Search Results (Refine Search)
- Results Type: Overview
- Keyword (text search): Linux kernel
- Search Type: Search All
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2022-34670 |
NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer handler, where an unprivileged regular user can cause truncation errors when casting a primitive to a primitive of smaller size causes data to be lost in the conversion, which may lead to denial of service or information disclosure. Published: December 30, 2022; 6:15:09 PM -0500 |
V3.1: 7.8 HIGH V2.0:(not available) |
CVE-2022-47946 |
An issue was discovered in the Linux kernel 5.10.x before 5.10.155. A use-after-free in io_sqpoll_wait_sq in fs/io_uring.c allows an attacker to crash the kernel, resulting in denial of service. finish_wait can be skipped. An attack can occur in some situations by forking a process and then quickly terminating it. NOTE: later kernel versions, such as the 5.15 longterm series, substantially changed the implementation of io_sqpoll_wait_sq. Published: December 23, 2022; 5:15:08 PM -0500 |
V3.1: 5.5 MEDIUM V2.0:(not available) |
CVE-2022-47943 |
An issue was discovered in ksmbd in the Linux kernel 5.15 through 5.19 before 5.19.2. There is an out-of-bounds read and OOPS for SMB2_WRITE, when there is a large length in the zero DataOffset case. Published: December 23, 2022; 12:15:08 PM -0500 |
V3.1: 8.1 HIGH V2.0:(not available) |
CVE-2022-47942 |
An issue was discovered in ksmbd in the Linux kernel 5.15 through 5.19 before 5.19.2. There is a heap-based buffer overflow in set_ntacl_dacl, related to use of SMB2_QUERY_INFO_HE after a malformed SMB2_SET_INFO_HE command. Published: December 23, 2022; 11:15:12 AM -0500 |
V3.1: 8.8 HIGH V2.0:(not available) |
CVE-2022-47941 |
An issue was discovered in ksmbd in the Linux kernel 5.15 through 5.19 before 5.19.2. fs/ksmbd/smb2pdu.c omits a kfree call in certain smb2_handle_negotiate error conditions, aka a memory leak. Published: December 23, 2022; 11:15:12 AM -0500 |
V3.1: 7.5 HIGH V2.0:(not available) |
CVE-2022-47940 |
An issue was discovered in ksmbd in the Linux kernel 5.15 through 5.18 before 5.18.18. fs/ksmbd/smb2pdu.c lacks length validation in the non-padding case in smb2_write. Published: December 23, 2022; 11:15:12 AM -0500 |
V3.1: 8.1 HIGH V2.0:(not available) |
CVE-2022-47939 |
An issue was discovered in ksmbd in the Linux kernel 5.15 through 5.19 before 5.19.2. fs/ksmbd/smb2pdu.c has a use-after-free and OOPS for SMB2_TREE_DISCONNECT. Published: December 23, 2022; 11:15:12 AM -0500 |
V3.1: 9.8 CRITICAL V2.0:(not available) |
CVE-2022-47938 |
An issue was discovered in ksmbd in the Linux kernel 5.15 through 5.19 before 5.19.2. fs/ksmbd/smb2misc.c has an out-of-bounds read and OOPS for SMB2_TREE_CONNECT. Published: December 23, 2022; 11:15:12 AM -0500 |
V3.1: 6.5 MEDIUM V2.0:(not available) |
CVE-2022-4662 |
A flaw incorrect access control in the Linux kernel USB core subsystem was found in the way user attaches usb device. A local user could use this flaw to crash the system. Published: December 22, 2022; 5:15:16 PM -0500 |
V3.1: 5.5 MEDIUM V2.0:(not available) |
CVE-2022-47521 |
An issue was discovered in the Linux kernel before 6.0.11. Missing validation of IEEE80211_P2P_ATTR_CHANNEL_LIST in drivers/net/wireless/microchip/wilc1000/cfg80211.c in the WILC1000 wireless driver can trigger a heap-based buffer overflow when parsing the operating channel attribute from Wi-Fi management frames. Published: December 18, 2022; 1:15:09 AM -0500 |
V3.1: 7.8 HIGH V2.0:(not available) |
CVE-2022-47520 |
An issue was discovered in the Linux kernel before 6.0.11. Missing offset validation in drivers/net/wireless/microchip/wilc1000/hif.c in the WILC1000 wireless driver can trigger an out-of-bounds read when parsing a Robust Security Network (RSN) information element from a Netlink packet. Published: December 18, 2022; 1:15:09 AM -0500 |
V3.1: 7.1 HIGH V2.0:(not available) |
CVE-2022-47519 |
An issue was discovered in the Linux kernel before 6.0.11. Missing validation of IEEE80211_P2P_ATTR_OPER_CHANNEL in drivers/net/wireless/microchip/wilc1000/cfg80211.c in the WILC1000 wireless driver can trigger an out-of-bounds write when parsing the channel list attribute from Wi-Fi management frames. Published: December 18, 2022; 1:15:09 AM -0500 |
V3.1: 7.8 HIGH V2.0:(not available) |
CVE-2022-47518 |
An issue was discovered in the Linux kernel before 6.0.11. Missing validation of the number of channels in drivers/net/wireless/microchip/wilc1000/cfg80211.c in the WILC1000 wireless driver can trigger a heap-based buffer overflow when copying the list of operating channels from Wi-Fi management frames. Published: December 18, 2022; 1:15:09 AM -0500 |
V3.1: 7.8 HIGH V2.0:(not available) |
CVE-2022-3115 |
An issue was discovered in the Linux kernel through 5.16-rc6. malidp_crtc_reset in drivers/gpu/drm/arm/malidp_crtc.c lacks check of the return value of kzalloc() and will cause the null pointer dereference. Published: December 14, 2022; 4:15:12 PM -0500 |
V3.1: 5.5 MEDIUM V2.0:(not available) |
CVE-2022-3114 |
An issue was discovered in the Linux kernel through 5.16-rc6. imx_register_uart_clocks in drivers/clk/imx/clk.c lacks check of the return value of kcalloc() and will cause the null pointer dereference. Published: December 14, 2022; 4:15:12 PM -0500 |
V3.1: 5.5 MEDIUM V2.0:(not available) |
CVE-2022-3113 |
An issue was discovered in the Linux kernel through 5.16-rc6. mtk_vcodec_fw_vpu_init in drivers/media/platform/mtk-vcodec/mtk_vcodec_fw_vpu.c lacks check of the return value of devm_kzalloc() and will cause the null pointer dereference. Published: December 14, 2022; 4:15:12 PM -0500 |
V3.1: 5.5 MEDIUM V2.0:(not available) |
CVE-2022-3112 |
An issue was discovered in the Linux kernel through 5.16-rc6. amvdec_set_canvases in drivers/staging/media/meson/vdec/vdec_helpers.c lacks check of the return value of kzalloc() and will cause the null pointer dereference. Published: December 14, 2022; 4:15:12 PM -0500 |
V3.1: 5.5 MEDIUM V2.0:(not available) |
CVE-2022-3111 |
An issue was discovered in the Linux kernel through 5.16-rc6. free_charger_irq() in drivers/power/supply/wm8350_power.c lacks free of WM8350_IRQ_CHG_FAST_RDY, which is registered in wm8350_init_charger(). Published: December 14, 2022; 4:15:12 PM -0500 |
V3.1: 5.5 MEDIUM V2.0:(not available) |
CVE-2022-3110 |
An issue was discovered in the Linux kernel through 5.16-rc6. _rtw_init_xmit_priv in drivers/staging/r8188eu/core/rtw_xmit.c lacks check of the return value of rtw_alloc_hwxmits() and will cause the null pointer dereference. Published: December 14, 2022; 4:15:12 PM -0500 |
V3.1: 5.5 MEDIUM V2.0:(not available) |
CVE-2022-3108 |
An issue was discovered in the Linux kernel through 5.16-rc6. kfd_parse_subtype_iolink in drivers/gpu/drm/amd/amdkfd/kfd_crat.c lacks check of the return value of kmemdup(). Published: December 14, 2022; 4:15:12 PM -0500 |
V3.1: 5.5 MEDIUM V2.0:(not available) |