AZL-6522 CVE-2020-16120 affecting package kernel for versions less than 5.10.78.1-1

Overlayfs did not properly perform permission checking when copying up files in an overlayfs and could be exploited from within a user namespace, if, for example, unprivileged user namespaces were allowed. It was possible to have a file not readable by an unprivileged user to be copied to a...

Design/Logic Flaw

Overlayfs did not properly perform permission checking when copying up files in an overlayfs and could be exploited from within a user namespace, if, for example, unprivileged user namespaces were allowed. It was possible to have a file not readable by an unprivileged user to be copied to a...

Linux kernel denial of service vulnerability (CNVD-2020-66311)

The Linux kernel is a computer operating system kernel written in C and assembly language, compliant with the POSIX standard, and distributed under the GNU General Public License. A code issue vulnerability exists in Linux kernel version 5.9.9 and earlier versions, which stems from an issue found...

UBUNTU-CVE-2020-27152

An issue was discovered in ioapiclazyupdateeoi in arch/x86/kvm/ioapic.c in the Linux kernel before 5.9.2. It has an infinite loop related to improper interaction between a resampler and edge triggering, aka CID-77377064c3a9...

CVE-2020-27152

An issue was discovered in ioapiclazyupdateeoi in arch/x86/kvm/ioapic.c in the Linux kernel before 5.9.2. It has an infinite loop related to improper interaction between a resampler and edge triggering, aka CID-77377064c3a9...

Amazon Linux AMI : kernel (ALAS-2020-1430)

The version of kernel installed on the remote host is prior to 4.14.193-113.317. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2020-1430 advisory. 2024-05-23: CVE-2020-14356 was added to this advisory. A flaw null pointer dereference in the Linux kernel cgroupv2...

Linux kernel code issue vulnerability (CNVD-2020-31116)

Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. A code issue vulnerability exists in the 'tw5864handleframe' function in the drivers/media/pci/tw5864/tw5864-video.c file in versions of Linux kernel prior to 5.2. An...

Linux kernel buffer overflow vulnerability (CNVD-2020-23406)

Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. A buffer overflow vulnerability exists in the mpolparsestr file in mm/mempolicy.c in Linux kernel 5.6.2 and earlier, which stems from a program failing to properly...

PT-2020-4971 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 5.5.11 Description: The issue is related to the kmem cache alloc bulk function in the Linux kernel, specifically in the mm/slub.c file. It is associated with errors in executing multithreaded tasks, known as a...

Linux kernel information disclosure vulnerability (CNVD-2020-16637)

Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. A security vulnerability exists in the fs/proc/base.c file in Linux kernel 3.1 and earlier versions. A local attacker can exploit this vulnerability to obtain sensitiv...

DEBIAN-CVE-2019-3016

In a Linux KVM guest that has PV TLB enabled, a process in the guest kernel may be able to read memory locations from another process in the same guest. This problem is limit to the host running linux kernel 4.10 with a guest running linux kernel 4.16 or later. The problem mainly affects AMD...

Intel® Processor Graphics Advisory

Summary: A potential security vulnerability in Intel® Processor Graphics may allow information disclosure. Intel is releasing software updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2019-14615 Description: Insufficient control flow in certain data structures f...

UBUNTU-CVE-2019-20096

In the Linux kernel before 5.1, there is a memory leak in featregistersp in net/dccp/feat.c, which may cause denial of service, aka CID-1d3ff0950e2b...

Linux kernel memory leak vulnerability (CNVD-2020-03122)

Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. A security vulnerability exists in the drivers/net/can/usb/kvaserusb/kvaserusbleaf.c driver in Linux kernel 5.4.6 and earlier. An attacker can exploit this vulnerabili...

CVE-2019-19814

In the Linux kernel 5.0.21, mounting a crafted f2fs filesystem image can cause removedirtysegment slab-out-of-bounds write access because an array is bounded by the number of dirty types 8 but the array index can exceed this...

Linux kernel buffer overflow vulnerability (CNVD-2019-44743)

Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. A buffer overflow vulnerability exists in the 'f2fsbuildsegmentmanager' function in the fs/f2fs/segment.c file in Linux kernel version 5.0.21. The vulnerability stems...

DEBIAN-CVE-2019-19036

btrfsrootnode in fs/btrfs/ctree.c in the Linux kernel through 5.3.12 allows a NULL pointer dereference because rcudereferenceroot-node can be zero...

DEBIAN-CVE-2019-19081

A memory leak in the nfpflowerspawnvnicreprs function in drivers/net/ethernet/netronome/nfp/flower/main.c in the Linux kernel before 5.3.4 allows attackers to cause a denial of service memory consumption, aka CID-8ce39eb5a67a...

DEBIAN-CVE-2019-19061

A memory leak in the adisupdatescanmodeburst function in drivers/iio/imu/adisbuffer.c in the Linux kernel before 5.3.9 allows attackers to cause a denial of service memory consumption, aka CID-9c0530e898f3...

DEBIAN-CVE-2019-19051

A memory leak in the i2400moprfkillswtoggle function in drivers/net/wimax/i2400m/op-rfkill.c in the Linux kernel before 5.3.11 allows attackers to cause a denial of service memory consumption, aka CID-6f3ef5c25cc7...