Linux

Linux Kernel

12290 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2023-0597

  • EPSS 0.02%
  • Veröffentlicht 23.02.2023 20:15:12
  • Zuletzt bearbeitet 12.03.2025 20:15:13

A flaw possibility of memory leak in the Linux kernel cpu_entry_area mapping of X86 CPU data to memory was found in the way user can guess location of exception stack(s) or other important data. A local user could use this flaw to get access to some ...

5.7

CVE-2023-23039

  • EPSS 0.02%
  • Veröffentlicht 22.02.2023 17:15:11
  • Zuletzt bearbeitet 20.03.2025 21:15:17

An issue was discovered in the Linux kernel through 6.2.0-rc2. drivers/tty/vcc.c has a race condition and resultant use-after-free if a physically proximate attacker removes a VCC device while calling open(), aka a race condition between vcc_open() a...

7.8

CVE-2023-26242

  • EPSS 0.01%
  • Veröffentlicht 21.02.2023 01:15:11
  • Zuletzt bearbeitet 05.05.2025 16:15:31

afu_mmio_region_get_by_offset in drivers/fpga/dfl-afu-region.c in the Linux kernel through 6.1.12 has an integer overflow.

5.5

CVE-2023-23586

  • EPSS 0.01%
  • Veröffentlicht 17.02.2023 13:15:10
  • Zuletzt bearbeitet 21.11.2024 07:46:29

Due to a vulnerability in the io_uring subsystem, it is possible to leak kernel memory information to the user process. timens_install calls current_is_single_threaded to determine if the current process is single-threaded, but this call does not con...

5.5

CVE-2023-0615

  • EPSS 0.01%
  • Veröffentlicht 06.02.2023 23:15:09
  • Zuletzt bearbeitet 25.03.2025 20:15:17

A memory leak flaw and potential divide by zero and Integer overflow was found in the Linux kernel V4L2 and vivid test code functionality. This issue occurs when a user triggers ioctls, such as VIDIOC_S_DV_TIMINGS ioctl. This could allow a local user...

4.6

CVE-2023-25012

Exploit
  • EPSS 0.03%
  • Veröffentlicht 02.02.2023 00:15:09
  • Zuletzt bearbeitet 05.05.2025 16:15:30

The Linux kernel through 6.1.9 has a Use-After-Free in bigben_remove in drivers/hid/hid-bigbenff.c via a crafted USB device because the LED controllers remain registered for too long.

7.8

CVE-2023-0240

  • EPSS 0.02%
  • Veröffentlicht 30.01.2023 14:15:10
  • Zuletzt bearbeitet 21.11.2024 07:36:48

There is a logic error in io_uring's implementation which can be used to trigger a use-after-free vulnerability leading to privilege escalation. In the io_prep_async_work function the assumption that the last io_grab_identity call cannot return fals...

7

CVE-2023-0266

Warnung
  • EPSS 0.12%
  • Veröffentlicht 30.01.2023 14:15:10
  • Zuletzt bearbeitet 24.10.2025 13:54:46

A use after free vulnerability exists in the ALSA PCM package in the Linux Kernel. SNDRV_CTL_IOCTL_ELEM_{READ|WRITE}32 is missing locks that can be used in a use-after-free that can result in a priviledge escalation to gain ring0 access from the syst...

7.8

CVE-2022-4139

  • EPSS 0.02%
  • Veröffentlicht 27.01.2023 18:15:15
  • Zuletzt bearbeitet 28.03.2025 16:15:25

An incorrect TLB flush issue was found in the Linux kernel’s GPU i915 kernel driver, potentially leading to random memory corruption or data leaks. This flaw could allow a local user to crash the system or escalate their privileges on the system.

4.7

CVE-2023-0468

Exploit
  • EPSS 0.01%
  • Veröffentlicht 26.01.2023 21:18:09
  • Zuletzt bearbeitet 01.04.2025 15:15:57

A use-after-free flaw was found in io_uring/poll.c in io_poll_check_events in the io_uring subcomponent in the Linux Kernel due to a race condition of poll_refs. This flaw may cause a NULL pointer dereference.