Vulnerabilities > Linux
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-11-18 | CVE-2019-19045 | Memory Leak vulnerability in multiple products A memory leak in the mlx5_fpga_conn_create_cq() function in drivers/net/ethernet/mellanox/mlx5/core/fpga/conn.c in the Linux kernel before 5.3.11 allows attackers to cause a denial of service (memory consumption) by triggering mlx5_vector2eqn() failures, aka CID-c8c2a057fdc7. | 4.4 |
| 2019-11-18 | CVE-2019-19044 | Memory Leak vulnerability in multiple products Two memory leaks in the v3d_submit_cl_ioctl() function in drivers/gpu/drm/v3d/v3d_gem.c in the Linux kernel before 5.3.11 allow attackers to cause a denial of service (memory consumption) by triggering kcalloc() or v3d_job_init() failures, aka CID-29cd13cfd762. | 7.5 |
| 2019-11-18 | CVE-2019-19043 | Memory Leak vulnerability in multiple products A memory leak in the i40e_setup_macvlans() function in drivers/net/ethernet/intel/i40e/i40e_main.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service (memory consumption) by triggering i40e_setup_channel() failures, aka CID-27d461333459. | 5.5 |
| 2019-11-14 | CVE-2019-0145 | Classic Buffer Overflow vulnerability in multiple products Buffer overflow in i40e driver for Intel(R) Ethernet 700 Series Controllers versions before 7.0 may allow an authenticated user to potentially enable an escalation of privilege via local access. | 7.8 |
| 2019-11-14 | CVE-2019-18885 | NULL Pointer Dereference vulnerability in Linux Kernel fs/btrfs/volumes.c in the Linux kernel before 5.1 allows a btrfs_verify_dev_extents NULL pointer dereference via a crafted btrfs image because fs_devices->devices is mishandled within find_device, aka CID-09ba3bc9dd15. | 5.5 |
| 2019-11-13 | CVE-2019-18844 | Reachable Assertion vulnerability in Linux Acrn The Device Model in ACRN before 2019w25.5-140000p relies on assert calls in devicemodel/hw/pci/core.c and devicemodel/include/pci_core.h (instead of other mechanisms for propagating error information or diagnostic information), which might allow attackers to cause a denial of service (assertion failure) within pci core. | 7.5 |
| 2019-11-07 | CVE-2007-3732 | Unspecified vulnerability in Linux Kernel In Linux 2.6 before 2.6.23, the TRACE_IRQS_ON function in iret_exc calls a C function without ensuring that the segments are set properly. | 5.5 |
| 2019-11-07 | CVE-2010-2243 | Improper Input Validation vulnerability in Linux Kernel A vulnerability exists in kernel/time/clocksource.c in the Linux kernel before 2.6.34 where on non-GENERIC_TIME systems (GENERIC_TIME=n), accessing /sys/devices/system/clocksource/clocksource0/current_clocksource results in an OOPS. | 7.5 |
| 2019-11-07 | CVE-2019-18814 | Use After Free vulnerability in Linux Kernel An issue was discovered in the Linux kernel through 5.3.9. | 9.8 |
| 2019-11-07 | CVE-2019-18813 | Memory Leak vulnerability in multiple products A memory leak in the dwc3_pci_probe() function in drivers/usb/dwc3/dwc3-pci.c in the Linux kernel through 5.3.9 allows attackers to cause a denial of service (memory consumption) by triggering platform_device_add_properties() failures, aka CID-9bbfceea12a8. | 7.5 |