CVSS: 7.8EPSS: 0%CPEs: 40EXPL: 0CVE-2019-14815 – kernel: heap-overflow in mwifiex_set_wmm_params() function of Marvell WiFi driver leading to DoS
https://notcve.org/view.php?id=CVE-2019-14815
24 Sep 2019 — A vulnerability was found in Linux Kernel, where a Heap Overflow was found in mwifiex_set_wmm_params() function of Marvell Wifi Driver. Se encontró una vulnerabilidad en Linux Kernel, donde se encontró un desbordamiento de pila en la función mwifiex_set_wmm_params () del controlador Marvell Wifi. A vulnerability found in the Linux kernel's WMM implementation for Marvell WiFi-based hardware (mwifiex) could lead to a denial of service or allow arbitrary code execution. For this flaw to be executed, the attack... • https://access.redhat.com/errata/RHSA-2020:0174 • CWE-122: Heap-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVSS: 9.8EPSS: 4%CPEs: 24EXPL: 0CVE-2019-5481 – curl: double free due to subsequent call of realloc()
https://notcve.org/view.php?id=CVE-2019-5481
11 Sep 2019 — Double-free vulnerability in the FTP-kerberos code in cURL 7.52.0 to 7.65.3. Vulnerabilidad de doble liberación en el código FTP-kerberos en cURL versiones 7.52.0 hasta 7.65.3. Thomas Vegas discovered that curl incorrectly handled memory when using Kerberos over FTP. A remote attacker could use this issue to crash curl, resulting in a denial of service. Thomas Vegas discovered that curl incorrectly handled memory during TFTP transfers. • http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00048.html • CWE-415: Double Free CWE-416: Use After Free •
CVSS: 4.9EPSS: 0%CPEs: 13EXPL: 1CVE-2019-15211 – Ubuntu Security Notice USN-4145-1
https://notcve.org/view.php?id=CVE-2019-15211
19 Aug 2019 — An issue was discovered in the Linux kernel before 5.2.6. There is a use-after-free caused by a malicious USB device in the drivers/media/v4l2-core/v4l2-dev.c driver because drivers/media/radio/radio-raremono.c does not properly allocate memory. Se descubrió un problema en el kernel de Linux versiones anteriores a 5.2.6. Se presenta un uso de memoria previamente liberada causado por un dispositivo USB malicioso en el controlador drivers/media/v4l2-core/v4l2-dev.c porque el archivo drivers/media/radio/radio-... • http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00064.html • CWE-416: Use After Free •
CVSS: 4.9EPSS: 0%CPEs: 13EXPL: 1CVE-2019-15212 – Ubuntu Security Notice USN-4147-1
https://notcve.org/view.php?id=CVE-2019-15212
19 Aug 2019 — An issue was discovered in the Linux kernel before 5.1.8. There is a double-free caused by a malicious USB device in the drivers/usb/misc/rio500.c driver. Se descubrió un problema en el kernel de Linux versiones anteriores a 5.1.8. Se presenta una vulnerabilidad de doble liberación causada por un dispositivo USB malicioso en el controlador drivers/usb/misc/rio500.c. It was discovered that the alarmtimer implementation in the Linux kernel contained an integer overflow vulnerability. • http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00064.html • CWE-415: Double Free •
CVSS: 4.9EPSS: 0%CPEs: 8EXPL: 1CVE-2019-15213
https://notcve.org/view.php?id=CVE-2019-15213
19 Aug 2019 — An issue was discovered in the Linux kernel before 5.2.3. There is a use-after-free caused by a malicious USB device in the drivers/media/usb/dvb-usb/dvb-usb-init.c driver. Se descubrió un problema en el kernel de Linux versiones anteriores a 5.2.3. Se presenta un uso de memoria previamente liberada causado por un dispositivo USB malicioso en el controlador drivers/media/usb/dvb-usb/dvb-usb-init.c. • http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00029.html • CWE-416: Use After Free •
CVSS: 4.9EPSS: 0%CPEs: 13EXPL: 1CVE-2019-15215 – Ubuntu Security Notice USN-4145-1
https://notcve.org/view.php?id=CVE-2019-15215
19 Aug 2019 — An issue was discovered in the Linux kernel before 5.2.6. There is a use-after-free caused by a malicious USB device in the drivers/media/usb/cpia2/cpia2_usb.c driver. Se descubrió un problema en el kernel de Linux versiones anteriores a 5.2.6. Se presenta un uso de memoria previamente liberada causado por un dispositivo USB malicioso en el controlador drivers/media/usb/cpia2/cpia2_usb.c . It was discovered that the alarmtimer implementation in the Linux kernel contained an integer overflow vulnerability. • http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00064.html • CWE-416: Use After Free •
CVSS: 4.9EPSS: 0%CPEs: 13EXPL: 1CVE-2019-15216 – Ubuntu Security Notice USN-4115-1
https://notcve.org/view.php?id=CVE-2019-15216
19 Aug 2019 — An issue was discovered in the Linux kernel before 5.0.14. There is a NULL pointer dereference caused by a malicious USB device in the drivers/usb/misc/yurex.c driver. Se descubrió un problema en el kernel de Linux versiones anteriores a 5.0.14. Se presenta una desreferencia del puntero NULL causada por un dispositivo USB malicioso en el controlador drivers/usb/misc/yurex.c. It was discovered that the alarmtimer implementation in the Linux kernel contained an integer overflow vulnerability. • http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00064.html • CWE-476: NULL Pointer Dereference •
CVSS: 4.9EPSS: 0%CPEs: 14EXPL: 1CVE-2019-15217 – kernel: null pointer dereference in drivers/media/usb/zr364xx/zr364xx.c driver
https://notcve.org/view.php?id=CVE-2019-15217
19 Aug 2019 — An issue was discovered in the Linux kernel before 5.2.3. There is a NULL pointer dereference caused by a malicious USB device in the drivers/media/usb/zr364xx/zr364xx.c driver. Se descubrió un problema en el kernel de Linux versiones anteriores a 5.2.3. Se presenta una desreferencia del puntero NULL causada por un dispositivo USB malicioso en el controlador drivers/media/usb/zr364xx/zr364xx.c . A vulnerability was found in the Linux kernel. • http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00064.html • CWE-476: NULL Pointer Dereference •
CVSS: 4.9EPSS: 0%CPEs: 14EXPL: 1CVE-2019-15218 – Ubuntu Security Notice USN-4147-1
https://notcve.org/view.php?id=CVE-2019-15218
19 Aug 2019 — An issue was discovered in the Linux kernel before 5.1.8. There is a NULL pointer dereference caused by a malicious USB device in the drivers/media/usb/siano/smsusb.c driver. Se descubrió un problema en el kernel de Linux versiones anteriores a 5.1.8. Se presenta una desreferencia del puntero NULL causada por un dispositivo USB malicioso en el controlador drivers/media/usb/siano/smsusb.c. It was discovered that the alarmtimer implementation in the Linux kernel contained an integer overflow vulnerability. • http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00064.html • CWE-476: NULL Pointer Dereference •
CVSS: 4.9EPSS: 0%CPEs: 13EXPL: 1CVE-2019-15219 – openSUSE Security Advisory - openSUSE-SU-2019:2173-1
https://notcve.org/view.php?id=CVE-2019-15219
19 Aug 2019 — An issue was discovered in the Linux kernel before 5.1.8. There is a NULL pointer dereference caused by a malicious USB device in the drivers/usb/misc/sisusbvga/sisusb.c driver. Se descubrió un problema en el kernel de Linux versiones anteriores a 5.1.8. Se presenta una desreferencia del puntero NULL causada por un dispositivo USB malicioso en el controlador drivers/usb/misc/sisusbvga/sisusb.c. An update that solves 38 vulnerabilities and has 159 fixes is now available. • http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00064.html • CWE-476: NULL Pointer Dereference •