kgraft-patch-SLE12-SP3_Update_42 (SUSE:OpenStack Cloud 8) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:OpenStack Cloud 8 package kgraft-patch-SLE12-SP3_Update_42, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (23)
CVE-2018-25020 — CVSS 7.8 (high): The BPF subsystem in the Linux kernel before 4.17 mishandles situations with a long jump over an instruction sequence where inner…
CVE-2020-35519 — CVSS 7.8 (high): An out-of-bounds (OOB) memory access flaw was found in x25_bind in net/x25/af_x25.c in the Linux kernel version v5.12-rc5. A bounds check…
CVE-2021-4197 — CVSS 7.8 (high): An unprivileged write to the file handler flaw in the Linux kernel's control groups and namespaces subsystem was found in the way users…
CVE-2022-0330 — CVSS 7.8 (high): A random memory access flaw was found in the Linux kernel's GPU i915 kernel driver functionality in the way a user may run malicious code…
CVE-2021-45485 — CVSS 7.5 (high): In the IPv6 implementation in the Linux kernel before 5.13.3, net/ipv6/output_core.c has an information leak because of certain use of a…
CVE-2019-0136 — CVSS 7.4 (high): Insufficient access control in the Intel(R) PROSet/Wireless WiFi Software driver before version 21.10 may allow an unauthenticated user to…
CVE-2021-4083 — CVSS 7.0 (high): A read-after-free memory flaw was found in the Linux kernel's garbage collection for Unix domain socket file handlers in the way users call…
CVE-2021-4202 — CVSS 7.0 (high): A use-after-free flaw was found in nci_request in net/nfc/nci/core.c in NFC Controller Interface (NCI) in the Linux kernel. This flaw could…
CVE-2021-0935 — CVSS 6.7 (medium): In ip6_xmit of ip6_output.c, there is a possible out of bounds write due to a use after free. This could lead to local escalation of…
CVE-2021-28711 — CVSS 6.5 (medium): Rogue backends can cause DoS of guests via high frequency events T[his CNA information record relates to multiple CVEs; the text explains…
CVE-2021-28712 — CVSS 6.5 (medium): Rogue backends can cause DoS of guests via high frequency events T[his CNA information record relates to multiple CVEs; the text explains…
CVE-2021-28713 — CVSS 6.5 (medium): Rogue backends can cause DoS of guests via high frequency events T[his CNA information record relates to multiple CVEs; the text explains…
CVE-2021-28715 — CVSS 6.5 (medium): Guest can force Linux netback driver to hog large amounts of kernel memory T[his CNA information record relates to multiple CVEs; the text…
CVE-2021-3564 — CVSS 5.5 (medium): A flaw double-free memory corruption in the Linux kernel HCI device initialization subsystem was found in the way user attach malicious HCI…
CVE-2021-33098 — CVSS 5.5 (medium): Improper input validation in the Intel(R) Ethernet ixgbe driver for Linux before version 3.17.3 may allow an authenticated user to…
CVE-2021-4149 — CVSS 5.5 (medium): A vulnerability was found in btrfs_alloc_tree_b in fs/btrfs/extent-tree.c in the Linux kernel due to an improper lock operation in btrfs…
CVE-2021-4155 — CVSS 5.5 (medium): A data leak flaw was found in the way XFS_IOC_ALLOCSP IOCTL in the XFS filesystem allowed for size increase of files with unaligned size. A…
CVE-2021-43976 — CVSS 4.6 (medium): In the Linux kernel through 5.15.2, mwifiex_usb_recv in drivers/net/wireless/marvell/mwifiex/usb.c allows an attacker (who can connect a…
CVE-2021-4002 — CVSS 4.4 (medium): A memory leak flaw in the Linux kernel's hugetlbfs memory usage was found in the way the user maps some regions of memory twice using…
CVE-2021-39657 — CVSS 4.4 (medium): In ufshcd_eh_device_reset_handler of ufshcd.c, there is a possible out of bounds read due to a missing bounds check. This could lead to…
CVE-2021-39648 — CVSS 4.1 (medium): In gadget_dev_desc_UDC_show of configfs.c, there is a possible disclosure of kernel heap memory due to a race condition. This could lead to…
CVE-2021-45486 — CVSS 3.5 (low): In the IPv4 implementation in the Linux kernel before 5.12.4, net/ipv4/route.c has an information leak because the hash table is very small.