Vulnerabilities > Linux > Medium

DATE CVE VULNERABILITY TITLE RISK
2022-06-10 CVE-2022-32981 Classic Buffer Overflow vulnerability in Linux Kernel 5.19
An issue was discovered in the Linux kernel through 5.18.3 on powerpc 32-bit platforms.
local
low complexity
linux CWE-120
4.6
2022-06-02 CVE-2022-1419 Use After Free vulnerability in Linux Kernel
The root cause of this vulnerability is that the ioctl$DRM_IOCTL_MODE_DESTROY_DUMB can decrease refcount of *drm_vgem_gem_object *(created in *vgem_gem_dumb_create*) concurrently, and *vgem_gem_dumb_create *will access the freed drm_vgem_gem_object.
local
low complexity
linux CWE-416
4.6
2022-06-02 CVE-2022-1789 NULL Pointer Dereference vulnerability in multiple products
With shadow paging enabled, the INVPCID instruction results in a call to kvm_mmu_invpcid_gva.
6.9
2022-06-02 CVE-2022-1943 Out-of-bounds Write vulnerability in Linux Kernel 5.18
A flaw out of bounds memory write in the Linux kernel UDF file system functionality was found in the way user triggers some file operation which triggers udf_write_fi().
local
low complexity
linux CWE-787
4.9
2022-05-25 CVE-2022-1678 Unspecified vulnerability in Linux Kernel
An issue was discovered in the Linux Kernel from 4.18 to 4.19, an improper update of sock reference in TCP pacing can lead to memory/netns leak, which can be used by remote clients.
network
low complexity
linux
5.0
2022-05-18 CVE-2022-1734 Use After Free vulnerability in Linux Kernel
A flaw in Linux Kernel found in nfcmrvl_nci_unregister_dev() in drivers/nfc/nfcmrvl/main.c can lead to use after free both read or write when non synchronized between cleanup routine and firmware download routine.
local
linux CWE-416
4.4
2022-05-12 CVE-2022-30594 Incorrect Default Permissions vulnerability in Linux Kernel
The Linux kernel before 5.17.2 mishandles seccomp permissions.
local
low complexity
linux CWE-276
4.6
2022-05-05 CVE-2022-1516 Use After Free vulnerability in Linux Kernel 5.18
A NULL pointer dereference flaw was found in the Linux kernel’s X.25 set of standardized network protocols functionality in the way a user terminates their session using a simulated Ethernet card and continued usage of this connection.
local
low complexity
linux CWE-416
4.9
2022-05-03 CVE-2022-20105 Out-of-bounds Write vulnerability in multiple products
In MM service, there is a possible out of bounds write due to a stack-based buffer overflow.
local
low complexity
google linux CWE-787
4.6
2022-05-03 CVE-2022-20106 Out-of-bounds Write vulnerability in multiple products
In MM service, there is a possible out of bounds write due to a heap-based buffer overflow.
local
low complexity
google linux CWE-787
4.6