Linux Kernel CVE Statistics
56 Linux Kernel CVEs in May 2016
Full month · Source: NIST NVD
In May 2016, 56 Linux kernel CVEs were published, sourced from the NIST National Vulnerability Database. Of these, 28 were rated High severity and 27 Medium. No CVEs from this month have been confirmed as actively exploited via the CISA KEV catalog. May's 56 CVEs represent 25% of all 2016 Linux kernel CVEs , up from April's 30 (a 87% month-over-month increase) .
56
Total CVEs
0
Critical
28
High
27
Medium
1
Low
0
KEV Exploited
All CVEs — May 2016
56 CVEs
| CVE ID | Package | Severity | CVSS | Published | Description | |
|---|---|---|---|---|---|---|
| CVE-2016-4805 | linux | High | 7.8 | 2016-05-23 | Use-after-free vulnerability in drivers/net/ppp/ppp_generic.c in the Linux kernel before 4.5.2 allows local users to ca… | |
| CVE-2016-4557 | linux | High | 7.8 | 2016-05-23 | The replace_map_fd_with_map_ptr function in kernel/bpf/verifier.c in the Linux kernel before 4.5.5 does not properly ma… | |
| CVE-2016-4951 | linux | High | 7.8 | 2016-05-23 | The tipc_nl_publ_dump function in net/tipc/socket.c in the Linux kernel through 4.6 does not verify socket existence, w… | |
| CVE-2016-4794 | linux | High | 7.8 | 2016-05-23 | Use-after-free vulnerability in mm/percpu.c in the Linux kernel through 4.6 allows local users to cause a denial of ser… | |
| CVE-2016-4568 | linux | High | 7.8 | 2016-05-23 | drivers/media/v4l2-core/videobuf2-v4l2.c in the Linux kernel before 4.5.3 allows local users to cause a denial of servi… | |
| CVE-2016-4913 | linux | High | 7.8 | 2016-05-23 | The get_rock_ridge_filename function in fs/isofs/rock.c in the Linux kernel before 4.5.5 mishandles NM (aka alternate n… | |
| CVE-2016-4565 | linux | High | 7.8 | 2016-05-23 | The InfiniBand (aka IB) stack in the Linux kernel before 4.5.3 incorrectly relies on the write system call, which allow… | |
| CVE-2015-0569 | linux | High | 7.8 | 2016-05-09 | Heap-based buffer overflow in the private wireless extensions IOCTL implementation in wlan_hdd_wext.c in the WLAN (aka … | |
| CVE-2015-0570 | linux | High | 7.8 | 2016-05-09 | Stack-based buffer overflow in the SET_WPS_IE IOCTL implementation in wlan_hdd_hostapd.c in the WLAN (aka Wi-Fi) driver… | |
| CVE-2015-0571 | linux | High | 7.8 | 2016-05-09 | The WLAN (aka Wi-Fi) driver for the Linux kernel 3.x and 4.x, as used in Qualcomm Innovation Center (QuIC) Android cont… | |
| CVE-2016-2062 | linux | High | 7.8 | 2016-05-05 | The adreno_perfcounter_query_group function in drivers/gpu/msm/adreno_perfcounter.c in the Adreno GPU driver for the Li… | |
| CVE-2016-1576 | linux | High | 7.8 | 2016-05-02 | The overlayfs implementation in the Linux kernel through 4.5.2 does not properly restrict the mount namespace, which al… | |
| CVE-2015-8830 | linux | High | 7.8 | 2016-05-02 | Integer overflow in the aio_setup_single_vector function in fs/aio.c in the Linux kernel 4.0 allows local users to caus… | |
| CVE-2016-1575 | linux | High | 7.8 | 2016-05-02 | The overlayfs implementation in the Linux kernel through 4.5.2 does not properly maintain POSIX ACL xattr data, which a… | |
| CVE-2012-6701 | linux | High | 7.8 | 2016-05-02 | Integer overflow in fs/aio.c in the Linux kernel before 3.4.1 allows local users to cause a denial of service or possib… |