Vulnerabilities > Linux > High

DATE CVE VULNERABILITY TITLE RISK
2019-08-20 CVE-2019-15239 Use After Free vulnerability in multiple products
In the Linux kernel, a certain net/ipv4/tcp_output.c change, which was properly incorporated into 4.16.12, was incorrectly backported to the earlier longterm kernels, introducing a new vulnerability that was potentially more severe than the issue that was intended to be fixed by backporting.
local
low complexity
linux debian CWE-416
7.8
7.8
2019-08-19 CVE-2018-20976 Use After Free vulnerability in Linux Kernel
An issue was discovered in fs/xfs/xfs_super.c in the Linux kernel before 4.18.
local
low complexity
linux CWE-416
7.8
7.8
2019-08-19 CVE-2017-18552 Out-of-bounds Write vulnerability in Linux Kernel
An issue was discovered in net/rds/af_rds.c in the Linux kernel before 4.11.
local
low complexity
linux CWE-787
7.8
7.8
2019-08-19 CVE-2016-10907 Out-of-bounds Write vulnerability in Linux Kernel
An issue was discovered in drivers/iio/dac/ad5755.c in the Linux kernel before 4.8.6.
local
low complexity
linux CWE-787
7.8
7.8
2019-08-19 CVE-2016-10906 Use After Free vulnerability in Linux Kernel
An issue was discovered in drivers/net/ethernet/arc/emac_main.c in the Linux kernel before 4.5.
local
high complexity
linux CWE-416
7.0
7.0
2019-08-19 CVE-2016-10905 Use After Free vulnerability in Linux Kernel
An issue was discovered in fs/gfs2/rgrp.c in the Linux kernel before 4.8.
local
low complexity
linux CWE-416
7.8
7.8
2019-08-16 CVE-2019-15117 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Linux Kernel
parse_audio_mixer_unit in sound/usb/mixer.c in the Linux kernel through 5.2.9 mishandles a short descriptor, leading to out-of-bounds memory access.
local
low complexity
linux CWE-119
7.8
7.8
2019-08-16 CVE-2019-15099 NULL Pointer Dereference vulnerability in multiple products
drivers/net/wireless/ath/ath10k/usb.c in the Linux kernel through 5.2.8 has a NULL pointer dereference via an incomplete address in an endpoint descriptor.
network
low complexity
linux canonical CWE-476
7.5
7.5
2019-08-13 CVE-2017-18509 Improper Input Validation vulnerability in multiple products
An issue was discovered in net/ipv6/ip6mr.c in the Linux kernel before 4.11.
local
low complexity
linux debian canonical CWE-20
7.8
7.8
2019-07-30 CVE-2019-10142 Integer Overflow or Wraparound vulnerability in Linux Kernel
A flaw was found in the Linux kernel's freescale hypervisor manager implementation, kernel versions 5.0.x up to, excluding 5.0.17.
local
low complexity
linux CWE-190
7.8
7.8