CVE-2024-6387

all versions

A security regression (CVE-2006-5051) was discovered in OpenSSH's server (sshd). There is a race condition which can lead sshd to

8.1HIGH

CVE-2024-26733

all versions

In the Linux kernel, the following vulnerability has been resolved: arp: Prevent overflow in arp_req_get(). syzkaller reported a

5.5MEDIUM

CVE-2023-1077

all versions

In the Linux kernel, pick_next_rt_entity() may return a type confused entry, not detected by the BUG_ON condition, as the confused

7.0HIGH

CVE-2022-36879

all versions

An issue was discovered in the Linux kernel through 5.18.14. xfrm_expand_policies in net/xfrm/xfrm_policy.c can cause a refcount t

5.5MEDIUM

CVE-2022-1473

all versions

The OPENSSL_LH_flush() function, which empties a hash table, contains a bug that breaks reuse of the memory occuppied by the remov

7.5HIGH

CVE-2022-1434

all versions

The OpenSSL 3.0 implementation of the RC4-MD5 ciphersuite incorrectly uses the AAD data as the MAC key. This makes the MAC key tri

5.9MEDIUM

CVE-2022-1343

all versions

The function OCSP_basic_verify verifies the signer certificate on an OCSP response. In the case where the (non-default) flag OCS

5.3MEDIUM

CVE-2022-1292

all versions

The c_rehash script does not properly sanitise shell metacharacters to prevent command injection. This script is distributed by so

7.3HIGH

CVE-2021-4203

all versions

A use-after-free read flaw was found in sock_getsockopt() in net/core/sock.c due to SO_PEERCRED and SO_PEERGROUPS race with listen

6.8MEDIUM

CVE-2020-35508

all versions

A flaw possibility of race condition and incorrect initialization of the process id was found in the Linux kernel child/parent pro

4.5MEDIUM

CVE-2020-29661

all versions

A locking issue was discovered in the tty subsystem of the Linux kernel through 5.9.13. drivers/tty/tty_jobctrl.c allows a use-aft

7.8HIGH

CVE-2020-29660

all versions

A locking inconsistency issue was discovered in the tty subsystem of the Linux kernel through 5.9.13. drivers/tty/tty_io.c and dri

4.4MEDIUM

CVE-2020-15436

all versions

Use-after-free vulnerability in fs/block_dev.c in the Linux kernel before 5.8 allows local users to gain privileges or cause a den

6.7MEDIUM

CVE-2020-15778

all versions

scp in OpenSSH through 8.3p1 allows command injection in the scp.c toremote function, as demonstrated by backtick characters in th

7.4HIGH

CVE-2020-13143

all versions

gadget_dev_desc_UDC_store in drivers/usb/gadget/configfs.c in the Linux kernel 3.16 through 5.6.13 relies on kstrdup without consi

6.5MEDIUM

CVE-2020-12888

all versions

The VFIO PCI driver in the Linux kernel through 5.6.13 mishandles attempts to access disabled memory space.

5.3MEDIUM

CVE-2020-12771

all versions

An issue was discovered in the Linux kernel through 5.6.11. btree_gc_coalesce in drivers/md/bcache/btree.c has a deadlock if a coa

5.5MEDIUM

CVE-2020-12770

all versions

An issue was discovered in the Linux kernel through 5.6.11. sg_write lacks an sg_remove_request call in a certain failure case, ak

6.7MEDIUM

CVE-2020-12769

all versions

An issue was discovered in the Linux kernel before 5.4.17. drivers/spi/spi-dw.c allows attackers to cause a panic via concurrent c

5.5MEDIUM

CVE-2020-12653

all versions

An issue was found in Linux kernel before 5.5.4. The mwifiex_cmd_append_vsie_tlv() function in drivers/net/wireless/marvell/mwifie

7.8HIGH

CVE-2020-11884

all versions

In the Linux kernel 4.19 through 5.6.7 on the s390 platform, code execution may occur because of a race condition, as demonstrated

7.0HIGH

CVE-2020-8835

all versions

In the Linux kernel 5.5.0 and newer, the bpf verifier (kernel/bpf/verifier.c) did not properly restrict the register bounds for 32

7.8HIGH

CVE-2019-18282

all versions

The flow_dissector feature in the Linux kernel 4.3 through 5.x before 5.3.10 has a device tracking vulnerability, aka CID-55667441

5.3MEDIUM

CVE-2019-20095

all versions

mwifiex_tm_cmd in drivers/net/wireless/marvell/mwifiex/cfg80211.c in the Linux kernel before 5.1.6 has some error-handling cases t

5.5MEDIUM

CVE-2019-19965

all versions

In the Linux kernel through 5.4.6, there is a NULL pointer dereference in drivers/scsi/libsas/sas_discover.c because of mishandlin

4.7MEDIUM

CVE-2019-5108

all versions

An exploitable denial-of-service vulnerability exists in the Linux kernel prior to mainline 5.3. An attacker could exploit this vu

6.5MEDIUM

CVE-2019-19448

all versions

In the Linux kernel 5.0.21 and 5.3.11, mounting a crafted btrfs filesystem image, performing some operations, and then making a sy

7.8HIGH

CVE-2019-18683

all versions

An issue was discovered in drivers/media/platform/vivid in the Linux kernel through 5.3.8. It is exploitable for privilege escalat

7.0HIGH

CVE-2019-14816

all versions

There is heap-based buffer overflow in kernel, all versions up to, excluding 5.3, in the marvell wifi chip driver in Linux kernel,

7.8HIGH

CVE-2019-14814

all versions

There is heap-based buffer overflow in Linux kernel, all versions up to, excluding 5.3, in the marvell wifi chip driver in Linux k

7.8HIGH

CVE-2019-10126

all versions

A flaw was found in the Linux kernel. A heap based buffer overflow in mwifiex_uap_parse_tail_ies function in drivers/net/wireless/

9.8CRITICAL

CVE-2019-3846

all versions

A flaw that allowed an attacker to corrupt memory and possibly escalate privileges was found in the mwifiex kernel module while co

8.8HIGH