CVE-2023-3773
- EPSS 0.24%
- Veröffentlicht 25.07.2023 16:15:11
- Zuletzt bearbeitet 21.11.2024 08:18:01
A flaw was found in the Linux kernel’s IP framework for transforming packets (XFRM subsystem). This issue may allow a malicious user with CAP_NET_ADMIN privileges to cause a 4 byte out-of-bounds read of XFRMA_MTIMER_THRESH when parsing netlink attrib...
CVE-2023-20593
- EPSS 5.79%
- Veröffentlicht 24.07.2023 20:15:10
- Zuletzt bearbeitet 13.02.2025 17:16:01
An issue in “Zen 2” CPUs, under specific microarchitectural circumstances, may allow an attacker to potentially access sensitive information.
CVE-2023-3640
- EPSS 0.76%
- Veröffentlicht 24.07.2023 16:15:13
- Zuletzt bearbeitet 26.06.2026 11:16:30
A possible unauthorized memory access flaw was found in the Linux kernel's cpu_entry_area mapping of X86 CPU data to memory, where a user may guess the location of exception stacks or other important data. Based on the previous CVE-2023-0597, the 'Ra...
CVE-2023-3812
- EPSS 0.34%
- Veröffentlicht 24.07.2023 16:15:13
- Zuletzt bearbeitet 21.11.2024 08:18:07
An out-of-bounds memory access flaw was found in the Linux kernel’s TUN/TAP device driver functionality in how a user generates a malicious (too big) networking packet when napi frags is enabled. This flaw allows a local user to crash or potentially ...
CVE-2023-3567
- EPSS 0.42%
- Veröffentlicht 24.07.2023 16:15:12
- Zuletzt bearbeitet 21.11.2024 08:17:33
A use-after-free flaw was found in vcs_read in drivers/tty/vt/vc_screen.c in vc_screen in the Linux Kernel. This issue may allow an attacker with local user access to cause a system crash or leak internal kernel information.
CVE-2023-2860
- EPSS 0.35%
- Veröffentlicht 24.07.2023 16:15:11
- Zuletzt bearbeitet 21.11.2024 07:59:26
An out-of-bounds read vulnerability was found in the SR-IPv6 implementation in the Linux kernel. The flaw exists within the processing of seg6 attributes. The issue results from the improper validation of user-supplied data, which can result in a rea...
CVE-2023-3863
- EPSS 0.23%
- Veröffentlicht 24.07.2023 15:15:09
- Zuletzt bearbeitet 21.11.2024 08:18:14
A use-after-free flaw was found in nfc_llcp_find_local in net/nfc/llcp_core.c in NFC in the Linux kernel. This flaw allows a local user with special privileges to impact a kernel information leak issue.
CVE-2023-3609
- EPSS 0.46%
- Veröffentlicht 21.07.2023 21:15:11
- Zuletzt bearbeitet 13.02.2025 17:16:57
A use-after-free vulnerability in the Linux kernel's net/sched: cls_u32 component can be exploited to achieve local privilege escalation. If tcf_change_indev() fails, u32_set_parms() will immediately return an error after incrementing or decrementin...
CVE-2023-3610
- EPSS 0.26%
- Veröffentlicht 21.07.2023 21:15:11
- Zuletzt bearbeitet 13.02.2025 17:16:57
A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. Flaw in the error handling of bound chains causes a use-after-free in the abort path of NFT_MSG_NEWRULE. The ...
CVE-2023-3611
- EPSS 0.27%
- Veröffentlicht 21.07.2023 21:15:11
- Zuletzt bearbeitet 13.02.2025 17:16:58
An out-of-bounds write vulnerability in the Linux kernel's net/sched: sch_qfq component can be exploited to achieve local privilege escalation. The qfq_change_agg() function in net/sched/sch_qfq.c allows an out-of-bounds write because lmax is update...