Linux Kernel CVE Statistics
16 Linux Kernel CVEs in June 2021
Full month · Source: NIST NVD
In June 2021, 16 Linux kernel CVEs were published, sourced from the NIST National Vulnerability Database. Of these, 10 were rated High severity and 6 Medium. No CVEs from this month have been confirmed as actively exploited via the CISA KEV catalog. June's 16 CVEs represent 9% of all 2021 Linux kernel CVEs , down from May's 27 (a 41% month-over-month decrease) .
16
Total CVEs
0
Critical
10
High
6
Medium
0
Low
0
KEV Exploited
All CVEs — June 2021
16 CVEs
| CVE ID | Package | Severity | CVSS | Published | Description | |
|---|---|---|---|---|---|---|
| CVE-2021-3491 | linux | High | 8.8 | 2021-06-04 | The io_uring subsystem in the Linux kernel allowed the MAX_RW_COUNT limit to be bypassed in the PROVIDE_BUFFERS operati… | |
| CVE-2021-28691 | linux | High | 7.8 | 2021-06-29 | Guest triggered use-after-free in Linux xen-netback A malicious or buggy network PV frontend can force Linux netback to… | |
| CVE-2019-25045 | linux | High | 7.8 | 2021-06-07 | An issue was discovered in the Linux kernel before 5.0.19. The XFRM subsystem has a use-after-free, related to an xfrm_… | |
| CVE-2020-36385 | linux | High | 7.8 | 2021-06-07 | An issue was discovered in the Linux kernel before 5.10. drivers/infiniband/core/ucma.c has a use-after-free because th… | |
| CVE-2020-36387 | linux | High | 7.8 | 2021-06-07 | An issue was discovered in the Linux kernel before 5.8.2. fs/io_uring.c has a use-after-free related to io_async_task_f… | |
| CVE-2018-25015 | linux | High | 7.8 | 2021-06-07 | An issue was discovered in the Linux kernel before 4.14.16. There is a use-after-free in net/sctp/socket.c for a held l… | |
| CVE-2021-3490 | linux | High | 7.8 | 2021-06-04 | The eBPF ALU32 bounds tracking for bitwise ops (AND, OR and XOR) in the Linux kernel did not properly update 32-bit bou… | |
| CVE-2021-3489 | linux | High | 7.8 | 2021-06-04 | The eBPF RINGBUF bpf_ringbuf_reserve() function in the Linux kernel did not check that the allocated size was smaller t… | |
| CVE-2021-32078 | linux | High | 7.1 | 2021-06-17 | An Out-of-Bounds Read was discovered in arch/arm/mach-footbridge/personal-pci.c in the Linux kernel through 5.12.11 bec… | |
| CVE-2020-36386 | linux | High | 7.1 | 2021-06-07 | An issue was discovered in the Linux kernel before 5.8.1. net/bluetooth/hci_event.c has a slab out-of-bounds read in hc… | |
| CVE-2021-34373 | linux | Medium | 6.0 | 2021-06-30 | Trusty trusted Linux kernel (TLK) contains a vulnerability in the NVIDIA TLK kernel where a lack of heap hardening coul… | |
| CVE-2020-10742 | linux | Medium | 6.0 | 2021-06-02 | A flaw was found in the Linux kernel. An index buffer overflow during Direct IO write leading to the NFS client to cras… | |
| CVE-2020-28097 | linux | Medium | 5.9 | 2021-06-24 | The vgacon subsystem in the Linux kernel before 5.8.10 mishandles software scrollback. There is a vgacon_scrolldelta ou… | |
| CVE-2021-34693 | linux | Medium | 5.5 | 2021-06-14 | net/can/bcm.c in the Linux kernel through 5.12.10 allows local users to obtain sensitive information from kernel stack … | |
| CVE-2021-3564 | linux | Medium | 5.5 | 2021-06-08 | A flaw double-free memory corruption in the Linux kernel HCI device initialization subsystem was found in the way user … |