Linux Kernel CVE Statistics
24 Linux Kernel CVEs in November 2014
Full month · Source: NIST NVD
In November 2014, 24 Linux kernel CVEs were published, sourced from the NIST National Vulnerability Database. Of these, 5 were rated High severity and 18 Medium. No CVEs from this month have been confirmed as actively exploited via the CISA KEV catalog. November's 24 CVEs represent 17% of all 2014 Linux kernel CVEs , up from October's 5 (a 380% month-over-month increase) .
24
Total CVEs
0
Critical
5
High
18
Medium
1
Low
0
KEV Exploited
All CVEs — November 2014
24 CVEs
| CVE ID | Package | Severity | CVSS | Published | Description | |
|---|---|---|---|---|---|---|
| CVE-2014-7826 | linux | High | 7.8 | 2014-11-10 | kernel/trace/trace_syscalls.c in the Linux kernel through 3.17.2 does not properly handle private syscall numbers durin… | |
| CVE-2014-8369 | linux | High | 7.8 | 2014-11-10 | The kvm_iommu_map_pages function in virt/kvm/iommu.c in the Linux kernel through 3.17.2 miscalculates the number of pag… | |
| CVE-2014-7825 | linux | High | 7.8 | 2014-11-10 | kernel/trace/trace_syscalls.c in the Linux kernel through 3.17.2 does not properly handle private syscall numbers durin… | |
| CVE-2014-3673 | linux | High | 7.5 | 2014-11-10 | The SCTP implementation in the Linux kernel through 3.17.2 allows remote attackers to cause a denial of service (system… | |
| CVE-2014-3687 | linux | High | 7.5 | 2014-11-10 | The sctp_assoc_lookup_asconf_ack function in net/sctp/associola.c in the SCTP implementation in the Linux kernel throug… | |
| CVE-2014-8884 | linux | Medium | 6.1 | 2014-11-30 | Stack-based buffer overflow in the ttusbdecfe_dvbs_diseqc_send_master_cmd function in drivers/media/usb/ttusb-dec/ttusb… | |
| CVE-2014-3690 | linux | Medium | 5.5 | 2014-11-10 | arch/x86/kvm/vmx.c in the KVM subsystem in the Linux kernel before 3.17.2 on Intel processors does not ensure that the … | |
| CVE-2014-3646 | linux | Medium | 5.5 | 2014-11-10 | arch/x86/kvm/vmx.c in the KVM subsystem in the Linux kernel through 3.17.2 does not have an exit handler for the INVVPI… | |
| CVE-2014-3647 | linux | Medium | 5.5 | 2014-11-10 | arch/x86/kvm/emulate.c in the KVM subsystem in the Linux kernel through 3.17.2 does not properly perform RIP changes, w… | |
| CVE-2014-8559 | linux | Medium | 5.5 | 2014-11-10 | The d_walk function in fs/dcache.c in the Linux kernel through 3.17.2 does not properly maintain the semantics of renam… | |
| CVE-2014-3610 | linux | Medium | 5.5 | 2014-11-10 | The WRMSR processing functionality in the KVM subsystem in the Linux kernel through 3.17.2 does not properly handle the… | |
| CVE-2014-7841 | linux | Medium | 5.0 | 2014-11-30 | The sctp_process_param function in net/sctp/sm_make_chunk.c in the SCTP implementation in the Linux kernel before 3.17.… | |
| CVE-2014-3688 | linux | Medium | 5.0 | 2014-11-30 | The SCTP implementation in the Linux kernel before 3.17.4 allows remote attackers to cause a denial of service (memory … | |
| CVE-2014-8709 | linux | Medium | 5.0 | 2014-11-10 | The ieee80211_fragment function in net/mac80211/tx.c in the Linux kernel before 3.13.5 does not properly maintain a cer… | |
| CVE-2010-5313 | linux | Medium | 4.9 | 2014-11-30 | Race condition in arch/x86/kvm/x86.c in the Linux kernel before 2.6.38 allows L2 guest OS users to cause a denial of se… |