The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.
In get_futex_key of futex.c, there is a use-after-free due to improper locking. This could lead to local escalation of privilege with no additional privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android kernel Android ID: A-74250718 References: Upstream kernel.
Base Score: 7.2
Impact Score: 10
Exploitability Score: 3.9
Base Score: 7.8
Impact Score: 5.9
Exploitability Score: 1.8
|141697||EulerOS Virtualization 220.127.116.11 : kernel (EulerOS-SA-2020-2222)||Nessus||Huawei Local Security Checks|
|125513||EulerOS 2.0 SP2 : kernel (EulerOS-SA-2019-1586)||Nessus||Huawei Local Security Checks|
|124431||EulerOS 2.0 SP5 : kernel (EulerOS-SA-2019-1304)||Nessus||Huawei Local Security Checks|
|111082||Debian DLA-1422-2 : linux security update (Spectre)||Nessus||Debian Local Security Checks|