
CVE-2020-27786 – kernel: use-after-free in kernel midi subsystem
https://notcve.org/view.php?id=CVE-2020-27786
11 Dec 2020 — A flaw was found in the Linux kernel’s implementation of MIDI, where an attacker with a local account and the permissions to issue ioctl commands to midi devices could trigger a use-after-free issue. A write to this specific memory while freed and before use causes the flow of execution to change and possibly allow for memory corruption or privilege escalation. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability. Se encontró un fallo en la implementaci... • https://github.com/kiks7/CVE-2020-27786-Kernel-Exploit • CWE-416: Use After Free •

CVE-2014-3180
https://notcve.org/view.php?id=CVE-2014-3180
06 Nov 2019 — In kernel/compat.c in the Linux kernel before 3.17, as used in Google Chrome OS and other products, there is a possible out-of-bounds read. restart_syscall uses uninitialized data when restarting compat_sys_nanosleep. NOTE: this is disputed because the code path is unreachable ** EN DISPUTA ** En el archivo kernel/compat.c en el kernel de Linux versiones anteriores a la versión 3.17, como es usado en Google Chrome OS y otros productos, se presenta una posible lectura fuera de límites. restart_syscall utiliz... • https://bugs.chromium.org/p/chromium/issues/detail?id=408827 • CWE-125: Out-of-bounds Read •

CVE-2018-21008 – Ubuntu Security Notice USN-4163-1
https://notcve.org/view.php?id=CVE-2018-21008
04 Sep 2019 — An issue was discovered in the Linux kernel before 4.16.7. A use-after-free can be caused by the function rsi_mac80211_detach in the file drivers/net/wireless/rsi/rsi_91x_mac80211.c. Se detectó un problema en el kernel de Linux versiones anteriores a 4.16.7. Puede ser causado un uso de la memoria previamente liberada mediante la función rsi_mac80211_detach en el archivo drivers/net/wireless/rsi/rsi_91x_mac80211.c. It was discovered that the RSI 91x Wi-Fi driver in the Linux kernel did not did not handle det... • http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00064.html • CWE-416: Use After Free •

CVE-2019-15213
https://notcve.org/view.php?id=CVE-2019-15213
19 Aug 2019 — An issue was discovered in the Linux kernel before 5.2.3. There is a use-after-free caused by a malicious USB device in the drivers/media/usb/dvb-usb/dvb-usb-init.c driver. Se descubrió un problema en el kernel de Linux versiones anteriores a 5.2.3. Se presenta un uso de memoria previamente liberada causado por un dispositivo USB malicioso en el controlador drivers/media/usb/dvb-usb/dvb-usb-init.c. • http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00029.html • CWE-416: Use After Free •

CVE-2018-20976 – kernel: use-after-free in fs/xfs/xfs_super.c
https://notcve.org/view.php?id=CVE-2018-20976
19 Aug 2019 — An issue was discovered in fs/xfs/xfs_super.c in the Linux kernel before 4.18. A use after free exists, related to xfs_fs_fill_super failure. Se detectó un problema en el archivo fs/xfs/xfs_super.c en el kernel de Linux versiones anteriores a 4.18. Se presenta un uso de la memoria previamente liberada, relacionado a un fallo de la función xfs_fs_fs_fill_super. A flaw was found in the Linux kernel's implementation of the XFS filesystem. • http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00064.html • CWE-416: Use After Free •

CVE-2016-10905 – Ubuntu Security Notice USN-4145-1
https://notcve.org/view.php?id=CVE-2016-10905
19 Aug 2019 — An issue was discovered in fs/gfs2/rgrp.c in the Linux kernel before 4.8. A use-after-free is caused by the functions gfs2_clear_rgrpd and read_rindex_entry. Se detectó un problema en el archivo fs/gfs2/rgrp.c en el kernel de Linux versiones anteriores a 4.8. Un uso de la memoria previamente liberada es causado por las funciones gfs2_clear_rgrpd y read_rindex_entry. It was discovered that a race condition existed in the GFS2 file system in the Linux kernel. • http://packetstormsecurity.com/files/154951/Kernel-Live-Patch-Security-Notice-LSN-0058-1.html • CWE-416: Use After Free •

CVE-2016-10906 – Ubuntu Security Notice USN-4163-1
https://notcve.org/view.php?id=CVE-2016-10906
19 Aug 2019 — An issue was discovered in drivers/net/ethernet/arc/emac_main.c in the Linux kernel before 4.5. A use-after-free is caused by a race condition between the functions arc_emac_tx and arc_emac_tx_clean. Se descubrió un problema en el archivo drivers/net/ethernet/arc/emac_main.c en el kernel de Linux versiones anteriores a 4.5. Un uso de la memoria previamente liberada es causado por una condición de carrera entre las funciones arc_emac_tx y arc_emac_tx_clean. It was discovered that a race condition existed in ... • http://packetstormsecurity.com/files/155212/Slackware-Security-Advisory-Slackware-14.2-kernel-Updates.html • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') CWE-416: Use After Free •

CVE-2017-18549
https://notcve.org/view.php?id=CVE-2017-18549
19 Aug 2019 — An issue was discovered in drivers/scsi/aacraid/commctrl.c in the Linux kernel before 4.13. There is potential exposure of kernel stack memory because aac_send_raw_srb does not initialize the reply structure. Se detectó un problema en el archivo drivers/scsi/aacraid/commctrl.c en el kernel de Linux versiones anteriores a 4.13. Se presenta una exposición potencial de la memoria de pila del kernel porque la función aac_send_raw_srb no inicializa la estructura de respuesta. • https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=342ffc26693b528648bdc9377e51e4f2450b4860 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •

CVE-2017-18550
https://notcve.org/view.php?id=CVE-2017-18550
19 Aug 2019 — An issue was discovered in drivers/scsi/aacraid/commctrl.c in the Linux kernel before 4.13. There is potential exposure of kernel stack memory because aac_get_hba_info does not initialize the hbainfo structure. Se detectó un problema en el archivo drivers/scsi/aacraid/commctrl.c en el kernel de Linux versiones anteriores a 4.13. Se presenta una exposición potencial de la memoria de pila del Kernel porque la función aac_get_hba_info no inicializa la estructura de hbainfo. • https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=342ffc26693b528648bdc9377e51e4f2450b4860 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •

CVE-2016-10907
https://notcve.org/view.php?id=CVE-2016-10907
19 Aug 2019 — An issue was discovered in drivers/iio/dac/ad5755.c in the Linux kernel before 4.8.6. There is an out of bounds write in the function ad5755_parse_dt. Se descubrió un problema en el archivo drivers/iio/dac/ad5755.c en el kernel de Linux versiones anteriores a 4.8.6. Se presenta una escritura fuera de límites en la función ad5755_parse_dt. • https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.8.6 • CWE-787: Out-of-bounds Write •