Linux Kernel CVE Statistics
38 Linux Kernel CVEs in January 2018
Full month · Source: NIST NVD
In January 2018, 38 Linux kernel CVEs were published, sourced from the NIST National Vulnerability Database. Of these, 3 were rated Critical, 25 were rated High severity and 10 Medium. No CVEs from this month have been confirmed as actively exploited via the CISA KEV catalog. January's 38 CVEs represent 8% of all 2018 Linux kernel CVEs , down from December's 69 (a 45% month-over-month decrease) .
38
Total CVEs
3
Critical
25
High
10
Medium
0
Low
0
KEV Exploited
All CVEs — January 2018
38 CVEs
| CVE ID | Package | Severity | CVSS | Published | Description | |
|---|---|---|---|---|---|---|
| CVE-2018-5703 | linux | Critical | 9.8 | 2018-01-16 | The tcp_v6_syn_recv_sock function in net/ipv6/tcp_ipv6.c in the Linux kernel through 4.14.11 allows attackers to cause … | |
| CVE-2017-11079 | linux | Critical | 9.8 | 2018-01-10 | In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, while p… | |
| CVE-2017-18017 | linux | Critical | 9.8 | 2018-01-03 | The tcpmss_mangle_packet function in net/netfilter/xt_TCPMSS.c in the Linux kernel before 4.11, and 4.9.x before 4.9.36… | |
| CVE-2017-14879 | linux | High | 8.8 | 2018-01-10 | In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, by call… | |
| CVE-2015-1142857 | linux | High | 8.6 | 2018-01-23 | On multiple SR-IOV cars it is possible for VF's assigned to guests to send ethernet flow control pause frames via the P… | |
| CVE-2017-15126 | linux | High | 8.1 | 2018-01-14 | A use-after-free flaw was found in fs/userfaultfd.c in the Linux kernel before 4.13.6. The issue is related to the hand… | |
| CVE-2017-18079 | linux | High | 7.8 | 2018-01-29 | drivers/input/serio/i8042.c in the Linux kernel before 4.12.4 allows attackers to cause a denial of service (NULL point… | |
| CVE-2017-18075 | linux | High | 7.8 | 2018-01-24 | crypto/pcrypt.c in the Linux kernel before 4.14.13 mishandles freeing instances, allowing a local user able to access t… | |
| CVE-2017-11072 | linux | High | 7.8 | 2018-01-16 | In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, while c… | |
| CVE-2018-5344 | linux | High | 7.8 | 2018-01-12 | In the Linux kernel through 4.14.13, drivers/block/loop.c mishandles lo_release serialization, which allows attackers t… | |
| CVE-2018-5332 | linux | High | 7.8 | 2018-01-11 | In the Linux kernel through 3.2, the rds_message_alloc_sgs() function does not validate a value that is used during DMA… | |
| CVE-2017-11080 | linux | High | 7.8 | 2018-01-10 | In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, while p… | |
| CVE-2017-15845 | linux | High | 7.8 | 2018-01-10 | In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, an inva… | |
| CVE-2017-15848 | linux | High | 7.8 | 2018-01-10 | In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, in the … | |
| CVE-2017-15849 | linux | High | 7.8 | 2018-01-10 | In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, a Layer… |