Linux Kernel CVE Statistics
19 Linux Kernel CVEs in May 2018
Full month · Source: NIST NVD
In May 2018, 19 Linux kernel CVEs were published, sourced from the NIST National Vulnerability Database. Of these, 9 were rated High severity and 10 Medium. No CVEs from this month have been confirmed as actively exploited via the CISA KEV catalog. May's 19 CVEs represent 4% of all 2018 Linux kernel CVEs , down from April's 38 (a 50% month-over-month decrease) .
19
Total CVEs
0
Critical
9
High
10
Medium
0
Low
0
KEV Exploited
All CVEs — May 2018
19 CVEs
| CVE ID | Package | Severity | CVSS | Published | Description | |
|---|---|---|---|---|---|---|
| CVE-2018-11506 | linux | High | 7.8 | 2018-05-28 | The sr_do_ioctl function in drivers/scsi/sr_ioctl.c in the Linux kernel through 4.16.12 allows local users to cause a d… | |
| CVE-2018-3567 | linux | High | 7.8 | 2018-05-17 | In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux ker… | |
| CVE-2018-3568 | linux | High | 7.8 | 2018-05-17 | In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux ker… | |
| CVE-2017-15855 | linux | High | 7.8 | 2018-05-17 | In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux ker… | |
| CVE-2018-5827 | linux | High | 7.8 | 2018-05-17 | In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux ker… | |
| CVE-2018-1087 | linux | High | 7.8 | 2018-05-15 | kernel KVM before versions kernel 4.16, kernel 4.16-rc7, kernel 4.17-rc1, kernel 4.17-rc2 and kernel 4.17-rc3 is vulner… | |
| CVE-2018-8897 | linux | High | 7.8 | 2018-05-08 | A statement in the System Programming Guide of the Intel 64 and IA-32 Architectures Software Developer's Manual (SDM) w… | |
| CVE-2018-10675 | linux | High | 7.8 | 2018-05-02 | The do_get_mempolicy function in mm/mempolicy.c in the Linux kernel before 4.12.9 allows local users to cause a denial … | |
| CVE-2017-18270 | linux | High | 7.1 | 2018-05-18 | In the Linux kernel before 4.13.5, a local user could create keyrings for other users via keyctl commands, setting unwa… | |
| CVE-2018-11412 | linux | Medium | 5.9 | 2018-05-24 | In the Linux kernel 4.13 through 4.16.11, ext4_read_inline_data() in fs/ext4/inline.c performs a memcpy with an untrust… | |
| CVE-2018-1108 | linux | Medium | 5.9 | 2018-05-21 | kernel drivers before version 4.17-rc1 are vulnerable to a weakness in the Linux kernel's implementation of random seed… | |
| CVE-2018-11508 | linux | Medium | 5.5 | 2018-05-28 | The compat_get_timex function in kernel/compat.c in the Linux kernel before 4.16.9 allows local users to obtain sensiti… | |
| CVE-2018-1000199 | linux | Medium | 5.5 | 2018-05-24 | The Linux Kernel version 3.18 contains a dangerous feature vulnerability in modify_user_hw_breakpoint() that can result… | |
| CVE-2018-11232 | linux | Medium | 5.5 | 2018-05-18 | The etm_setup_aux function in drivers/hwtracing/coresight/coresight-etm-perf.c in the Linux kernel before 4.10.2 allows… | |
| CVE-2018-1130 | linux | Medium | 5.5 | 2018-05-10 | Linux kernel before version 4.16-rc7 is vulnerable to a null pointer dereference in dccp_write_xmit() function in net/d… |