CVE-2020-11935

MEDIUM Year: 2020
CVSS v3 Score
5.5
Medium
Weakness Type
CWE-911
View all →

Vulnerability Description

It was discovered that aufs improperly managed inode reference counts in the vfsub_dentry_open() method. A local attacker could use this vulnerability to cause a denial of service attack.

Related Vulnerabilities

CVE-2023-2019

MEDIUM
CVSS:4.4(Medium)

A flaw was found in the Linux kernel's netdevsim device driver, within the scheduling of events. This issue results from the improper management of a reference count. This may allow an attacker to cre...

CWE-9112023

CVE-2024-45783

MEDIUM
CVSS:4.4(Medium)

A flaw was found in grub2. When failing to mount an HFS+ grub, the hfsplus filesystem driver doesn't properly set an ERRNO value. This issue may lead to a NULL pointer access.

CWE-9112024

CVE-2021-47327

HIGH
CVSS:7.1(High)

In the Linux kernel, the following vulnerability has been resolved: iommu/arm-smmu: Fix arm_smmu_device refcount leak when arm_smmu_rpm_get fails arm_smmu_rpm_get() invokes pm_runtime_get_sync(), whic...

CWE-9112021

CVE-2022-29581

HIGH
CVSS:7.8(High)

Improper Update of Reference Count vulnerability in net/sched of Linux Kernel allows local attacker to cause privilege escalation to root. This issue affects: Linux Kernel versions prior to 5.18; vers...

CWE-9112022

CVE-2024-46972

HIGH
CVSS:7.8(High)

Software installed and run as a non-privileged user may conduct improper GPU system calls to trigger use-after-free kernel exceptions.

CWE-9112024

CVE-2022-1678

HIGH
CVSS:7.5(High)

An issue was discovered in the Linux Kernel from 4.18 to 4.19, an improper update of sock reference in TCP pacing can lead to memory/netns leak, which can be used by remote clients.

CWE-9112022