- EPSS 0.39%
- Veröffentlicht 11.04.2023 21:15:15
- Zuletzt bearbeitet 21.11.2024 07:40:17
A use-after-free flaw was found in btsdio_remove in drivers\bluetooth\btsdio.c in the Linux Kernel. In this flaw, a call to btsdio_remove with an unfinished job, may cause a race problem leading to a UAF on hdev devices.
CVE-2023-1838
- EPSS 0.25%
- Veröffentlicht 05.04.2023 19:15:07
- Zuletzt bearbeitet 21.11.2024 07:39:59
A use-after-free flaw was found in vhost_net_set_backend in drivers/vhost/net.c in virtio network subcomponent in the Linux kernel due to a double fget. This flaw could allow a local attacker to crash the system, and could even lead to a kernel infor...
- EPSS 0.27%
- Veröffentlicht 16.03.2023 00:15:11
- Zuletzt bearbeitet 05.05.2025 16:15:34
do_tls_getsockopt in net/tls/tls_main.c in the Linux kernel through 6.2.6 lacks a lock_sock call, leading to a race condition (with a resultant use-after-free or NULL pointer dereference).
CVE-2022-25636
- EPSS 2.63%
- Veröffentlicht 24.02.2022 15:15:31
- Zuletzt bearbeitet 21.11.2024 06:52:29
net/netfilter/nf_dup_netdev.c in the Linux kernel 5.4 through 5.6.10 allows local users to gain privileges because of a heap out-of-bounds write. This is related to nf_tables_offload.
CVE-2019-20636
- EPSS 0.38%
- Veröffentlicht 08.04.2020 14:15:12
- Zuletzt bearbeitet 21.11.2024 04:38:56
In the Linux kernel before 5.4.12, drivers/input/input.c has out-of-bounds writes via a crafted keycode table, as demonstrated by input_set_keycode, aka CID-cb222aed03d7.