Linux

Linux Kernel

12373 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2023-7042

  • EPSS 0.02%
  • Veröffentlicht 21.12.2023 20:15:09
  • Zuletzt bearbeitet 21.11.2024 08:45:06

A null pointer dereference vulnerability was found in ath10k_wmi_tlv_op_pull_mgmt_tx_compl_ev() in drivers/net/wireless/ath/ath10k/wmi-tlv.c in the Linux kernel. This issue could be exploited to trigger a denial of service.

7

CVE-2023-6546

  • EPSS 0.33%
  • Veröffentlicht 21.12.2023 20:15:08
  • Zuletzt bearbeitet 21.11.2024 08:44:04

A race condition was found in the GSM 0710 tty multiplexor in the Linux kernel. This issue occurs when two threads execute the GSMIOC_SETCONF ioctl on the same tty file descriptor with the gsm line discipline enabled, and can lead to a use-after-free...

7

CVE-2023-6931

  • EPSS 0.21%
  • Veröffentlicht 19.12.2023 14:15:08
  • Zuletzt bearbeitet 13.02.2025 18:16:11

A heap out-of-bounds write vulnerability in the Linux kernel's Performance Events system component can be exploited to achieve local privilege escalation. A perf_event's read_size can overflow, leading to an heap out-of-bounds increment or write in ...

7

CVE-2023-6932

  • EPSS 0.03%
  • Veröffentlicht 19.12.2023 14:15:08
  • Zuletzt bearbeitet 13.02.2025 18:16:11

A use-after-free vulnerability in the Linux kernel's ipv4: igmp component can be exploited to achieve local privilege escalation. A race condition can be exploited to cause a timer be mistakenly registered on a RCU read locked object which is freed ...

7.8

CVE-2023-6817

  • EPSS 0.02%
  • Veröffentlicht 18.12.2023 15:15:10
  • Zuletzt bearbeitet 13.02.2025 18:16:10

A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. The function nft_pipapo_walk did not skip inactive elements during set walk which could lead double deactivat...

5.5

CVE-2023-6679

  • EPSS 0.01%
  • Veröffentlicht 11.12.2023 19:15:09
  • Zuletzt bearbeitet 21.11.2024 08:44:19

A null pointer dereference vulnerability was found in dpll_pin_parent_pin_set() in drivers/dpll/dpll_netlink.c in the Digital Phase Locked Loop (DPLL) subsystem in the Linux kernel. This issue could be exploited to trigger a denial of service.

5.5

CVE-2023-50431

  • EPSS 0.01%
  • Veröffentlicht 09.12.2023 23:15:07
  • Zuletzt bearbeitet 30.05.2025 22:14:58

sec_attest_info in drivers/accel/habanalabs/common/habanalabs_ioctl.c in the Linux kernel through 6.6.5 allows an information leak to user space because info->pad0 is not initialized.

5.5

CVE-2023-6560

  • EPSS 0.01%
  • Veröffentlicht 09.12.2023 00:15:07
  • Zuletzt bearbeitet 21.11.2024 08:44:06

An out-of-bounds memory access flaw was found in the io_uring SQ/CQ rings functionality in the Linux kernel. This issue could allow a local user to crash the system.

5.5

CVE-2023-6622

  • EPSS 0.01%
  • Veröffentlicht 08.12.2023 18:15:07
  • Zuletzt bearbeitet 25.06.2025 20:52:54

A null pointer dereference vulnerability was found in nft_dynset_init() in net/netfilter/nft_dynset.c in nf_tables in the Linux kernel. This issue may allow a local attacker with CAP_NET_ADMIN user privilege to trigger a denial of service.

7.1

CVE-2023-6606

Exploit
  • EPSS 0.01%
  • Veröffentlicht 08.12.2023 17:15:07
  • Zuletzt bearbeitet 21.11.2024 08:44:11

An out-of-bounds read vulnerability was found in smbCalcSize in fs/smb/client/netmisc.c in the Linux Kernel. This issue could allow a local attacker to crash the system or leak internal kernel information.