Linux Kernel CVE Statistics
21 Linux Kernel CVEs in May 2020
Full month · Source: NIST NVD
In May 2020, 21 Linux kernel CVEs were published, sourced from the NIST National Vulnerability Database. Of these, 4 were rated High severity and 17 Medium. No CVEs from this month have been confirmed as actively exploited via the CISA KEV catalog. May's 21 CVEs represent 16% of all 2020 Linux kernel CVEs , up from April's 18 (a 17% month-over-month increase) .
21
Total CVEs
0
Critical
4
High
17
Medium
0
Low
0
KEV Exploited
All CVEs — May 2020
21 CVEs
| CVE ID | Package | Severity | CVSS | Published | Description | |
|---|---|---|---|---|---|---|
| CVE-2020-12653 | linux | High | 7.8 | 2020-05-05 | An issue was found in Linux kernel before 5.5.4. The mwifiex_cmd_append_vsie_tlv() function in drivers/net/wireless/mar… | |
| CVE-2020-12657 | linux | High | 7.8 | 2020-05-05 | An issue was discovered in the Linux kernel before 5.6.5. There is a use-after-free in block/bfq-iosched.c related to b… | |
| CVE-2020-12654 | linux | High | 7.1 | 2020-05-05 | An issue was found in Linux kernel before 5.5.4. mwifiex_ret_wmm_get_status() in drivers/net/wireless/marvell/mwifiex/w… | |
| CVE-2019-14898 | linux | High | 7.0 | 2020-05-08 | The fix for CVE-2019-11599, affecting the Linux kernel before 5.0.10 was not complete. A local user could use this flaw… | |
| CVE-2020-12770 | linux | Medium | 6.7 | 2020-05-09 | An issue was discovered in the Linux kernel through 5.6.11. sg_write lacks an sg_remove_request call in a certain failu… | |
| CVE-2020-12659 | linux | Medium | 6.7 | 2020-05-05 | An issue was discovered in the Linux kernel before 5.6.7. xdp_umem_reg in net/xdp/xdp_umem.c has an out-of-bounds write… | |
| CVE-2020-13143 | linux | Medium | 6.5 | 2020-05-18 | gadget_dev_desc_UDC_store in drivers/usb/gadget/configfs.c in the Linux kernel 3.16 through 5.6.13 relies on kstrdup wi… | |
| CVE-2020-10751 | linux | Medium | 6.1 | 2020-05-26 | A flaw was found in the Linux kernels SELinux LSM hook implementation before version 5.7, where it incorrectly assumed … | |
| CVE-2020-10711 | linux | Medium | 5.9 | 2020-05-22 | A NULL pointer dereference flaw was found in the Linux kernel's SELinux subsystem in versions before 5.7. This flaw occ… | |
| CVE-2020-12771 | linux | Medium | 5.5 | 2020-05-09 | An issue was discovered in the Linux kernel through 5.6.11. btree_gc_coalesce in drivers/md/bcache/btree.c has a deadlo… | |
| CVE-2020-12769 | linux | Medium | 5.5 | 2020-05-09 | An issue was discovered in the Linux kernel before 5.4.17. drivers/spi/spi-dw.c allows attackers to cause a panic via c… | |
| CVE-2020-12768 | linux | Medium | 5.5 | 2020-05-09 | An issue was discovered in the Linux kernel before 5.6. svm_cpu_uninit in arch/x86/kvm/svm.c has a memory leak, aka CID… | |
| CVE-2020-12656 | linux | Medium | 5.5 | 2020-05-05 | gss_mech_free in net/sunrpc/auth_gss/gss_mech_switch.c in the rpcsec_gss_krb5 implementation in the Linux kernel throug… | |
| CVE-2020-12655 | linux | Medium | 5.5 | 2020-05-05 | An issue was discovered in xfs_agf_verify in fs/xfs/libxfs/xfs_alloc.c in the Linux kernel through 5.6.10. Attackers ma… | |
| CVE-2020-12888 | linux | Medium | 5.3 | 2020-05-15 | The VFIO PCI driver in the Linux kernel through 5.6.13 mishandles attempts to access disabled memory space. |