kgraft-patch-SLE12-SP2_Update_33 (SUSE:OpenStack Cloud 7) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:OpenStack Cloud 7 package kgraft-patch-SLE12-SP2_Update_33, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (49)
CVE-2019-17133 — CVSS 9.8 (critical): In the Linux kernel through 5.3.2, cfg80211_mgd_wext_giwessid in net/wireless/wext-sme.c does not reject a long SSID IE, leading to a…
CVE-2019-15505 — CVSS 9.8 (critical): drivers/media/usb/dvb-usb/technisat-usb2.c in the Linux kernel through 5.2.9 has an out-of-bounds read via crafted USB device traffic…
CVE-2019-18805 — CVSS 9.8 (critical): An issue was discovered in net/ipv4/sysctl_net_ipv4.c in the Linux kernel before 5.0.11. There is a net/ipv4/tcp_input.c signed integer…
CVE-2019-15926 — CVSS 9.1 (critical): An issue was discovered in the Linux kernel before 5.2.3. Out of bounds access exists in the functions ath6kl_wmi_pstream_timeout_event_rx…
CVE-2019-14821 — CVSS 8.8 (high): An out-of-bounds access issue was found in the Linux kernel, all versions through 5.3, in the way Linux kernel's KVM hypervisor implements…
CVE-2019-17666 — CVSS 8.8 (high): rtl_p2p_noa_ie in drivers/net/wireless/realtek/rtlwifi/ps.c in the Linux kernel through 5.3.6 lacks a certain upper-bound check, leading to…
CVE-2019-10220 — CVSS 8.8 (high): Linux kernel CIFS implementation, version 4.9.0 is vulnerable to a relative paths injection in directory entry lists.
CVE-2019-9506 — CVSS 8.1 (high): The Bluetooth BR/EDR specification up to and including version 5.1 permits sufficiently low encryption key length and does not prevent an…
CVE-2019-14816 — CVSS 7.8 (high): There is heap-based buffer overflow in kernel, all versions up to, excluding 5.3, in the marvell wifi chip driver in Linux kernel, that…
CVE-2019-14835 — CVSS 7.8 (high): A buffer overflow flaw was found, in versions from 2.6.34 to 5.2.x, in the way Linux kernel's vhost functionality that translates virtqueue…
CVE-2017-18509 — CVSS 7.8 (high): An issue was discovered in net/ipv6/ip6mr.c in the Linux kernel before 4.11. By setting a specific socket option, an attacker can control a…
CVE-2017-18595 — CVSS 7.8 (high): An issue was discovered in the Linux kernel before 4.14.11. A double free may be caused by the function allocate_trace_buffer in the file…
CVE-2018-20976 — CVSS 7.8 (high): An issue was discovered in fs/xfs/xfs_super.c in the Linux kernel before 4.18. A use after free exists, related to xfs_fs_fill_super…
CVE-2019-0155 — CVSS 7.8 (high): Insufficient access control in a subsystem for Intel (R) processor graphics in 6th, 7th, 8th and 9th Generation Intel(R) Core(TM) Processor…
CVE-2019-14814 — CVSS 7.8 (high): There is heap-based buffer overflow in Linux kernel, all versions up to, excluding 5.3, in the marvell wifi chip driver in Linux kernel…
CVE-2019-14815 — CVSS 7.8 (high): A vulnerability was found in Linux Kernel, where a Heap Overflow was found in mwifiex_set_wmm_params() function of Marvell Wifi Driver.
CVE-2019-15927 — CVSS 7.8 (high): An issue was discovered in the Linux kernel before 4.20.2. An out-of-bounds access exists in the function build_audio_procunit in the file…
CVE-2019-16995 — CVSS 7.5 (high): In the Linux kernel before 5.0.3, a memory leak exits in hsr_dev_finalize() in net/hsr/hsr_device.c if hsr_add_port fails to add a port…
CVE-2019-18680 — CVSS 7.5 (high): An issue was discovered in the Linux kernel 4.4.x before 4.4.195. There is a NULL pointer dereference in rds_tcp_kill_sock() in…
CVE-2019-16413 — CVSS 7.5 (high): An issue was discovered in the Linux kernel before 5.0.4. The 9p filesystem did not protect i_size_write() properly, which causes an…
CVE-2016-10906 — CVSS 7.0 (high): An issue was discovered in drivers/net/ethernet/arc/emac_main.c in the Linux kernel before 4.5. A use-after-free is caused by a race…
CVE-2019-9456 — CVSS 6.7 (medium): In the Android kernel in Pixel C USB monitor driver there is a possible OOB write due to a missing bounds check. This could lead to local…
CVE-2019-11135 — CVSS 6.5 (medium): TSX Asynchronous Abort condition on some CPUs utilizing speculative execution may allow an authenticated user to potentially enable…
CVE-2018-12207 — CVSS 6.5 (medium): Improper invalidation for page table updates by a virtual guest operating system for multiple Intel(R) Processors may allow an…
CVE-2019-15214 — CVSS 6.4 (medium): An issue was discovered in the Linux kernel before 5.0.10. There is a use-after-free in the sound subsystem because card disconnection…
CVE-2019-15902 — CVSS 5.6 (medium): A backporting error was discovered in the Linux stable/longterm kernel 4.4.x through 4.4.190, 4.9.x through 4.9.190, 4.14.x through…
CVE-2019-0154 — CVSS 5.5 (medium): Insufficient access control in subsystem for Intel (R) processor graphics in 6th, 7th, 8th and 9th Generation Intel(R) Core(TM) Processor…
CVE-2019-15924 — CVSS 5.5 (medium): An issue was discovered in the Linux kernel before 5.0.11. fm10k_init_module in drivers/net/ethernet/intel/fm10k/fm10k_main.c has a NULL…
CVE-2019-15807 — CVSS 4.7 (medium): In the Linux kernel before 5.1.13, there is a memory leak in drivers/scsi/libsas/sas_expander.c when SAS expander discovery fails. This…
CVE-2019-16234 — CVSS 4.7 (medium): drivers/net/wireless/intel/iwlwifi/pcie/trans.c in the Linux kernel 5.2.14 does not check the alloc_workqueue return value, leading to a…
CVE-2019-15291 — CVSS 4.6 (medium): An issue was discovered in the Linux kernel through 5.2.9. There is a NULL pointer dereference caused by a malicious USB device in the…
CVE-2019-15219 — CVSS 4.6 (medium): An issue was discovered in the Linux kernel before 5.1.8. There is a NULL pointer dereference caused by a malicious USB device in the…
CVE-2019-15218 — CVSS 4.6 (medium): An issue was discovered in the Linux kernel before 5.1.8. There is a NULL pointer dereference caused by a malicious USB device in the…
CVE-2019-15217 — CVSS 4.6 (medium): An issue was discovered in the Linux kernel before 5.2.3. There is a NULL pointer dereference caused by a malicious USB device in the…
CVE-2019-15216 — CVSS 4.6 (medium): An issue was discovered in the Linux kernel before 5.0.14. There is a NULL pointer dereference caused by a malicious USB device in the…
CVE-2019-15215 — CVSS 4.6 (medium): An issue was discovered in the Linux kernel before 5.2.6. There is a use-after-free caused by a malicious USB device in the…
CVE-2019-15212 — CVSS 4.6 (medium): An issue was discovered in the Linux kernel before 5.1.8. There is a double-free caused by a malicious USB device in the…
CVE-2019-15211 — CVSS 4.6 (medium): An issue was discovered in the Linux kernel before 5.2.6. There is a use-after-free caused by a malicious USB device in the…
CVE-2019-15221 — CVSS 4.6 (medium): An issue was discovered in the Linux kernel before 5.1.17. There is a NULL pointer dereference caused by a malicious USB device in the…
CVE-2019-15220 — CVSS 4.6 (medium): An issue was discovered in the Linux kernel before 5.2.1. There is a use-after-free caused by a malicious USB device in the…
CVE-2019-15098 — CVSS 4.6 (medium): drivers/net/wireless/ath/ath6kl/usb.c in the Linux kernel through 5.2.9 has a NULL pointer dereference via an incomplete address in an…
CVE-2019-15666 — CVSS 4.4 (medium): An issue was discovered in the Linux kernel before 5.0.19. There is an out-of-bounds array access in __xfrm_policy_unlink, which will cause…
CVE-2019-16231 — CVSS 4.1 (medium): drivers/net/fjes/fjes_main.c in the Linux kernel 5.2.14 does not check the alloc_workqueue return value, leading to a NULL pointer…
CVE-2019-16232 — CVSS 4.1 (medium): drivers/net/wireless/marvell/libertas/if_sdio.c in the Linux kernel 5.2.14 does not check the alloc_workqueue return value, leading to a…
CVE-2019-16233 — CVSS 4.1 (medium): drivers/scsi/qla2xxx/qla_os.c in the Linux kernel 5.2.14 does not check the alloc_workqueue return value, leading to a NULL pointer…
CVE-2019-17055 — CVSS 3.3 (low): base_sock_create in drivers/isdn/mISDN/socket.c in the AF_ISDN network module in the Linux kernel through 5.3.2 does not enforce…
CVE-2019-17056 — CVSS 3.3 (low): llcp_sock_create in net/nfc/llcp_sock.c in the AF_NFC network module in the Linux kernel through 5.3.2 does not enforce CAP_NET_RAW, which…
CVE-2019-15290: Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2019-15098. Reason: This candidate is a duplicate of CVE-2019-15098…