CVE-2021-20292

CVE-2021-20292 affects the Linux kernel up to version

CVE-2023-6915

CVE-2023-6915 is a NULL pointer dereference in ida_free() within lib/idr.c of the Linux kernel leading to potential denial of service. Connected advisories show affected kernels across distributions: Astra Linux lists linux-5.10, 5.15, 6.1; CloudLinux notes ida_free in kernel (CVE-2023-6915) for ...

CVE-2024-0607

The CVE-2024-0607 entry concerns the Linux kernel netfilter/nft_tables vulnerability in nft_byteorder_eval(). A loop writes 8 bytes per iteration into a dst array of u32 elements, causing out-of-bounds writes and corruption of the dst array. This can enable a local user to cause a Denial of Servi...

CVE-2021-38207

CVE-2021-38207 affects the Linux kernel driver: drivers/net/ethernet/xilinx/ll_temac_main.c. It allows remote attackers to cause a denial of service (buffer overflow and lockup) by sending heavy network traffic for about ten minutes. The issue is in the ll_temac_main.c path, and the vulnerability...

CVE-2022-4095

CVE-2022-4095 affects the Linux kernel; a use-after-free in cmd_hdl_filter (drivers/staging/rtl8712/rtl8712_cmd.c) allows a local attacker to cause DoS and escalate privileges. Affected: Linux kernel before 5.19.2. Impact is local/privilege escalation with high severity. Mitigation: upgrade to ke...

CVE-2023-28772

Summary of CVE-2023-28772 : The Linux kernel prior to 5.13.3 contains a vulnerability in lib/seq_buf.c: seq_buf_putmem_hex exploitable via a buffer overflow in the seq_buf_putmem_hex path. This could allow a local attacker to overflow a buffer and potentially crash or corrupt kernel memory, with ...

CVE-2023-45863

The CVE-2023-45863 issue affects the Linux kernel prior to 6.2.3 and is triggered by a race condition in lib/kobject.c that causes a fill_kobj_path out-of-bounds write when run with root privileges. Public sources in connected documents (Astra Linux bulletin and IBM advisories) describe the same ...

CVE-2023-52446

CVE-2023-52446 affects the Linux kernel BPF subsystem. A race between btf_put() and map_free() can cause a slab-use-after-free in bpf_rb_root_free, as shown by the kasan trace. The impact is described as a use-after-free condition that can lead to a kernel crash or memory corruption. A fix has be...

CVE-2024-42227

CVE-2024-42227 affects the Linux kernel's drm/amd/display: fix overlapping copy within dml_core_mode_programming. The issue arises when &mode_lib->mp.Watermark and &locals->Watermark reference the same address, leading to unsafe memcpy behavior. The vulnerability is mitigated by replacing m...

CVE-1999-0061

CVE-1999-0061 concerns the BSD line printer daemon (lpd). Multiple sources confirm a vulnerability in lpd related to file creation and deletion and remote execution. Affected software is BSD-derived lpd implementations; the root cause is not explicitly detailed in the provided documents. Reported...

CVE-2017-18203

The vulnerability CVE-2017-18203 affects the Linux kernel in the DM (device-mapper) path: dm_get_from_kobject() in drivers/md/dm.c is vulnerable to a race with __dm_destroy during creation/removal of DM devices. Exploitation from a local attacker could cause a Denial of Service. Affected are kern...

CVE-2017-18208

CVE-2017-18208 affects the Linux kernel prior to 4.14.4. The vulnerability lies in the MADVISE_WILLNEED handling in mm/madvise.c, where triggering MADVISE_WILLNEED for a DAX mapping allows a local attacker to cause a denial of service via an infinite loop. The issue is local in scope and is tied ...

CVE-2017-7645

The CVE-2017-7645 issue affects the Linux kernel NFSv2/v3 server (nfsd) and is triggered by processing long RPC replies. The root cause is an out-of-bounds memory access in the NFS server paths (net/sunrpc/svc.c, fs/nfsd/nfs3xdr.c, fs/nfsd/nfsxdr.c) that can lead to a system crash (DoS). Affected...

CVE-2019-18805

CVE-2019-18805 affects the Linux kernel prior to 5.0.11. A signed integer overflow occurs in net/ipv4/sysctl_net_ipv4.c and in tcp_input.c (tcp_ack_update_rtt()) when a very large value is written to /proc/sys/net/ipv4/tcp_min_rtt_wlen, potentially causing a denial of service or other impact. Con...

CVE-2022-4269

CVE-2022-4269 : Linux kernel Traffic Control (TC) vulnerability. When using the mirred action to redirect egress to ingress, a local unprivileged user may trigger a CPU soft lockup (ABBA deadlock) during TCP/SCTP retransmission, causing denial of service. Affected: Linux kernel TC subsystem. Root...

CVE-2023-2162

Astra Linux security bulletin mirrors CVE-2023-2162, documenting a use-after-free in Linux kernel (iscsi_sw_tcp_session_create in drivers/scsi/iscsi_tcp.c) that could allow a local attacker to leak kernel internal information. The Astra Linux entry identifies the affected kernel subcomponent (SCS...

CVE-2023-4147

CVE-2023-4147 is a local-privilege-escalation use-after-free in the Linux kernel nf_tables/netfilter code. The flaw occurs when adding a rule with NFTA_RULE_CHAIN_ID, where nft_tables_delrule or related NFT rule handling can release objects in a way that leaves a dangling pointer, enabling local ...

CVE-2024-25739

CVE-2024-25739 affects Linux kernel up to 6.7.4, where create_empty_lvol in drivers/mtd/ubi/vtbl.c may allocate zero bytes due to a missing check for ubi->leb_size, causing a crash (local, to crash an attacker-controlled workload). The issue is mapped to the ubi/VTBL path in the kernel; a fix ...

CVE-2024-56785

CVE-2024-56785 affects the Linux kernel lifecycle on MIPS Loongson64 platforms (ls7a). The issue centers on DTS/PCIe port node handling: incorrect PCIe port node definitions in ls7a DTS files caused dtc/interpreter warnings and a runtime warning related to address-cell/interrupt-provider mappings...

CVE-2018-10938

CVE-2018-10938 is a DoS in the Linux kernel (present since v4.0-rc1 to v4.13-rc4) where a crafted remote network packet can force an infinite loop in cipso_v4_optptr() (net/ipv4/cipso_ipv4.c). Exploitation requires a non-default LSM/NetLabel configuration. The issue is triggered by network packet...

CVE-2019-19072

The CVE-2019-19072 issue is a Linux kernel memory leak in the predicate_parse() function (kernel/trace/trace_events_filter.c) that affects kernels up to 5.3.11, potentially enabling local attackers to cause a denial of service via memory consumption. The connected Nessus entries confirm the same ...

CVE-2019-19078

CVE-2019-19078 refers to a memory leak in the ath10k_usb_hif_tx_sg() function (drivers/net/wireless/ath/ath10k/usb.c) of the Linux kernel up to 5.3.11. An attacker can cause denial of service via memory consumption by triggering usb_submit_urb() failures. The vulnerability is scoped to the kernel...

CVE-2019-19528

CVE-2019-19528: Linux kernel pre-5.3.7 contains a use-after-free in the iowarrior USB driver (drivers/usb/misc/iowarrior.c) triggered by a malicious USB device. Public advisories (MiracleLinux AXSA:2021-2148:12 and Unity Linux UTSA references) confirm this CVE and map it to kernel builds up to 5....

CVE-2020-29369

CVE-2020-29369 is a real Linux kernel vulnerability described in the connected docs. It is a race condition in mm/mmap.c (expand_downwards vs. expand_upwards) that can occur during munmap page-table free operations, present in Linux kernels before 5.7.11 (CID-246c320a8cfe). The issue is triggered...

CVE-2020-36558

CVE-2020-36558 refers to a race condition in the Linux kernel before 5.5.7 involving VT_RESIZEX that can cause a NULL pointer dereference and a general protection fault. The vulnerability is triggered locally within the kernel, with impact described as high availability risk if exploited, and the...

CVE-2021-28715

CVE-2021-28715 concerns the Linux kernel netback driver in Xen guests. The Xen netback path buffers incoming guest data until the guest processes it, and although there are safeguards to limit buffering, an attacker running in a guest can bypass them. Specifically, when using UDP on a fast interf...

CVE-2022-28389

CVE-2022-28389 : In the Linux kernel up to version 5.17.1, mcba_usb_start_xmit implemented in drivers/net/can/usb/mcba_usb.c has a double free vulnerability. The issue is documented in multiple advisories linked to this CVE, including Astra Linux and Amazon Linux 2 ALAS advisories, which explicit...

CVE-2023-3161

CVE-2023-3161 : Linux Kernel fbcon has a shift-out-of-bounds in fbcon_set_font when font->width/height > 32, causing undefined behavior and potential denial of service. Connected documents corroborate the same fbcon font handling issue in the Linux kernel. The Astra Linux bulletin mentions ...

CVE-2024-38541

CVE-2024-38541: Linux kernel of_modalias() had a potential buffer overflow when the destination buffer was too small, causing len to become negative and str to point beyond the buffer. The fix adds a buffer overflow check after the first snprintf() and corrects the check after strlen() to account...

CVE-2025-21669

Technical details for CVE-2025-21669 are not publicly provided in the supplied documents. No affected products, versions, root causes, exploits, or fixes are specified here; please refer to the original CVE entry or other sources for specifics.

CVE-2009-2692

CVE-2009-2692 stems from uninitialized proto_ops in the Linux kernel (SOCKOPS_WRAP), allowing local users to trigger a NULL pointer dereference via mmap of page zero and gain privileges by invoking an unavailable operation (e.g., sock_sendpage on PF_PPPOX). Public details reference local privileg...

CVE-2018-10877

CVE-2018-10877 describes a vulnerability in the Linux kernel ext4 filesystem where an out-of-bounds access in ext4_ext_drop_refs() can be triggered by operating on a crafted ext4 image. The connected sources indicate a local attacker could mount or otherwise interact with a crafted ext4 image to ...

CVE-2020-28588

The CVE-2020-28588 information disclosure exists in the Linux Kernel /proc/pid/syscall interface for 5.1 Stable through 5.4.66, introduced in v5.1-rc4 (commit 631b7abacd02b88f4b0795c08b54ad4fc3e7c7c0) and still present in 5.10-rc4. An attacker can read /proc/pid/syscall to trigger memory contents...

CVE-2022-1116

CVE-2022-1116 is a Linux kernel local‑privilege‑escalation issue due to an integer overflow in io_uring. Affected: Linux kernel versions prior to 5.4.189; and 5.4.24 and later versions (per the entry). Root cause: overflow/wraparound in io_uring handling that can lead to memory corruption. Impact...

CVE-2022-3303

CVE-2022-3303 is a race-condition vulnerability in the Linux kernel sound subsystem (SNDCTL_DSP_SYNC ioctl) that can cause a NULL pointer dereference and denial of service via a locally privileged user. The issue affects the Linux kernel’s sound code path and can crash the system, potentially ena...

CVE-2024-36886

The CVE-2024-36886 issue is a use-after-free in TIPC (tipc_buf_append) in the Linux kernel, leading to a remote code execution vulnerability via the tipc path. The associated advisories (e.g., ALSA-2024:4583) confirm a fix in kernel security updates and list CVE-2024-36886 among fixed items. Affe...

CVE-2016-5696

Technical details about CVE-2016-5696 are not publicly provided in the supplied connected documents; monitor for updates.

CVE-2016-6828

The vulnerability CVE-2016-6828 affects the Linux kernel and is triggered by a local attacker exploiting a use-after-free in the TCP transmit path. Specifically, the tcp_check_send_head path in include/net/tcp.h leaves SACK state in an inconsistent condition after a failed data copy, enabling a l...

CVE-2017-2636

CVE-2017-2636 details (NORMAL mode) : A race condition in the Linux kernel N_HLDC driver (n_hdlc) can lead to a double free. A local, unprivileged user who sets the HDLC line discipline on a tty device could exploit this to escalate privileges or cause a denial of service (system crash). Exploita...

CVE-2020-16119

CVE-2020-16119 is a Linux kernel use-after-free vulnerability in DCCP where a socket reused as a listener after release (with an attached dccps_hc_tx_ccid) can be exploited locally. Affected: Linux kernel variants affected by upstream fixes; the issue allows local escalation to execute code or ca...

CVE-2022-33981

CVE-2022-33981 affects the Linux kernel’s floppy driver (drivers/block/floppy.c) up to version 5.17.6. The issue is a concurrency use-after-free after deallocating raw_cmd in the raw_cmd_ioctl function, leading to a local denial-of-service. Public documents confirm the vulnerable code path and th...

CVE-2023-1079

The CVE-2023-1079 issue is a Linux kernel use-after-free involving asus_kbd_backlight_set. A malicious USB device advertising as an Asus device can trigger a use-after-free through the LED controller, when the device is disconnecting, which may schedule a work_struct and free the struct asus_kbd_...

CVE-2023-52594

CVE-2023-52594 (Linux kernel) involves a potential array-index-out-of-bounds read in the ath9k_htc_txstatus() path of the wifi/ath9k driver. The issue occurs when txs->cnt (data from a URB from a USB device) exceeds HTC_MAX_TX_STATUS (12); UBSAN reports index 13 out of range. The code path lac...

CVE-2024-43902

CVE-2024-43902 is a Linux kernel vulnerability in drm/amd/display where a null pointer could be dereferenced. The fix adds a null checker before passing variables to functions, addressing three NULL_RETURNS issues reported by Coverity. Connected documents confirm the root cause and the remediatio...

CVE-2024-53142

CVE-2024-53142: Linux kernel initramfs fix for filename buffer overrun. Root cause: during initramfs cpio extraction, the do_name() path passed a non-zero-terminated filename to kernel file operations, allowing trailing bytes from uninitialized memory to be incorporated into a created path. Impac...

CVE-2025-21638

CVE-2025-21638 - Linux kernel SCTP sysctl auth_enable is fixed. The issue arises from using the current task’s nsproxy via the net structure (current->nsproxy) when reading sctp. sysctl settings, leading to potential NULL pointer dereference if current task is exiting. The fix replaces direct ...

CVE-2019-3901

CVE-2019-3901 describes a race condition in perf_event_open() that can leak data from setuid processes. The root cause is that cred_guard_mutex is not held during the ptrace_may_access() check, allowing a target task to execve() with setuid execution before perf_event_alloc() attaches, bypassing ...

CVE-2020-28941

CVE-2020-28941 affects the Linux kernel’s Speakup screen reader (drivers/accessibility/spk_ttyio.c) up to version 5.9.9. Local attackers could trigger a denial of service by an invalid free when the line discipline is used more than once, leading to a system crash. The issue is confirmed in multi...

CVE-2024-41013

CVE-2024-41013 : The Linux kernel vulnerability in xfs: don't walk off the end of a directory data block has been fixed. The issue was caused by insufficient bounds checks for xfs_dir2_data_unused and xfs_dir2_data_entry, which could allow an out-of-bounds read during directory traversal if a cra...

CVE-2017-9076

CVE-2017-9076 is a Linux kernel issue reported in the CentOS/Red Hat advisory set (CESA-2018:1854) tied to the IPv6 DCCP implementation. The vulnerability arises from mishandling of inheritance in the IPv6 DCCP code, allowing a local attacker to cause a denial of service or possibly other unspeci...