Duoming Zhou

10 exploits Active since Jul 2022
CVE-2022-1199 WRITEUP HIGH WRITEUP
Linux Kernel < 5.17.14 - Null Pointer Dereference and Use-After-Free via Amateur Radio Simulation
A flaw was found in the Linux kernel. This flaw allows an attacker to crash the Linux kernel by simulating amateur radio from the user space, resulting in a null-ptr-deref vulnerability and a use-after-free vulnerability.
CVSS 7.5
CVE-2022-1199 WRITEUP HIGH WRITEUP
Linux Kernel < 5.17.14 - Null Pointer Dereference and Use-After-Free via Amateur Radio Simulation
A flaw was found in the Linux kernel. This flaw allows an attacker to crash the Linux kernel by simulating amateur radio from the user space, resulting in a null-ptr-deref vulnerability and a use-after-free vulnerability.
CVSS 7.5
CVE-2022-1205 WRITEUP MEDIUM WRITEUP
Linux Kernel < 5.17 - NULL Pointer Dereference in AX.25 Protocol
A NULL pointer dereference flaw was found in the Linux kernel’s Amateur Radio AX.25 protocol functionality in the way a user connects with the protocol. This flaw allows a local user to crash the system.
CVSS 4.7
CVE-2022-1198 WRITEUP MEDIUM WRITEUP
Linux Kernel < 5.17 - Use-After-Free in 6pack Driver
A use-after-free vulnerabilitity was discovered in drivers/net/hamradio/6pack.c of linux that allows an attacker to crash linux kernel by simulating ax25 device using 6pack driver from user space.
CVSS 5.5
CVE-2022-1199 WRITEUP HIGH WRITEUP
Linux Kernel < 5.17.14 - Null Pointer Dereference and Use-After-Free via Amateur Radio Simulation
A flaw was found in the Linux kernel. This flaw allows an attacker to crash the Linux kernel by simulating amateur radio from the user space, resulting in a null-ptr-deref vulnerability and a use-after-free vulnerability.
CVSS 7.5
CVE-2022-1205 WRITEUP MEDIUM WRITEUP
Linux Kernel < 5.17 - NULL Pointer Dereference in AX.25 Protocol
A NULL pointer dereference flaw was found in the Linux kernel’s Amateur Radio AX.25 protocol functionality in the way a user connects with the protocol. This flaw allows a local user to crash the system.
CVSS 4.7
CVE-2022-2318 WRITEUP MEDIUM WRITEUP
Linux Kernel < 5.19 - Use-After-Free in ROSE Timer Handler
There are use-after-free vulnerabilities caused by timer handler in net/rose/rose_timer.c of linux that allow attackers to crash linux kernel without any privileges.
CVSS 5.5
CVE-2022-41858 WRITEUP HIGH WRITEUP
Linux Kernel < 4.9.311 - NULL Pointer Dereference in SLIP Driver Detach
A flaw was found in the Linux kernel. A NULL pointer dereference may occur while a slip driver is in progress to detach in sl_tx_timeout in drivers/net/slip/slip.c. This issue could allow an attacker to crash the system or leak internal kernel information.
CVSS 7.1
CVE-2023-1118 WRITEUP HIGH WRITEUP
Linux Kernel 2.6.36-4.14.308 - Use-After-Free in Infrared Receiver/Transceiver Driver
A flaw use after free in the Linux kernel integrated infrared receiver/transceiver driver was found in the way user detaching rc device. A local user could use this flaw to crash the system or potentially escalate their privileges on the system.
CVSS 7.8
CVE-2023-6039 WRITEUP MEDIUM WRITEUP
Linux Kernel < 6.5 - Use-After-Free in LAN78XX USB Device Detachment
A use-after-free flaw was found in lan78xx_disconnect in drivers/net/usb/lan78xx.c in the network sub-component, net/usb/lan78xx in the Linux Kernel. This flaw allows a local attacker to crash the system when the LAN78XX USB device detaches.
CVSS 5.5