kgraft-patch-SLE12-SP3_Update_34 (SUSE:OpenStack Cloud 8) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:OpenStack Cloud 8 package kgraft-patch-SLE12-SP3_Update_34, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (11)
CVE-2020-13974 — CVSS 7.8 (high): An issue was discovered in the Linux kernel 4.4 through 5.7.1. drivers/tty/vt/keyboard.c has an integer overflow if k_ascii is called…
CVE-2020-0305 — CVSS 6.4 (medium): In cdev_get of char_dev.c, there is a possible use-after-free due to a race condition. This could lead to local escalation of privilege…
CVE-2020-10751 — CVSS 6.1 (medium): A flaw was found in the Linux kernels SELinux LSM hook implementation before version 5.7, where it incorrectly assumed that an skb would…
CVE-2020-10711 — CVSS 5.9 (medium): A NULL pointer dereference flaw was found in the Linux kernel's SELinux subsystem in versions before 5.7. This flaw occurs while importing…
CVE-2019-20810 — CVSS 5.5 (medium): go7007_snd_init in drivers/media/usb/go7007/snd-go7007.c in the Linux kernel before 5.6 does not call snd_card_free for a failure path…
CVE-2019-20812 — CVSS 5.5 (medium): An issue was discovered in the Linux kernel before 5.4.7. The prb_calc_retire_blk_tmo() function in net/packet/af_packet.c can result in a…
CVE-2020-12771 — CVSS 5.5 (medium): An issue was discovered in the Linux kernel through 5.6.11. btree_gc_coalesce in drivers/md/bcache/btree.c has a deadlock if a coalescing…
CVE-2020-10135 — CVSS 5.4 (medium): Legacy pairing and secure-connections pairing authentication in Bluetooth BR/EDR Core Specification v5.2 and earlier may allow an…
CVE-2020-10773 — CVSS 4.4 (medium): A stack information leak flaw was found in s390/s390x in the Linux kernel’s memory manager functionality, where it incorrectly writes to…
CVE-2020-14416 — CVSS 4.2 (medium): In the Linux kernel before 5.4.16, a race condition in tty->disc_data handling in the slip and slcan line discipline could lead to a…
CVE-2020-10732 — CVSS 3.3 (low): A flaw was found in the Linux kernel's implementation of Userspace core dumps. This flaw allows an attacker with a local account to crash a…