In 2009, 106 Linux kernel CVEs were published, sourced from the NIST National Vulnerability Database. Of these, 0 were rated Critical, 41 High severity . Compared to 2008's 80 CVEs, 2009 represented an increase of 32% year-on-year. August was the most active month, with 13 CVEs published.
Monthly CVE Breakdown — 2009
CVEs published per month with severity breakdown
August (13) was the most active month in 2009. Together the top months account for a significant share of 2009's 106 total CVEs. June (4) had the lowest volume.
Severity Distribution — 2009
Breakdown across 106 CVEs
53% Medium · 39% High · 0% Critical.
Monthly Counts — 2009
CVE counts by month and severity
August was the most active month with 13 CVEs — 12% of 2009's total. June (4) had the lowest volume.
| Month | Total | Critical | High | Medium | Low | Share of year |
|---|---|---|---|---|---|---|
| January | 7 | 0 | 3 | 4 | 0 |
7%
|
| February | 9 | 0 | 0 | 6 | 3 |
8%
|
| March | 8 | 0 | 1 | 5 | 2 |
8%
|
| April | 9 | 0 | 2 | 7 | 0 |
8%
|
| May | 5 | 0 | 1 | 4 | 0 |
5%
|
| June | 4 | 0 | 2 | 2 | 0 |
4%
|
| July | 7 | 0 | 2 | 5 | 0 |
7%
|
| August | 13 | 0 | 7 | 5 | 1 |
12%
|
| September | 9 | 0 | 3 | 6 | 0 |
8%
|
| October | 13 | 0 | 5 | 5 | 3 |
12%
|
| November | 12 | 0 | 8 | 4 | 0 |
11%
|
| December | 10 | 0 | 7 | 3 | 0 |
9%
|
| Total | 106 | 0 | 41 | 56 | 9 |
All CVEs — 2009
106 CVEs
| CVE ID | Package | Severity | CVSS | Published | Description | |
|---|---|---|---|---|---|---|
| CVE-2009-0065 | linux | High | 10.0 | 2009-01-07 | Buffer overflow in net/sctp/sm_statefuns.c in the Stream Control Transmission Protocol (sctp) implementation in the Lin… | |
| CVE-2009-1298 | linux | High | 7.8 | 2009-12-08 | The ip_frag_reasm function in net/ipv4/ip_fragment.c in the Linux kernel 2.6.32-rc8, and 2.6.29 and later versions befo… | |
| CVE-2009-4020 | linux | High | 7.8 | 2009-12-04 | Stack-based buffer overflow in the hfs subsystem in the Linux kernel 2.6.32 allows remote attackers to have an unspecif… | |
| CVE-2009-4026 | linux | High | 7.8 | 2009-12-02 | The mac80211 subsystem in the Linux kernel before 2.6.32-rc8-next-20091201 allows remote attackers to cause a denial of… | |
| CVE-2009-4031 | linux | High | 7.8 | 2009-11-29 | The do_insn_fetch function in arch/x86/kvm/emulate.c in the x86 emulator in the KVM subsystem in the Linux kernel befor… | |
| CVE-2009-4004 | linux | High | 7.8 | 2009-11-20 | Buffer overflow in the kvm_vcpu_ioctl_x86_setup_mce function in arch/x86/kvm/x86.c in the KVM subsystem in the Linux ke… | |
| CVE-2009-3726 | linux | High | 7.8 | 2009-11-09 | The nfs4_proc_lock function in fs/nfs/nfs4proc.c in the NFSv4 client in the Linux kernel before 2.6.31-rc4 allows remot… | |
| CVE-2009-3623 | linux | High | 7.8 | 2009-10-30 | The lookup_cb_cred function in fs/nfsd/nfs4callback.c in the nfsd4 subsystem in the Linux kernel before 2.6.31.2 attemp… | |
| CVE-2009-3620 | linux | High | 7.8 | 2009-10-22 | The ATI Rage 128 (aka r128) driver in the Linux kernel before 2.6.31-git11 does not properly verify Concurrent Command … | |
| CVE-2009-3613 | linux | High | 7.8 | 2009-10-19 | The swiotlb functionality in the r8169 driver in drivers/net/r8169.c in the Linux kernel before 2.6.27.22 allows remote… |
2009 Linux Kernel CVE Highlights
-
Volume without critical severity
Despite high CVE volume, 2009 produced only 0 Critical-rated vulnerabilities. 53% of 2009 CVEs are Medium severity. This means the surge in raw numbers does not represent a proportional surge in high-severity risk.
-
Monthly variation
CVE publication in 2009 was uneven across months. August was the most active with 13 CVEs. June (4) had the lowest volume. Monthly spikes typically correspond to coordinated batches of backfilled CVEs being processed at once.