CVE-2019-10126

all versions

A flaw was found in the Linux kernel. A heap based buffer overflow in mwifiex_uap_parse_tail_ies function in drivers/net/wireless/

9.8CRITICAL

CVE-2019-12615

all versions

An issue was discovered in get_vdev_port_node_info in arch/sparc/kernel/mdesc.c in the Linux kernel through 5.1.6. There is an unc

7.5HIGH

CVE-2019-3846

all versions

A flaw that allowed an attacker to corrupt memory and possibly escalate privileges was found in the mwifiex kernel module while co

8.8HIGH

CVE-2018-20839

all versions

systemd 242 changes the VT1 mode upon a logout, which allows attackers to read cleartext passwords in certain circumstances, such

4.3MEDIUM

CVE-2019-11815

all versions

An issue was discovered in rds_tcp_kill_sock in net/rds/tcp.c in the Linux kernel before 5.0.8. There is a race condition leading

8.1HIGH

CVE-2019-3844

all versions

It was discovered that a systemd service that uses DynamicUser property can get new privileges through the execution of SUID binar

7.8HIGH

CVE-2019-3843

all versions

It was discovered that a systemd service that uses DynamicUser property can create a SUID/SGID binary that would be allowed to run

7.8HIGH

CVE-2019-3900

all versions

An infinite loop issue was found in the vhost_net kernel module in Linux Kernel up to and including v5.1-rc6, while handling incom

7.7HIGH

CVE-2019-3882

all versions

A flaw was found in the Linux kernel's vfio interface implementation that permits violation of the user's locked memory limit. If

5.5MEDIUM

CVE-2019-3901

all versions

A race condition in perf_event_open() allows local attackers to leak sensitive data from setuid programs. As no relevant locks (in

4.7MEDIUM

CVE-2019-10125

all versions

An issue was discovered in aio_poll() in fs/aio.c in the Linux kernel through 5.0.4. A file may be released by aio_poll_wake() if

9.8CRITICAL

CVE-2019-3874

all versions

The SCTP socket buffer used by a userspace application is not accounted by the cgroups subsystem. An attacker can use this flaw to

6.5MEDIUM

CVE-2018-20669

all versions

An issue where a provided address with access_ok() is not checked was discovered in i915_gem_execbuffer2_ioctl in drivers/gpu/drm/

7.8HIGH

CVE-2019-1559

all versions

If an application encounters a fatal protocol error and then calls SSL_shutdown() twice (once to send a close_notify, and once to

5.9MEDIUM

CVE-2019-9162

all versions

In the Linux kernel before 4.20.12, net/ipv4/netfilter/nf_nat_snmp_basic_main.c in the SNMP NAT module has insufficient ASN.1 leng

7.8HIGH

CVE-2019-9003

all versions

In the Linux kernel before 4.20.5, attackers can trigger a drivers/char/ipmi/ipmi_msghandler.c use-after-free and OOPS by arrangin

7.5HIGH

CVE-2018-0734

all versions

The OpenSSL DSA signature algorithm has been shown to be vulnerable to a timing side channel attack. An attacker could use variati

5.9MEDIUM

CVE-2018-0735

all versions

The OpenSSL ECDSA signature algorithm has been shown to be vulnerable to a timing side channel attack. An attacker could use varia

5.9MEDIUM

CVE-2018-15919

all versions

Remotely observable behaviour in auth-gss2.c in OpenSSH through 7.8 could be used by remote attackers to detect existence of users

5.3MEDIUM

CVE-2018-15473

all versions

OpenSSH through 7.7 is prone to a user enumeration vulnerability due to not delaying bailout for an invalid authenticating user un

5.3MEDIUM

CVE-2016-8610

all versions

A denial of service flaw was found in OpenSSL 0.9.8, 1.0.1, 1.0.2 through 1.0.2h, and 1.1.0 in the way the TLS/SSL protocol define

7.5HIGH

CVE-2017-15906

all versions

The process_open function in sftp-server.c in OpenSSH before 7.6 does not properly prevent write operations in readonly mode, whic

5.3MEDIUM