Linux Kernel CVE Statistics
13 Linux Kernel CVEs in October 2009
Full month · Source: NIST NVD
In October 2009, 13 Linux kernel CVEs were published, sourced from the NIST National Vulnerability Database. Of these, 5 were rated High severity and 5 Medium. No CVEs from this month have been confirmed as actively exploited via the CISA KEV catalog. October's 13 CVEs represent 12% of all 2009 Linux kernel CVEs , up from September's 9 (a 44% month-over-month increase) .
13
Total CVEs
0
Critical
5
High
5
Medium
3
Low
0
KEV Exploited
All CVEs — October 2009
13 CVEs
| CVE ID | Package | Severity | CVSS | Published | Description | |
|---|---|---|---|---|---|---|
| CVE-2009-3623 | linux | High | 7.8 | 2009-10-30 | The lookup_cb_cred function in fs/nfsd/nfs4callback.c in the nfsd4 subsystem in the Linux kernel before 2.6.31.2 attemp… | |
| CVE-2009-3620 | linux | High | 7.8 | 2009-10-22 | The ATI Rage 128 (aka r128) driver in the Linux kernel before 2.6.31-git11 does not properly verify Concurrent Command … | |
| CVE-2009-3613 | linux | High | 7.8 | 2009-10-19 | The swiotlb functionality in the r8169 driver in drivers/net/r8169.c in the Linux kernel before 2.6.27.22 allows remote… | |
| CVE-2009-3638 | linux | High | 7.2 | 2009-10-29 | Integer overflow in the kvm_dev_ioctl_get_supported_cpuid function in arch/x86/kvm/x86.c in the KVM subsystem in the Li… | |
| CVE-2009-3722 | linux | High | 7.1 | 2009-10-30 | The handle_dr function in arch/x86/kvm/vmx.c in the KVM subsystem in the Linux kernel before 2.6.31.1 does not properly… | |
| CVE-2009-3621 | linux | Medium | 5.5 | 2009-10-22 | net/unix/af_unix.c in the Linux kernel 2.6.31.4 and earlier allows local users to cause a denial of service (system han… | |
| CVE-2009-3640 | linux | Medium | 4.9 | 2009-10-29 | The update_cr8_intercept function in arch/x86/kvm/x86.c in the KVM subsystem in the Linux kernel before 2.6.32-rc1 does… | |
| CVE-2009-2909 | linux | Medium | 4.9 | 2009-10-20 | Integer signedness error in the ax25_setsockopt function in net/ax25/af_ax25.c in the ax25 subsystem in the Linux kerne… | |
| CVE-2005-4881 | linux | Medium | 4.9 | 2009-10-19 | The netlink subsystem in the Linux kernel 2.4.x before 2.4.37.6 and 2.6.x before 2.6.13-rc1 does not initialize certain… | |
| CVE-2009-2908 | linux | Medium | 4.9 | 2009-10-13 | The d_delete function in fs/ecryptfs/inode.c in eCryptfs in the Linux kernel 2.6.31 allows local users to cause a denia… | |
| CVE-2009-2910 | linux | Low | 2.1 | 2009-10-20 | arch/x86/ia32/ia32entry.S in the Linux kernel before 2.6.31.4 on the x86_64 platform does not clear certain kernel regi… | |
| CVE-2009-3612 | linux | Low | 2.1 | 2009-10-19 | The tcf_fill_node function in net/sched/cls_api.c in the netlink subsystem in the Linux kernel 2.6.x before 2.6.32-rc5,… | |
| CVE-2009-3228 | linux | Low | 2.1 | 2009-10-19 | The tc_fill_tclass function in net/sched/sch_api.c in the tc subsystem in the Linux kernel 2.4.x before 2.4.37.6 and 2.… |