Linux Kernel@6.0 Security Vulnerabilities and Issues — Linux Kernel@6.0 CVE List

Lucene search

LinuxLinux Kernel6.0

10 matches found

CVE•added 2022/08/31 4:15 p.m.•300 views

CVE-2022-3028

A race condition was found in the Linux kernel's IP framework for transforming packets (XFRM subsystem) when multiple calls to xfrm_probe_algs occurred simultaneously. This flaw could allow a local attacker to potentially trigger an out-of-bounds write or leak kernel heap memory by performing an ou...

7CVSS6.9AI score0.00018EPSS

CVE•added 2022/12/22 10:15 p.m.•241 views

CVE-2022-4662

A flaw incorrect access control in the Linux kernel USB core subsystem was found in the way user attaches usb device. A local user could use this flaw to crash the system.

5.5CVSS5.8AI score0.00014EPSS

CVE•added 2022/08/29 3:15 p.m.•199 views

CVE-2022-2961

A use-after-free flaw was found in the Linux kernel’s PLP Rose functionality in the way a user triggers a race condition by calling bind while simultaneously triggering the rose_bind() function. This flaw allows a local user to crash or potentially escalate their privileges on the system.

7CVSS6.7AI score0.00016EPSS

CVE•added 2022/09/27 11:15 p.m.•197 views

CVE-2022-3303

A race condition flaw was found in the Linux kernel sound subsystem due to improper locking. It could lead to a NULL pointer dereference while handling the SNDCTL_DSP_SYNC ioctl. A privileged local user (root or member of the audio group) could use this flaw to crash the system, resulting in a deni...

4.7CVSS5.7AI score0.00023EPSS

CVE•added 2022/10/19 6:15 p.m.•176 views

CVE-2022-3586

A flaw was found in the Linux kernel’s networking code. A use-after-free was found in the way the sch_sfb enqueue function used the socket buffer (SKB) cb field after the same SKB had been enqueued (and freed) into a child qdisc. This flaw allows a local, unprivileged user to crash the system, caus...

5.5CVSS6.4AI score0.00091EPSS

CVE•added 2022/09/09 3:15 p.m.•103 views

CVE-2022-2905

An out-of-bounds memory read flaw was found in the Linux kernel's BPF subsystem in how a user calls the bpf_tail_call function with a key larger than the max_entries of the map. This flaw allows a local user to gain unauthorized access to data.

5.5CVSS5.9AI score0.00018EPSS

CVE•added 2022/11/22 1:15 p.m.•83 views

CVE-2022-3910

Use After Free vulnerability in Linux Kernel allows Privilege Escalation. An improper Update of Reference Count in io_uring leads to Use-After-Free and Local Privilege Escalation.When io_msg_ring was invoked with a fixed file, it called io_fput_file() which improperly decreased its reference count ...

7.8CVSS7.5AI score0.00321EPSS

CVE•added 2022/10/17 12:15 p.m.•77 views

CVE-2022-3544

A vulnerability, which was classified as problematic, was found in Linux Kernel. Affected is the function damon_sysfs_add_target of the file mm/damon/sysfs.c of the component Netfilter. The manipulation leads to memory leak. It is recommended to apply a patch to fix this issue. The identifier of th...

5.5CVSS4.7AI score0.00011EPSS

CVE•added 2022/09/26 3:15 p.m.•59 views

CVE-2022-3103

off-by-one in io_uring module.

7.8CVSS7.5AI score0.0002EPSS

CVE•added 2022/09/13 4:15 p.m.•53 views

CVE-2022-3170

An out-of-bounds access issue was found in the Linux kernel sound subsystem. It could occur when the 'id->name' provided by the user did not end with '\0'. A privileged local user could pass a specially crafted name through ioctl() interface and crash the system or potentially escalate their pri...

7.8CVSS7.3AI score0.00019EPSS