Linux Kernel CVE Statistics
13 Linux Kernel CVEs in August 2009
Full month · Source: NIST NVD
In August 2009, 13 Linux kernel CVEs were published, sourced from the NIST National Vulnerability Database. Of these, 7 were rated High severity and 5 Medium. No CVEs from this month have been confirmed as actively exploited via the CISA KEV catalog. August's 13 CVEs represent 12% of all 2009 Linux kernel CVEs , up from July's 7 (a 86% month-over-month increase) .
13
Total CVEs
0
Critical
7
High
5
Medium
1
Low
0
KEV Exploited
All CVEs — August 2009
13 CVEs
| CVE ID | Package | Severity | CVSS | Published | Description | |
|---|---|---|---|---|---|---|
| CVE-2009-2698 | linux | High | 7.8 | 2009-08-27 | The udp_sendmsg function in the UDP implementation in (1) net/ipv4/udp.c and (2) net/ipv6/udp.c in the Linux kernel bef… | |
| CVE-2009-2844 | linux | High | 7.8 | 2009-08-18 | cfg80211 in net/wireless/scan.c in the Linux kernel 2.6.30-rc1 and other versions before 2.6.31-rc6 allows remote attac… | |
| CVE-2009-2846 | linux | High | 7.8 | 2009-08-18 | The eisa_eeprom_read function in the parisc isa-eeprom component (drivers/parisc/eisa_eeprom.c) in the Linux kernel bef… | |
| CVE-2009-2768 | linux | High | 7.8 | 2009-08-14 | The load_flat_shared_library function in fs/binfmt_flat.c in the flat subsystem in the Linux kernel before 2.6.31-rc6 a… | |
| CVE-2009-2692 | linux | High | 7.8 | 2009-08-14 | The Linux kernel 2.6.0 through 2.6.30.4, and 2.4.4 through 2.4.37.4, does not initialize all function pointers for sock… | |
| CVE-2009-2695 | linux | High | 7.2 | 2009-08-28 | The Linux kernel before 2.6.31-rc7 does not properly prevent mmap operations that target page zero and other low memory… | |
| CVE-2009-2767 | linux | High | 7.2 | 2009-08-14 | The init_posix_timers function in kernel/posix-timers.c in the Linux kernel before 2.6.31-rc6 allows local users to cau… | |
| CVE-2009-2848 | linux | Medium | 5.9 | 2009-08-18 | The execve function in the Linux kernel, possibly 2.6.30-rc6 and earlier, does not properly clear the current->clear_ch… | |
| CVE-2009-3001 | linux | Medium | 4.9 | 2009-08-28 | The llc_ui_getname function in net/llc/af_llc.c in the Linux kernel 2.6.31-rc7 and earlier does not initialize a certai… | |
| CVE-2009-3002 | linux | Medium | 4.9 | 2009-08-28 | The Linux kernel before 2.6.31-rc7 does not initialize certain data structures within getname functions, which allows l… | |
| CVE-2009-2847 | linux | Medium | 4.9 | 2009-08-18 | The do_sigaltstack function in kernel/signal.c in Linux kernel 2.4 through 2.4.37 and 2.6 before 2.6.31-rc5, when runni… | |
| CVE-2009-2849 | linux | Medium | 4.7 | 2009-08-18 | The md driver (drivers/md/md.c) in the Linux kernel before 2.6.30.2 might allow local users to cause a denial of servic… | |
| CVE-2009-2691 | linux | Low | 2.1 | 2009-08-14 | The mm_for_maps function in fs/proc/base.c in the Linux kernel 2.6.30.4 and earlier allows local users to read (1) maps… |