linux linux kernel 5.15 vulnerabilities and exploits

(subscribe to this query)

4.4

CVSSv3

A vulnerability was found in the Linux kernel's KVM subsystem in arch/x86/kvm/lapic.c kvm_free_lapic when a failure allocation was detected. In this flaw the KVM subsystem may crash the kernel due to mishandling of memory errors that happens during VCPU construction, which a...

Linux Linux Kernel Linux Linux Kernel 5.15

2 Github repositories

5.5

CVSSv3

A use-after-free flaw was found in the add_partition in block/partitions/core.c in the Linux kernel. A local attacker with user privileges could cause a denial of service on the system. The issue results from the lack of code cleanup when device_add call fails when adding a parti...

Linux Linux Kernel 5.15 Linux Linux Kernel

5.5

CVSSv3

A memory leak flaw was found in the Linux kernel's ccp_run_aes_gcm_cmd() function that allows an malicious user to cause a denial of service. The vulnerability is similar to the older CVE-2019-18808. The highest threat from this vulnerability is to system availability.

Linux Linux Kernel 5.15 Linux Linux Kernel

5.5

CVSSv3

A vulnerability was found in btrfs_alloc_tree_b in fs/btrfs/extent-tree.c in the Linux kernel due to an improper lock operation in btrfs. In this flaw, a user with a local privilege may cause a denial of service (DOS) due to a deadlock problem.

Linux Linux Kernel 5.15 Linux Linux Kernel Debian Debian Linux 9.0

5.5

CVSSv3

A flaw was found in s390 eBPF JIT in bpf_jit_insn in arch/s390/net/bpf_jit_comp.c in the Linux kernel. In this flaw, a local attacker with special user privilege can circumvent the verifier and may lead to a confidentiality problem.

Linux Linux Kernel 5.15 Linux Linux Kernel Fedoraproject Fedora 34 Redhat Enterprise Linux 7.0 Redhat Enterprise Linux 8.0

4.7

CVSSv3

A race condition accessing file object in the Linux kernel OverlayFS subsystem was found in the way users do rename in specific way with OverlayFS. A local user could use this flaw to crash the system.

Linux Linux Kernel 5.15 Linux Linux Kernel Redhat Enterprise Linux 7.0 Redhat Enterprise Linux 8.0 Debian Debian Linux 9.0 Debian Debian Linux 10.0

5.5

CVSSv3

A null pointer dereference vulnerability was found in nft_dynset_init() in net/netfilter/nft_dynset.c in nf_tables in the Linux kernel. This issue may allow a local attacker with CAP_NET_ADMIN user privilege to trigger a denial of service.

Linux Linux Kernel 6.7 Linux Linux Kernel Redhat Enterprise Linux 8.0 Redhat Enterprise Linux 9.0

5.5

CVSSv3

A flaw was found in the sctp_make_strreset_req function in net/sctp/sm_make_chunk.c in the SCTP network protocol in the Linux kernel with a local user privilege access. In this flaw, an attempt to use more buffer than is allocated triggers a BUG_ON issue, leading to a denial of s...

Linux Linux Kernel 5.15 Linux Linux Kernel Fedoraproject Fedora 35 Oracle Communications Cloud Native Core Binding Support Function 22.1.3 Oracle Communications Cloud Native Core Policy 22.2.0 Oracle Communications Cloud Native Core Network Exposure Function 22.1.1

5.5

CVSSv3

A NULL pointer dereference issue was found in KVM when releasing a vCPU with dirty ring support enabled. This flaw allows an unprivileged local attacker on the host to issue specific ioctl calls, causing a kernel oops condition that results in a denial of service.

Linux Linux Kernel 5.18 Linux Linux Kernel Redhat Enterprise Linux 8.0 Redhat Enterprise Linux 9.0

7.8

CVSSv3

In the Linux kernel 6.0.8, there is a use-after-free in inode_cgwb_move_to_attached in fs/fs-writeback.c, related to __list_del_entry_valid.

Linux Linux Kernel

2 Github repositories

Get Started

1 2 3 4 5 6 NEXT »

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook