Vulnerabilities > Linux

DATE CVE VULNERABILITY TITLE RISK
2019-08-16 CVE-2019-15118 Uncontrolled Recursion vulnerability in multiple products
check_input_term in sound/usb/mixer.c in the Linux kernel through 5.2.9 mishandles recursion, leading to kernel stack exhaustion.
local
low complexity
linux canonical debian opensuse netapp CWE-674
5.5
2019-08-16 CVE-2019-15117 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Linux Kernel
parse_audio_mixer_unit in sound/usb/mixer.c in the Linux kernel through 5.2.9 mishandles a short descriptor, leading to out-of-bounds memory access.
local
low complexity
linux CWE-119
7.8
2019-08-16 CVE-2019-15099 NULL Pointer Dereference vulnerability in multiple products
drivers/net/wireless/ath/ath10k/usb.c in the Linux kernel through 5.2.8 has a NULL pointer dereference via an incomplete address in an endpoint descriptor.
network
low complexity
linux canonical CWE-476
7.5
2019-08-16 CVE-2019-15098 NULL Pointer Dereference vulnerability in multiple products
drivers/net/wireless/ath/ath6kl/usb.c in the Linux kernel through 5.2.9 has a NULL pointer dereference via an incomplete address in an endpoint descriptor.
4.6
2019-08-16 CVE-2019-15090 Out-of-bounds Read vulnerability in multiple products
An issue was discovered in drivers/scsi/qedi/qedi_dbg.c in the Linux kernel before 5.1.12.
local
low complexity
linux canonical opensuse CWE-125
6.7
2019-08-15 CVE-2019-10140 A vulnerability was found in Linux kernel's, versions up to 3.10, implementation of overlayfs.
local
low complexity
linux redhat
5.5
2019-08-13 CVE-2017-18509 Improper Input Validation vulnerability in multiple products
An issue was discovered in net/ipv6/ip6mr.c in the Linux kernel before 4.11.
local
low complexity
linux debian canonical CWE-20
7.8
2019-08-07 CVE-2019-14763 Improper Locking vulnerability in multiple products
In the Linux kernel before 4.16.4, a double-locking error in drivers/usb/dwc3/gadget.c may potentially cause a deadlock with f_hid.
local
low complexity
linux canonical CWE-667
5.5
2019-08-07 CVE-2018-20961 Double Free vulnerability in Linux Kernel
In the Linux kernel before 4.16.4, a double free vulnerability in the f_midi_set_alt function of drivers/usb/gadget/function/f_midi.c in the f_midi driver may allow attackers to cause a denial of service or possibly have unspecified other impact.
network
low complexity
linux CWE-415
critical
9.8
2019-07-30 CVE-2019-10142 Integer Overflow or Wraparound vulnerability in Linux Kernel
A flaw was found in the Linux kernel's freescale hypervisor manager implementation, kernel versions 5.0.x up to, excluding 5.0.17.
local
low complexity
linux CWE-190
7.8