CID-3c4e0dff2095. | 5.0 |