Linux Kernel CVE Statistics
17 Linux Kernel CVEs in May 2019
Full month · Source: NIST NVD
In May 2019, 17 Linux kernel CVEs were published, sourced from the NIST National Vulnerability Database. Of these, 1 was rated Critical, 7 were rated High severity and 8 Medium. No CVEs from this month have been confirmed as actively exploited via the CISA KEV catalog. May's 17 CVEs represent 6% of all 2019 Linux kernel CVEs , up from April's 15 (a 13% month-over-month increase) .
17
Total CVEs
1
Critical
7
High
8
Medium
1
Low
0
KEV Exploited
All CVEs — May 2019
17 CVEs
| CVE ID | Package | Severity | CVSS | Published | Description | |
|---|---|---|---|---|---|---|
| CVE-2019-11683 | linux | Critical | 9.8 | 2019-05-02 | udp_gro_receive_segment in net/ipv4/udp_offload.c in the Linux kernel 5.x before 5.0.13 allows remote attackers to caus… | |
| CVE-2019-11815 | linux | High | 8.1 | 2019-05-08 | An issue was discovered in rds_tcp_kill_sock in net/rds/tcp.c in the Linux kernel before 5.0.8. There is a race conditi… | |
| CVE-2018-20836 | linux | High | 8.1 | 2019-05-07 | An issue was discovered in the Linux kernel before 4.20. There is a race condition in smp_task_timedout() and smp_task_… | |
| CVE-2019-12456 | linux | High | 7.8 | 2019-05-30 | An issue was discovered in the MPT3COMMAND case in _ctl_ioctl_main in drivers/scsi/mpt3sas/mpt3sas_ctl.c in the Linux k… | |
| CVE-2019-12454 | linux | High | 7.8 | 2019-05-30 | An issue was discovered in wcd9335_codec_enable_dec in sound/soc/codecs/wcd9335.c in the Linux kernel through 5.1.5. It… | |
| CVE-2019-11085 | linux | High | 7.8 | 2019-05-17 | Insufficient input validation in Kernel Mode Driver in Intel(R) i915 Graphics for Linux before version 5.0 may allow an… | |
| CVE-2019-11810 | linux | High | 7.5 | 2019-05-07 | An issue was discovered in the Linux kernel before 5.0.7. A NULL pointer dereference can occur when megasas_create_fram… | |
| CVE-2019-11811 | linux | High | 7.0 | 2019-05-07 | An issue was discovered in the Linux kernel before 5.0.4. There is a use-after-free upon attempted read access to /proc… | |
| CVE-2019-12455 | linux | Medium | 5.5 | 2019-05-30 | An issue was discovered in sunxi_divs_clk_setup in drivers/clk/sunxi/clk-sunxi.c in the Linux kernel through 5.1.5. The… | |
| CVE-2019-12382 | linux | Medium | 5.5 | 2019-05-28 | An issue was discovered in drm_load_edid_firmware in drivers/gpu/drm/drm_edid_load.c in the Linux kernel through 5.1.5.… | |
| CVE-2019-12381 | linux | Medium | 5.5 | 2019-05-28 | An issue was discovered in ip_ra_control in net/ipv4/ip_sockglue.c in the Linux kernel through 5.1.5. There is an unche… | |
| CVE-2019-12379 | linux | Medium | 5.5 | 2019-05-28 | An issue was discovered in con_insert_unipair in drivers/tty/vt/consolemap.c in the Linux kernel through 5.1.5. There i… | |
| CVE-2019-12380 | linux | Medium | 5.5 | 2019-05-28 | **DISPUTED** An issue was discovered in the efi subsystem in the Linux kernel through 5.1.5. phys_efi_set_virtual_addre… | |
| CVE-2019-12378 | linux | Medium | 5.5 | 2019-05-28 | An issue was discovered in ip6_ra_control in net/ipv6/ipv6_sockglue.c in the Linux kernel through 5.1.5. There is an un… | |
| CVE-2018-7191 | linux | Medium | 5.5 | 2019-05-17 | In the tun subsystem in the Linux kernel before 4.13.14, dev_get_valid_name is not called before register_netdevice. Th… |