Linux

Linux Kernel

12373 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2021-3600

  • EPSS 0.12%
  • Veröffentlicht 08.01.2024 19:15:08
  • Zuletzt bearbeitet 21.11.2024 06:21:56

It was discovered that the eBPF implementation in the Linux kernel did not properly track bounds information for 32 bit registers when performing div and mod operations. A local attacker could use this to possibly execute arbitrary code.

5.5

CVE-2023-1032

  • EPSS 0.01%
  • Veröffentlicht 08.01.2024 19:15:08
  • Zuletzt bearbeitet 21.11.2024 07:38:19

The Linux kernel io_uring IORING_OP_SOCKET operation contained a double free in function __sys_socket_file() in file net/socket.c. This issue was introduced in da214a475f8bd1d3e9e7a19ddfeb4d1617551bab and fixed in 649c15c7691e9b13cbe9bf6c65c365350e05...

7

CVE-2022-2602

  • EPSS 1.48%
  • Veröffentlicht 08.01.2024 18:15:45
  • Zuletzt bearbeitet 21.11.2024 07:01:19

io_uring UAF, Unix SCM garbage collection

7.8

CVE-2022-2585

  • EPSS 0.49%
  • Veröffentlicht 08.01.2024 18:15:44
  • Zuletzt bearbeitet 21.11.2024 07:01:17

It was discovered that when exec'ing from a non-leader thread, armed POSIX CPU timers would be left on a list but freed, leading to a use-after-free.

7.8

CVE-2022-2586

Warnung Exploit
  • EPSS 3.82%
  • Veröffentlicht 08.01.2024 18:15:44
  • Zuletzt bearbeitet 28.10.2025 13:34:55

It was discovered that a nft object or expression could reference a nft set on a different nft table, leading to a use-after-free once that table was deleted.

7.8

CVE-2022-2588

Exploit
  • EPSS 57.33%
  • Veröffentlicht 08.01.2024 18:15:44
  • Zuletzt bearbeitet 21.11.2024 07:01:18

It was discovered that the cls_route filter implementation in the Linux kernel would not remove an old filter from the hashtable before freeing it if its handle had the value 0.

4.9

CVE-2023-34324

  • EPSS 0.1%
  • Veröffentlicht 05.01.2024 17:15:08
  • Zuletzt bearbeitet 05.06.2025 20:15:23

Closing of an event channel in the Linux kernel can result in a deadlock. This happens when the close is being performed in parallel to an unrelated Xen console action and the handling of a Xen console interrupt in an unprivileged guest. The closing...

7

CVE-2023-6270

  • EPSS 0.02%
  • Veröffentlicht 04.01.2024 17:15:08
  • Zuletzt bearbeitet 30.08.2025 09:15:31

A flaw was found in the ATA over Ethernet (AoE) driver in the Linux kernel. The aoecmd_cfg_pkts() function improperly updates the refcnt on `struct net_device`, and a use-after-free can be triggered by racing between the free on the struct and the ac...

4.4

CVE-2023-7192

  • EPSS 0.02%
  • Veröffentlicht 02.01.2024 19:15:11
  • Zuletzt bearbeitet 21.11.2024 08:45:28

A memory leak problem was found in ctnetlink_create_conntrack in net/netfilter/nf_conntrack_netlink.c in the Linux Kernel. This issue may allow a local attacker with CAP_NET_ADMIN privileges to cause a denial of service (DoS) attack due to a refcount...

6.7

CVE-2024-0193

  • EPSS 0.06%
  • Veröffentlicht 02.01.2024 18:15:08
  • Zuletzt bearbeitet 21.11.2024 08:46:02

A use-after-free flaw was found in the netfilter subsystem of the Linux kernel. If the catchall element is garbage-collected when the pipapo set is removed, the element can be deactivated twice. This can cause a use-after-free issue on an NFT_CHAIN o...