Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2019-11-22	CVE-2015-7810	Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in multiple products libbluray MountManager class has a time-of-check time-of-use (TOCTOU) race when expanding JAR files local high complexity videolan redhat fedoraproject debian CWE-367	4.7
2019-11-20	CVE-2012-6136	Incorrect Default Permissions vulnerability in multiple products tuned 2.10.0 creates its PID file with insecure permissions which allows local users to kill arbitrary processes. local low complexity redhat fedoraproject debian CWE-276	5.5
2019-11-18	CVE-2014-5118	Improper Input Validation vulnerability in multiple products Trusted Boot (tboot) before 1.8.2 has a 'loader.c' Security Bypass Vulnerability local low complexity trusted-boot-project redhat fedoraproject CWE-20	5.5
2019-11-18	CVE-2019-19081	Memory Leak vulnerability in multiple products A memory leak in the nfp_flower_spawn_vnic_reprs() function in drivers/net/ethernet/netronome/nfp/flower/main.c in the Linux kernel before 5.3.4 allows attackers to cause a denial of service (memory consumption), aka CID-8ce39eb5a67a. network high complexity linux redhat opensuse CWE-401	5.9
2019-11-18	CVE-2019-19076	Memory Leak vulnerability in multiple products A memory leak in the nfp_abm_u32_knode_replace() function in drivers/net/ethernet/netronome/nfp/abm/cls.c in the Linux kernel before 5.3.6 allows attackers to cause a denial of service (memory consumption), aka CID-78beef629fd9. network high complexity linux canonical redhat CWE-401	5.9
2019-11-18	CVE-2019-19072	Memory Leak vulnerability in multiple products A memory leak in the predicate_parse() function in kernel/trace/trace_events_filter.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service (memory consumption), aka CID-96c5c6e6a5b6. local low complexity canonical fedoraproject redhat linux CWE-401	4.4
2019-11-18	CVE-2019-19068	Memory Leak vulnerability in multiple products A memory leak in the rtl8xxxu_submit_int_urb() function in drivers/net/wireless/realtek/rtl8xxxu/rtl8xxxu_core.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service (memory consumption) by triggering usb_submit_urb() failures, aka CID-a2cdd07488e6. low complexity linux redhat debian canonical fedoraproject opensuse CWE-401	4.6
2019-11-18	CVE-2019-19066	Memory Leak vulnerability in multiple products A memory leak in the bfad_im_get_stats() function in drivers/scsi/bfa/bfad_attr.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service (memory consumption) by triggering bfa_port_get_stats() failures, aka CID-0e62395da2bd. local high complexity linux redhat debian canonical fedoraproject opensuse CWE-401	4.7
2019-11-18	CVE-2019-19062	Memory Leak vulnerability in multiple products A memory leak in the crypto_report() function in crypto/crypto_user_base.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service (memory consumption) by triggering crypto_report_alg() failures, aka CID-ffdde5932042. local high complexity linux redhat debian canonical fedoraproject opensuse CWE-401	4.7
2019-11-14	CVE-2019-11135	TSX Asynchronous Abort condition on some CPUs utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access. local low complexity opensuse fedoraproject slackware hp intel canonical debian redhat oracle	6.5