The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Linux

Linux kernel: use after free via af_alg_release
An attacker can force the usage of a freed memory area via af_alg_release() of the Linux kernel, in order to trigger a denial of service, and possibly to run code...
CERTFR-2019-AVI-131, CERTFR-2019-AVI-145, CERTFR-2019-AVI-335, CERTFR-2020-AVI-051, CVE-2019-8912, FEDORA-2019-16de0047d4, FEDORA-2019-7bdeed7fc5, openSUSE-SU-2019:1193-1, PAN-SA-2019-0017, RHSA-2020:0174-01, SUSE-SU-2019:0765-1, SUSE-SU-2019:0767-1, USN-3930-1, USN-3930-2, USN-3931-1, USN-3931-2, VIGILANCE-VUL-28540
Linux kernel: information disclosure via kvm_read_guest_virt
A local attacker can read a memory fragment via kvm_read_guest_virt() of the Linux kernel, in order to obtain sensitive information...
1103505, CERTFR-2019-AVI-114, CERTFR-2019-AVI-131, CERTFR-2019-AVI-145, CERTFR-2019-AVI-233, CVE-2019-7222, DLA-1731-1, DLA-1731-2, DLA-1771-1, FEDORA-2019-164946aa7f, FEDORA-2019-3da64f3e61, openSUSE-SU-2019:0203-1, openSUSE-SU-2019:0274-1, RHSA-2019:2029-01, RHSA-2019:2043-01, RHSA-2019:3309-01, RHSA-2019:3517-01, SUSE-SU-2019:0541-1, SUSE-SU-2019:0765-1, SUSE-SU-2019:0767-1, SUSE-SU-2019:0828-1, SUSE-SU-2019:0901-1, SUSE-SU-2019:1289-1, SUSE-SU-2019:13979-1, USN-3930-1, USN-3930-2, USN-3931-1, USN-3931-2, USN-3932-1, USN-3932-2, USN-3933-1, USN-3933-2, VIGILANCE-VUL-28495
Linux kernel: privilege escalation via kvm_ioctl_create_device
An attacker can bypass restrictions via kvm_ioctl_create_device() of the Linux kernel, in order to escalate his privileges...
CERTFR-2019-AVI-131, CERTFR-2019-AVI-145, CERTFR-2019-AVI-183, CERTFR-2019-AVI-233, CERTFR-2019-AVI-451, CERTFR-2019-AVI-592, CERTFR-2020-AVI-030, CVE-2019-6974, DLA-1731-1, DLA-1731-2, DLA-1771-1, FEDORA-2019-164946aa7f, FEDORA-2019-3da64f3e61, K11186236, openSUSE-SU-2019:0203-1, RHSA-2019:0818-01, RHSA-2019:0833-01, RHSA-2019:2809-01, RHSA-2019:3967-01, RHSA-2020:0103-01, SUSE-SU-2019:0541-1, SUSE-SU-2019:0765-1, SUSE-SU-2019:0767-1, SUSE-SU-2019:0828-1, SUSE-SU-2019:0901-1, SUSE-SU-2019:1289-1, USN-3930-1, USN-3930-2, USN-3931-1, USN-3931-2, USN-3932-1, USN-3932-2, USN-3933-1, USN-3933-2, VIGILANCE-VUL-28494
Linux kernel: privilege escalation via KVM Preemption Timer
An attacker can bypass restrictions via KVM Preemption Timer of the Linux kernel, in order to escalate his privileges...
CERTFR-2019-AVI-131, CERTFR-2019-AVI-145, CERTFR-2019-AVI-183, CERTFR-2019-AVI-233, CERTFR-2019-AVI-592, CERTFR-2019-AVI-603, CVE-2019-7221, DLA-1731-1, DLA-1731-2, DLA-1771-1, FEDORA-2019-164946aa7f, FEDORA-2019-3da64f3e61, openSUSE-SU-2019:0203-1, openSUSE-SU-2019:0274-1, RHSA-2019:0818-01, RHSA-2019:0833-01, RHSA-2019:3967-01, RHSA-2019:4058-01, SUSE-SU-2019:0541-1, SUSE-SU-2019:0765-1, SUSE-SU-2019:0767-1, SUSE-SU-2019:0828-1, SUSE-SU-2019:0901-1, SUSE-SU-2019:1289-1, USN-3930-1, USN-3930-2, USN-3931-1, USN-3931-2, USN-3932-1, USN-3932-2, VIGILANCE-VUL-28493
Linux kernel: information disclosure via BPF Pointer Arithmetic
An attacker can bypass access restrictions to data via BPF Pointer Arithmetic of the Linux kernel, in order to obtain sensitive information...
1711, CERTFR-2019-AVI-131, CERTFR-2019-AVI-145, CVE-2019-7308, FEDORA-2019-7d3500d712, FEDORA-2019-96b31a9602, openSUSE-SU-2019:1193-1, SUSE-SU-2019:0765-1, SUSE-SU-2019:0767-1, USN-3930-1, USN-3930-2, USN-3931-1, USN-3931-2, VIGILANCE-VUL-28430
Linux kernel: denial of service via change_port_settings
An attacker can trigger a fatal error via change_port_settings() of the Linux kernel, in order to trigger a denial of service...
CERTFR-2019-AVI-114, CERTFR-2019-AVI-145, CVE-2017-18360, SUSE-SU-2019:13979-1, USN-3933-1, USN-3933-2, VIGILANCE-VUL-28420
Linux kernel: out-of-bounds memory reading via __remove_dirty_segment
An attacker can force a read at an invalid address via __remove_dirty_segment() of the Linux kernel, in order to trigger a denial of service, or to obtain sensitive information...
200419, CERTFR-2019-AVI-145, CERTFR-2019-AVI-391, CERTFR-2019-AVI-419, CVE-2018-14614, DLA-1715-1, SSA:2019-030-01, USN-3932-1, USN-3932-2, USN-4094-1, USN-4118-1, VIGILANCE-VUL-28411
Linux kernel: NULL pointer dereference via fscrypt_do_page_crypto
An attacker can force a NULL pointer to be dereferenced via fscrypt_do_page_crypto() of the Linux kernel, in order to trigger a denial of service...
200465, CERTFR-2019-AVI-145, CERTFR-2019-AVI-391, CERTFR-2019-AVI-419, CVE-2018-14616, DLA-1715-1, SSA:2019-030-01, USN-3932-1, USN-3932-2, USN-4094-1, USN-4118-1, VIGILANCE-VUL-28410
Linux kernel: NULL pointer dereference via btrfs_root_node
An attacker can force a NULL pointer to be dereferenced via btrfs_root_node() of the Linux kernel, in order to trigger a denial of service...
199847, CERTFR-2019-AVI-145, CERTFR-2019-AVI-391, CERTFR-2019-AVI-419, CERTFR-2020-AVI-368, CVE-2018-14612, DLA-1715-1, DLA-2241-1, DLA-2241-2, SSA:2019-030-01, USN-3932-1, USN-3932-2, USN-4094-1, USN-4118-1, VIGILANCE-VUL-28409
Linux kernel: buffer overflow via write_extent_buffer
An attacker can trigger a buffer overflow via write_extent_buffer() of the Linux kernel, in order to trigger a denial of service, and possibly to run code...
199837, CERTFR-2019-AVI-145, CERTFR-2019-AVI-391, CERTFR-2019-AVI-419, CERTFR-2020-AVI-368, CVE-2018-14610, DLA-1715-1, DLA-2241-1, DLA-2241-2, SSA:2019-030-01, USN-3932-1, USN-3932-2, USN-4094-1, USN-4118-1, VIGILANCE-VUL-28408
Our database contains other pages. You can request a free trial to read them.

Display information about Linux: