CVE-2015-5157

CVE-2015-5157 affects the Linux kernel prior to 4.1.6 on x86_64. The issue is in arch/x86/entry/entry_64.S where IRET faults during NMIs that occur in userspace are mishandled, potentially allowing a local user to gain privileges. The vulnerability is described in several connected advisories as ...

CVE-2017-18249

CVE-2017-18249 affects the Linux kernel’s f2fs implementation: the add_free_nid function in fs/f2fs/node.c fails to properly track an allocated nid, enabling local attackers to cause a denial of service via a race condition (and potentially other impact) when multiple threads run concurrently. Af...

CVE-2021-4204

Technical details for CVE-2021-4204 are not publicly provided in the supplied documents. Please monitor for updates from connected sources; current materials mention a Linux kernel memory access flaw but do not specify affected versions or fixes here.

CVE-2021-44879

CVE-2021-44879 affects the Linux kernel’s f2fs implementation: in gc_data_segment (fs/f2fs/gc.c) zeroing out or moving pages does not treat special files, causing a NULL pointer dereference in move_data_page and potentially a crash. The issue is fixed in Linux 5.16.3 (ChangeLog-5.16.3). Affected ...

CVE-2022-3649

CVE-2022-3649 affects the Linux kernel (nilfs_new_inode in fs/nilfs2/inode.c, component BPF). The issue is a use-after-free in nilfs_new_inode that can be triggered remotely, per the initial document and connected advisories. A patch exists to fix this issue (references include a kernel commit ID...

CVE-2017-18174

In Linux kernel before 4.7, the amd_gpio_remove function in drivers/pinctrl/pinctrl-amd.c calls pinctrl_unregister, leading to a double free. Affected: kernels prior to 4.7 (various distributions). The issue was addressed in later kernel updates (e.g., commits from Linus Torvalds’ tree referenced...

CVE-2020-10720

CVE-2020-10720 : A local attacker can crash the system due to a flaw in the Linux kernel’s GRO implementation in versions older than 5.2. The issue is specifically in GRO handling in the kernel networking path, not a remote exploit. The connected advisories reiterate the same root cause and indic...

CVE-2020-29373

CVE-2020-29373 affects the Linux kernel (pre-5.6) in fs/io_uring.c, where the root directory is unsafely handled during path lookups inside a mount namespace, allowing a process to escape to unintended filesystem locations. The issue is confirmed by the CVE description and linked ChangeLog-5.6 an...

CVE-2022-32296

CVE-2022-32296 affects the Linux kernel where, prior to 5.17.9, the TCP source port selection (Algorithm 4, Double-Hash Port Selection from RFC 6056) can allow a remote or local observer to identify clients by observed source ports. Connected advisories confirm the issue in kernel ments and note ...

CVE-2023-2002

CVE-2023-2002 affects the Linux kernel HCI sockets (net/bluetooth/hci_sock.c) due to a missing capability check. This can allow a local attacker to reconfigure Bluetooth interfaces and potentially leak information, disrupt connections, or spoof/deny service. Public documents confirm this CVE is l...

CVE-2012-6689

The CVE affects the Linux kernel before 3.5.5, where net/netlink/af_netlink.c:netlink_sendmsg does not validate dst_pid, enabling local spoofing of Netlink messages. Affected product is the Linux kernel (prior to 3.5.5); impact is listed as unspecified (local) with full confidentiality/integrity/...

CVE-2021-20268

The CVE-2021-20268 entry is confirmed to affect the Linux kernel eBPF verifier, where an out-of-bounds access via dev_map_init_map or sock_map_alloc could crash the system or enable local privilege escalation. Affected are kernel implementations before fixes in public advisories; mitigation is to...

CVE-2021-3428

CVE-2021-3428 describes a Linux kernel flaw in ext4: crafting an ext4 extent can overflow an integer in fs/ext4/extents.c (ext4_es_cache_extent), potentially allowing a local attacker with a privileged user to crash the system and cause an availability impact. Connected Nessus entry (UNITY_LINUX_...

CVE-2024-26777

CVE-2024-26777 concerns Linux kernel fbdev drivers (sis and savage) where pixclock may be used as a divisor before being validated, enabling a divide-by-zero error via user-supplied ioctl values. The root cause is that pixclock is used in calculations (e.g., drate) before a zero check, with fixes...

CVE-2017-18257

CVE-2017-18257 affects the Linux kernel: the __get_data_block function in fs/f2fs/data.c (before 4.11) can be triggered by crafted open and fallocate calls via an FS_IOC_FIEMAP ioctl, causing local denial of service (integer overflow and loop). Public advisories from Unity Linux, Ubuntu USN-3696-...

CVE-2022-0171

CVE-2022-0171 affects the Linux kernel KVM SEV API and allows a non-root host-user application to crash the host kernel by creating a confidential guest VM on AMD SEV-capable CPUs. The issue is local in scope (AV:L, AC:L, PR:L) with a CVSSv3 base score of 5.5 (I:A/H). A fix is available in the Li...

CVE-2022-0812

CVE-2022-0812 affects the Linux kernel NFS over RDMA (net/sunrpc/xprtrdma/rpc_rdma.c) enabling an information leak under normal user privileges. Miracle Linux AXSA-2024-8651 notes xprtrdma fixes for incorrect header size calculations, which is the specified remediation. Unity Linux entries list t...

CVE-2023-2194

CVE-2023-2194 is an out-of-bounds write in the Linux kernel SLIMpro I2C driver. The userspace data->block[0] value was not capped to 0–255 and was used as the memcpy size, potentially writing beyond the end of dma_buffer. This could crash the host or, per some advisories, allow local privilege...

CVE-2023-1855

CVE-2023-1855 describes a use-after-free in xgene_hwmon_remove (drivers/hwmon/xgene-hwmon.c) of the Linux kernel hardware monitoring driver. The Astra Linux security bulletin mirrors this flaw and notes it could allow a local attacker to crash the system or leak kernel memory due to a race condit...

CVE-2024-49974

CVE-2024-49974 : In the Linux kernel NFSD, there was no limit on concurrent async COPY operations, enabling potential DoS as each async COPY could create many 4MB chunks and run long. A fix introduces a simple per-namespace restriction to bound concurrent background COPY operations. When the limi...

CVE-2021-28714

Concrete details: CVE-2021-28714 and CVE-2021-28715 pertain to the Linux kernel netback driver in guests. Incoming packets for a guest are buffered until processing, with a long default client-side RX queue stall timeout (60 seconds) that can be bypassed; on fast UDP interfaces this can accumulat...

CVE-2021-38209

CVE-2021-38209 affects the Linux kernel prior to 5.12.2, where nf_conntrack_standalone.c leaks namespace changes across all net namespaces via NF_SYSCTL_CT_MAX, NF_SYSCTL_CT_EXPECT_MAX, and NF_SYSCTL_CT_BUCKETS. The issue enables observation of changes in any net namespace because updates are lea...

CVE-2011-4621

The CVE-2011-4621 entry concerns the Linux kernel prior to 2.6.37, where a clock-update optimization is flawed, allowing a local user to cause a denial of service (system hang) by running code in a loop. Affected software is the Linux kernel up to version before 2.6.37; the description does not s...

CVE-2023-1195

CVE-2023-1195 is a Linux kernel use-after-free in reconn_set_ipaddr_from_hostname (fs/cifs/connect.c) where server->hostname is not cleared, enabling a denial-of-service condition via invalid pointer use. Connected advisories (e.g., RHSA entries, MiracleLinux AXSA banners) reference this CVE a...

CVE-2023-33203

The CVE-2023-33203 entry concerns the Linux kernel prior to version 6.2.9, where a race condition can lead to a use-after-free in drivers/net/ethernet/qualcomm/emac/emac.c when a physically proximate attacker unplugs an emac device. Affected software: Linux kernel up to 6.2.9 (including distribut...

CVE-2016-10088

CVE-2016-10088 affects the Linux kernel sg path (block/bsg.c, drivers/scsi/sg.c) and is tied to KERNEL_DS handling. A local user could read/write arbitrary kernel memory or trigger use-after-free via /dev/sg, due to an incomplete fix for CVE-2016-9576. Connected advisories confirm the issue acros...

CVE-2023-1513

CVE-2023-1513: A flaw in KVM where, on 32-bit systems, uninitialized portions of the kvm_debugregs structure could be copied to userspace via KVM_GET_DEBUGREGS, causing an information leak. Astra Linux bulletin confirms the same KVM-based issue; no fix/version details are provided in the availabl...

CVE-2023-52619

The CVE-2023-52619 issue affects the Linux kernel’s pstore/ram subsystem, where setting CPU count to an odd number causes zone_size to be odd, breaking address alignment and risking crashes when accessing zone memory. The documented fix uses ALIGN_DOWN() to ensure even zone sizes, preventing non‑...

CVE-2024-50055

In CVE-2024-50055, the vulnerability is in the Linux kernel's driver core: bus_register() can double-free @priv after kset_register() if an error occurs, freeing it twice. The fix is to set @priv to NULL after the first free to prevent a second free. This mode C entry is supported by connected do...

CVE-2017-9074

Affected software: Linux kernel IPv6 fragmentation code. Root cause: nexthdr field may be associated with an invalid option, leading to an out-of-bounds read/BUG via crafted socket and send calls. Impact: local denial of service and potential unspecified effects (information leakage/compromise as...

CVE-2016-7910

CVE-2016-7910 is a Linux kernel use-after-free vulnerability in the disk_seqf_stop function (block/genhd.c) that allows a local attacker to gain elevated privileges by taking advantage of a stop operation after a failed start. Affected: Linux kernel versions before 4.7.1. Root cause: use-after-fr...

CVE-2021-45480

Mode C: CVE-2021-45480 affects the Linux kernel up to 5.15.10 (before 5.15.11). Root cause: memory leak in __rds_conn_create() in net/rds/connection.c under certain conditions. Impact: potential memory leak; CVE details state a leak rather than remote code execution. Public references note mitiga...

CVE-2019-19529

CVE-2019-19529 is a vulnerability in the Linux kernel prior to 5.3.11 where a malicious USB device could trigger a use-after-free in the mcba_usb.c CAN USB driver, CID-4d6636498c41. Exploitation would require a physical USB interaction and may lead to memory corruption. The connected Nessus advis...

CVE-2019-19602

CVE-2019-19602 – Linux kernel fpregs_state_valid cache issue : In arch/x86/include/asm/fpu/internal.h, the fpu_fpregs_owner_ctx caching can mishandle signal-based preemption when compiling with GCC 9, on amd64, leading to context-dependent attackers causing a memory corruption DoS and potentially...

CVE-2022-49124

The CVE-2022-49124 entry concerns the Linux kernel x86 MCE workaround for an erratum in fast string copy instructions (REP; MOVS*). A rare kernel panic can occur when an uncorrected error is in the first cache line of a page and the kernel executes page_copy from the previous page, causing an MCE...

CVE-2021-20239

CVE-2021-20239 describes a flaw in the Linux kernel prior to 5.4.92 within the BPF protocol. A local attacker can leak information about kernel internal addresses, impacting confidentiality. The issue is tied to the BPF verifier/run-time handling and does not require remote access. Affected produ...

CVE-2023-35823

CVE-2023-35823 is a use-after-free in the Linux kernel before 6.3.2, specifically in saa7134_finidev() within drivers/media/pci/saa7134/saa7134-core.c. Astra Linux and related entries confirm the same vulnerability class and location (saa7134-core.c). The risk is high (local attack vector, as per...

CVE-2017-7482

CVE-2017-7482 affects the Linux kernel prior to 4.12. When Kerberos 5 tickets are decoded using RXRPC keys, the code incorrectly assumes the size of a field, causing the size-remaining calculation to wrap and the data pointer to extend past the buffer end. This can lead to memory corruption and p...

CVE-2018-10021

CVE-2018-10021 affects the Linux kernel’s SAS SCSI host driver (drivers/scsi/libsas/sas_scsi_host.c) prior to 4.16. A local user can trigger certain failure conditions to cause a denial of service (ata_qc leak). A third party disputes the report’s relevance, noting the issue can occur only with p...

CVE-2023-42756

CVE-2023-42756 is a Linux kernel vulnerability in the Netfilter/IPSET subsystem caused by a race between IPSET_CMD_ADD and IPSET_CMD_SWAP that can lead to a kernel panic and local system crash. The description indicates a local attacker may crash the machine due to calling __ip_set_put on a wrong...

CVE-2023-52606

CVE-2023-52606 : In the Linux kernel, the vulnerability involves the powerpc/lib area where vector-operation sizes used by fp/vmx emulation were assumed to have a maximum size, but the true size is determined separately in analyse_instr(). A check was added to validate the maximum size of the vec...

CVE-2016-4913

The CVE-2016-4913 issue affects the Linux kernel (fs/isofs/rock.c) and concerns get_rock_ridge_filename mishandling of NM (alternate name) entries containing a NUL character. A local attacker mounting a crafted isofs filesystem could read kernel memory due to this information leak. The vulnerabil...

CVE-2023-23000

CVE-2023-23000 affects Linux kernel pre-5.17: in drivers/phy/tegra/xusb.c, tegra_xusb_find_port_node return value is mishandled, with callers expecting NULL in error cases but an error pointer is returned. The referenced fixes appear in kernel 5.17 changelog.

CVE-2023-3212

CVE-2023-3212 affects the Linux kernel gfs2 file system. A NULL pointer dereference occurs on corrupt gfs2 filesystems when the evict path references the journal descriptor structure after it has been freed, enabling a local privileged user to trigger a kernel panic. Affected: Linux kernel with g...

CVE-2024-50047

CVE-2024-50047 is a Linux kernel issue affecting the SMB client’s async crypto path. When performing async decryption for large reads, a use-after-free in the cryptography API can occur, crashing due to a freed AEAD request while the hardware crypto offload is still processing. The Astra Linux ad...

CVE-2021-3635

CVE-2021-3635 affects the Linux kernel netfilter implementation. The described flaw exists in versions prior to 5.5-rc7, where a user with root privileges (CAP_SYS_ADMIN) can panic the system when issuing netfilter netflow commands. The included sources (e.g., Unity Linux and MiracleLinux Nessus ...

CVE-2015-8812

CVE-2015-8812 affects the Linux kernel CXGB3 driver; a use-after-free in drivers/infiniband/hw/cxgb3/iwch_cm.c can be triggered by crafted packets to remotely execute code or cause a denial of service. Impact is a remote-code execution/DoS via network traffic with the vulnerability labeled as hig...

CVE-2023-45862

CVE-2023-45862 affects the ENE UB6250 USB reader driver in Linux kernels prior to 6.2.5. The issue is a memory-allocation overrun in drivers/usb/storage/ene_ub6250.c where an object could extend beyond the end of an allocation. Risk details are not elaborated in the provided documents beyond this...

CVE-2024-42223

CVE-2024-42223: Linux kernel vulnerability in media: dvb-frontends/tda10048 where state->xtal_hz (up to 16M) could overflow a 32-bit integer when multiplied by pll_mfactor. A 64-bit variable was introduced to hold the calculations, preventing overflow. The issue is resolved by this 64-bit calc...

CVE-2011-1093

CVE-2011-1093 affects the Linux kernel’s Datagram Congestion Control Protocol (DCCP). The vulnerable code path is dccp_rcv_state_process in net/dccp/input.c, which mishandles packets for a CLOSED endpoint. An attacker can trigger a NULL pointer dereference and OOPS by sending a DCCP-Close packet ...