Hangyu Hua

10 exploits Active since Dec 2021
CVE-2022-24958 WRITEUP HIGH WRITEUP
Linux kernel <5.16.8 - Buffer Overflow
drivers/usb/gadget/legacy/inode.c in the Linux kernel through 5.16.8 mishandles dev->buf release.
CVSS 7.8
CVE-2021-45480 WRITEUP MEDIUM WRITEUP
Linux Kernel < 5.15.11 - Memory Leak in __rds_conn_create()
An issue was discovered in the Linux kernel before 5.15.11. There is a memory leak in the __rds_conn_create() function in net/rds/connection.c in a certain combination of circumstances.
CVSS 5.5
CVE-2022-24958 WRITEUP HIGH WRITEUP
Linux kernel <5.16.8 - Buffer Overflow
drivers/usb/gadget/legacy/inode.c in the Linux kernel through 5.16.8 mishandles dev->buf release.
CVSS 7.8
CVE-2022-24959 WRITEUP MEDIUM WRITEUP
Linux Kernel < 5.16.5 - Memory Leak in YAM Driver
An issue was discovered in the Linux kernel before 5.16.5. There is a memory leak in yam_siocdevprivate in drivers/net/hamradio/yam.c.
CVSS 5.5
CVE-2022-28388 WRITEUP MEDIUM WRITEUP
Linux kernel <5.17.1 - Use After Free
usb_8dev_start_xmit in drivers/net/can/usb/usb_8dev.c in the Linux kernel through 5.17.1 has a double free.
CVSS 5.5
CVE-2022-28389 WRITEUP MEDIUM WRITEUP
Linux kernel <5.17.1 - Use After Free
mcba_usb_start_xmit in drivers/net/can/usb/mcba_usb.c in the Linux kernel through 5.17.1 has a double free.
CVSS 5.5
CVE-2022-28390 WRITEUP HIGH WRITEUP
Linux kernel <5.17.1 - Memory Corruption
ems_usb_start_xmit in drivers/net/can/usb/ems_usb.c in the Linux kernel through 5.17.1 has a double free.
CVSS 7.8
CVE-2022-34494 WRITEUP MEDIUM WRITEUP
Linux Kernel < 5.18.4 - Double Free in rpmsg_virtio_add_ctrl_dev
rpmsg_virtio_add_ctrl_dev in drivers/rpmsg/virtio_rpmsg_bus.c in the Linux kernel before 5.18.4 has a double free.
CVSS 5.5
CVE-2022-34495 WRITEUP MEDIUM WRITEUP
Linux Kernel < 5.18.4 - Double Free in rpmsg_probe
rpmsg_probe in drivers/rpmsg/virtio_rpmsg_bus.c in the Linux kernel before 5.18.4 has a double free.
CVSS 5.5
CVE-2022-36879 WRITEUP MEDIUM WRITEUP
Linux kernel <5.18.14 - Use After Free
An issue was discovered in the Linux kernel through 5.18.14. xfrm_expand_policies in net/xfrm/xfrm_policy.c can cause a refcount to be dropped twice.
CVSS 5.5