Linux

Linux Kernel

12352 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2023-3611

  • EPSS 0.02%
  • Published 21.07.2023 21:15:11
  • Last modified 13.02.2025 17:16:58

An out-of-bounds write vulnerability in the Linux kernel's net/sched: sch_qfq component can be exploited to achieve local privilege escalation. The qfq_change_agg() function in net/sched/sch_qfq.c allows an out-of-bounds write because lmax is update...

7.8

CVE-2023-3776

  • EPSS 0.04%
  • Published 21.07.2023 21:15:11
  • Last modified 13.02.2025 17:16:58

A use-after-free vulnerability in the Linux kernel's net/sched: cls_fw component can be exploited to achieve local privilege escalation. If tcf_change_indev() fails, fw_set_parms() will immediately return an error after incrementing or decrementing ...

5.5

CVE-2023-0160

Exploit
  • EPSS 0.01%
  • Published 18.07.2023 17:15:11
  • Last modified 21.11.2024 07:36:39

A deadlock flaw was found in the Linux kernel’s BPF subsystem. This flaw allows a local user to potentially crash the system.

9.1

CVE-2023-38426

  • EPSS 0.04%
  • Published 18.07.2023 00:15:09
  • Last modified 21.11.2024 08:13:32

An issue was discovered in the Linux kernel before 6.3.4. ksmbd has an out-of-bounds read in smb2_find_context_vals when create_context's name_len is larger than the tag length.

9.8

CVE-2023-38427

  • EPSS 0.09%
  • Published 18.07.2023 00:15:09
  • Last modified 05.05.2025 16:15:42

An issue was discovered in the Linux kernel before 6.3.8. fs/smb/server/smb2pdu.c in ksmbd has an integer underflow and out-of-bounds read in deassemble_neg_contexts.

9.1

CVE-2023-38428

  • EPSS 0.06%
  • Published 18.07.2023 00:15:09
  • Last modified 21.11.2024 08:13:32

An issue was discovered in the Linux kernel before 6.3.4. fs/ksmbd/smb2pdu.c in ksmbd does not properly check the UserName value because it does not consider the address of security buffer, leading to an out-of-bounds read.

9.8

CVE-2023-38429

  • EPSS 0.04%
  • Published 18.07.2023 00:15:09
  • Last modified 03.01.2025 12:15:25

An issue was discovered in the Linux kernel before 6.3.4. fs/ksmbd/connection.c in ksmbd has an off-by-one error in memory allocation (because of ksmbd_smb2_check_message) that may lead to out-of-bounds access.

9.1

CVE-2023-38430

  • EPSS 0.07%
  • Published 18.07.2023 00:15:09
  • Last modified 21.11.2024 08:13:33

An issue was discovered in the Linux kernel before 6.3.9. ksmbd does not validate the SMB request protocol ID, leading to an out-of-bounds read.

9.1

CVE-2023-38431

  • EPSS 0.07%
  • Published 18.07.2023 00:15:09
  • Last modified 21.11.2024 08:13:33

An issue was discovered in the Linux kernel before 6.3.8. fs/smb/server/connection.c in ksmbd does not validate the relationship between the NetBIOS header's length field and the SMB header sizes, via pdu_size in ksmbd_conn_handler_loop, leading to a...

9.1

CVE-2023-38432

  • EPSS 0.07%
  • Published 18.07.2023 00:15:09
  • Last modified 21.11.2024 08:13:33

An issue was discovered in the Linux kernel before 6.3.10. fs/smb/server/smb2misc.c in ksmbd does not validate the relationship between the command payload size and the RFC1002 length specification, leading to an out-of-bounds read.