Linux Kernel CVE Statistics
12 Linux Kernel CVEs in November 2009
Full month · Source: NIST NVD
In November 2009, 12 Linux kernel CVEs were published, sourced from the NIST National Vulnerability Database. Of these, 8 were rated High severity and 4 Medium. No CVEs from this month have been confirmed as actively exploited via the CISA KEV catalog. November's 12 CVEs represent 11% of all 2009 Linux kernel CVEs , down from October's 13 (a 8% month-over-month decrease) .
12
Total CVEs
0
Critical
8
High
4
Medium
0
Low
0
KEV Exploited
All CVEs — November 2009
12 CVEs
| CVE ID | Package | Severity | CVSS | Published | Description | |
|---|---|---|---|---|---|---|
| CVE-2009-4031 | linux | High | 7.8 | 2009-11-29 | The do_insn_fetch function in arch/x86/kvm/emulate.c in the x86 emulator in the KVM subsystem in the Linux kernel befor… | |
| CVE-2009-4004 | linux | High | 7.8 | 2009-11-20 | Buffer overflow in the kvm_vcpu_ioctl_x86_setup_mce function in arch/x86/kvm/x86.c in the KVM subsystem in the Linux ke… | |
| CVE-2009-3726 | linux | High | 7.8 | 2009-11-09 | The nfs4_proc_lock function in fs/nfs/nfs4proc.c in the NFSv4 client in the Linux kernel before 2.6.31-rc4 allows remot… | |
| CVE-2009-3080 | linux | High | 7.2 | 2009-11-20 | Array index error in the gdth_read_event function in drivers/scsi/gdth.c in the Linux kernel before 2.6.32-rc8 allows l… | |
| CVE-2009-4005 | linux | High | 7.2 | 2009-11-20 | The collect_rx_frame function in drivers/isdn/hisax/hfc_usb.c in the Linux kernel before 2.6.32-rc7 allows attackers to… | |
| CVE-2009-3725 | linux | High | 7.2 | 2009-11-06 | The connector layer in the Linux kernel before 2.6.31.5 does not require the CAP_SYS_ADMIN capability for certain inter… | |
| CVE-2009-3939 | linux | High | 7.1 | 2009-11-16 | The poll_mode_io file for the megaraid_sas driver in the Linux kernel 2.6.31.6 and earlier has world-writable permissio… | |
| CVE-2009-3547 | linux | High | 7.0 | 2009-11-04 | Multiple race conditions in fs/pipe.c in the Linux kernel before 2.6.32-rc6 allow local users to cause a denial of serv… | |
| CVE-2009-3889 | linux | Medium | 6.6 | 2009-11-16 | The dbg_lvl file for the megaraid_sas driver in the Linux kernel before 2.6.27 has world-writable permissions, which al… | |
| CVE-2009-4021 | linux | Medium | 4.9 | 2009-11-25 | The fuse_direct_io function in fs/fuse/file.c in the fuse subsystem in the Linux kernel before 2.6.32-rc7 might allow a… | |
| CVE-2009-3888 | linux | Medium | 4.9 | 2009-11-16 | The do_mmap_pgoff function in mm/nommu.c in the Linux kernel before 2.6.31.6, when the CPU lacks a memory management un… | |
| CVE-2009-3624 | linux | Medium | 4.6 | 2009-11-02 | The get_instantiation_keyring function in security/keys/keyctl.c in the KEYS subsystem in the Linux kernel before 2.6.3… |