7 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
8.3 High
AI Score
Confidence
High
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.002 Low
EPSS
Percentile
51.9%
It was discovered that the VFIO PCI driver in the Linux kernel did not
properly handle attempts to access disabled memory spaces. A local attacker
could use this to cause a denial of service (system crash).
(CVE-2020-12888)
Mathy Vanhoef discovered that the Linux kernel’s WiFi implementation did
not properly verify certain fragmented frames. A physically proximate
attacker could possibly use this issue to inject or decrypt packets.
(CVE-2020-26141)
Mathy Vanhoef discovered that the Linux kernel’s WiFi implementation
accepted plaintext fragments in certain situations. A physically proximate
attacker could use this issue to inject packets. (CVE-2020-26145)
It was discovered that a race condition existed in the Atheros Ath9k WiFi
driver in the Linux kernel. An attacker could possibly use this to expose
sensitive information (WiFi network traffic). (CVE-2020-3702)
It was discovered a race condition existed in the Unix domain socket
implementation in the Linux kernel, leading to a use-after-free
vulnerability. A local attacker could use this to cause a denial of service
(system crash) or possibly execute arbitrary code. (CVE-2021-0920)
It was discovered that the IPv6 implementation in the Linux kernel
contained a use-after-free vulnerability. A local attacker could use this
to cause a denial of service (system crash) or possibly execute arbitrary
code. (CVE-2021-0935)
Zygo Blaxell discovered that the btrfs file system implementation in the
Linux kernel contained a race condition during certain cloning operations.
A local attacker could possibly use this to cause a denial of service
(system crash). (CVE-2021-28964)
Dan Carpenter discovered that the block device manager (dm) implementation
in the Linux kernel contained a buffer overflow in the ioctl for listing
devices. A privileged local attacker could use this to cause a denial of
service (system crash). (CVE-2021-31916)
It was discovered that the Option USB High Speed Mobile device driver in
the Linux kernel did not properly handle error conditions. A physically
proximate attacker could use this to cause a denial of service (system
crash) or possibly execute arbitrary code. (CVE-2021-37159)
It was discovered that the network packet filtering implementation in the
Linux kernel did not properly initialize information in certain
circumstances. A local attacker could use this to expose sensitive
information (kernel memory). (CVE-2021-39636)
Jann Horn discovered a race condition in the Unix domain socket
implementation in the Linux kernel that could result in a read-after-free.
A local attacker could use this to cause a denial of service (system crash)
or possibly execute arbitrary code. (CVE-2021-4083)
Luo Likang discovered that the FireDTV Firewire driver in the Linux kernel
did not properly perform bounds checking in some situations. A local
attacker could use this to cause a denial of service (system crash) or
possibly execute arbitrary code. (CVE-2021-42739)
Brendan Dolan-Gavitt discovered that the Marvell WiFi-Ex USB device driver
in the Linux kernel did not properly handle some error conditions. A
physically proximate attacker could use this to cause a denial of service
(system crash). (CVE-2021-43976)
Amit Klein discovered that the IPv4 implementation in the Linux kernel
could disclose internal state in some situations. An attacker could
possibly use this to expose sensitive information. (CVE-2021-45486)
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 16.04 | noarch | linux-image-4.4.0-223-lowlatency | < 4.4.0-223.256 | UNKNOWN |
Ubuntu | 16.04 | noarch | kernel-signed-image-4.4.0-210-generic-di | < 4.4.0-210.242 | UNKNOWN |
Ubuntu | 16.04 | noarch | kernel-signed-image-4.4.0-210-generic-di-dbgsym | < 4.4.0-210.242 | UNKNOWN |
Ubuntu | 16.04 | noarch | linux-image-4.4.0-210-generic | < 4.4.0-210.242 | UNKNOWN |
Ubuntu | 16.04 | noarch | linux-image-4.4.0-210-generic-dbgsym | < 4.4.0-210.242 | UNKNOWN |
Ubuntu | 16.04 | noarch | linux-image-4.4.0-210-lowlatency | < 4.4.0-210.242 | UNKNOWN |
Ubuntu | 16.04 | noarch | linux-image-4.4.0-210-lowlatency-dbgsym | < 4.4.0-210.242 | UNKNOWN |
Ubuntu | 16.04 | noarch | linux-image-virtual | < 4.4.0.223.230 | UNKNOWN |
Ubuntu | 16.04 | noarch | linux-cloud-tools-generic | < 4.4.0.210.216 | UNKNOWN |
Ubuntu | 16.04 | noarch | linux-cloud-tools-generic-lts-utopic | < 4.4.0.210.216 | UNKNOWN |
ubuntu.com/security/CVE-2020-12888
ubuntu.com/security/CVE-2020-26141
ubuntu.com/security/CVE-2020-26145
ubuntu.com/security/CVE-2020-3702
ubuntu.com/security/CVE-2021-0920
ubuntu.com/security/CVE-2021-0935
ubuntu.com/security/CVE-2021-28964
ubuntu.com/security/CVE-2021-31916
ubuntu.com/security/CVE-2021-37159
ubuntu.com/security/CVE-2021-39636
ubuntu.com/security/CVE-2021-4083
ubuntu.com/security/CVE-2021-42739
ubuntu.com/security/CVE-2021-43976
ubuntu.com/security/CVE-2021-45486
7 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
8.3 High
AI Score
Confidence
High
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.002 Low
EPSS
Percentile
51.9%