Linux Kernel CVE Statistics
10 Linux Kernel CVEs in July 2014
Full month · Source: NIST NVD
In July 2014, 10 Linux kernel CVEs were published, sourced from the NIST National Vulnerability Database. Of these, 1 was rated High severity and 8 Medium. No CVEs from this month have been confirmed as actively exploited via the CISA KEV catalog. July's 10 CVEs represent 7% of all 2014 Linux kernel CVEs , down from June's 11 (a 9% month-over-month decrease) .
10
Total CVEs
0
Critical
1
High
8
Medium
1
Low
0
KEV Exploited
All CVEs — July 2014
10 CVEs
| CVE ID | Package | Severity | CVSS | Published | Description | |
|---|---|---|---|---|---|---|
| CVE-2014-4608 | linux | High | 7.3 | 2014-07-03 | Multiple integer overflows in the lzo1x_decompress_safe function in lib/lzo/lzo1x_decompress_safe.c in the LZO decompre… | |
| CVE-2014-4943 | linux | Medium | 6.9 | 2014-07-19 | The PPPoL2TP feature in net/l2tp/l2tp_ppp.c in the Linux kernel through 3.15.6 allows local users to gain privileges by… | |
| CVE-2014-4699 | linux | Medium | 6.9 | 2014-07-09 | The Linux kernel before 3.15.4 on Intel processors does not properly restrict use of a non-canonical value for the save… | |
| CVE-2014-4611 | linux | Medium | 5.0 | 2014-07-03 | Integer overflow in the LZ4 algorithm implementation, as used in Yann Collet LZ4 before r118 and in the lz4_uncompress … | |
| CVE-2014-4667 | linux | Medium | 5.0 | 2014-07-03 | The sctp_association_free function in net/sctp/associola.c in the Linux kernel before 3.15.2 does not properly manage a… | |
| CVE-2014-4655 | linux | Medium | 4.9 | 2014-07-03 | The snd_ctl_elem_add function in sound/core/control.c in the ALSA control implementation in the Linux kernel before 3.1… | |
| CVE-2014-4654 | linux | Medium | 4.6 | 2014-07-03 | The snd_ctl_elem_add function in sound/core/control.c in the ALSA control implementation in the Linux kernel before 3.1… | |
| CVE-2014-4656 | linux | Medium | 4.6 | 2014-07-03 | Multiple integer overflows in sound/core/control.c in the ALSA control implementation in the Linux kernel before 3.15.2… | |
| CVE-2014-4653 | linux | Medium | 4.6 | 2014-07-03 | sound/core/control.c in the ALSA control implementation in the Linux kernel before 3.15.2 does not ensure possession of… | |
| CVE-2014-4652 | linux | Low | 1.9 | 2014-07-03 | Race condition in the tlv handler functionality in the snd_ctl_elem_user_tlv function in sound/core/control.c in the AL… |