CVE-2023-3111
- EPSS 0.44%
- Veröffentlicht 05.06.2023 21:15:11
- Zuletzt bearbeitet 23.04.2025 17:16:34
A use after free vulnerability was found in prepare_to_relocate in fs/btrfs/relocation.c in btrfs in the Linux Kernel. This possible flaw can be triggered by calling btrfs_ioctl_balance() before calling btrfs_ioctl_defrag().
CVE-2023-2985
- EPSS 0.2%
- Veröffentlicht 01.06.2023 01:15:17
- Zuletzt bearbeitet 11.03.2025 16:15:14
A use after free flaw was found in hfsplus_put_super in fs/hfsplus/super.c in the Linux Kernel. This flaw could allow a local user to cause a denial of service problem.
CVE-2023-3006
- EPSS 0.26%
- Veröffentlicht 31.05.2023 20:15:11
- Zuletzt bearbeitet 09.01.2025 21:15:24
A known cache speculation vulnerability, known as Branch History Injection (BHI) or Spectre-BHB, becomes actual again for the new hw AmpereOne. Spectre-BHB is similar to Spectre v2, except that malicious code uses the shared branch history (stored in...
CVE-2023-34256
- EPSS 0.25%
- Veröffentlicht 31.05.2023 20:15:10
- Zuletzt bearbeitet 11.03.2025 16:15:14
An issue was discovered in the Linux kernel before 6.3.3. There is an out-of-bounds read in crc16 in lib/crc16.c when called from fs/ext4/super.c because ext4_group_desc_csum does not properly check an offset. NOTE: this is disputed by third parties ...
CVE-2023-2898
- EPSS 0.2%
- Veröffentlicht 26.05.2023 22:15:14
- Zuletzt bearbeitet 21.11.2024 07:59:31
There is a null-pointer-dereference flaw found in f2fs_write_end_io in fs/f2fs/data.c in the Linux kernel. This flaw allows a local privileged user to cause a denial of service problem.
CVE-2023-2002
- EPSS 1.47%
- Veröffentlicht 26.05.2023 17:15:14
- Zuletzt bearbeitet 21.11.2024 07:57:44
A vulnerability was found in the HCI sockets implementation due to a missing capability check in net/bluetooth/hci_sock.c in the Linux Kernel. This flaw allows an attacker to unauthorized execution of management commands, compromising the confidentia...
CVE-2023-0459
- EPSS 0.64%
- Veröffentlicht 25.05.2023 14:15:09
- Zuletzt bearbeitet 21.11.2024 07:37:13
Copy_from_user on 64-bit versions of the Linux kernel does not implement the __uaccess_begin_nospec allowing a user to bypass the "access_ok" check and pass a kernel pointer to copy_from_user(). This would allow an attacker to leak information. We re...
CVE-2023-33288
- EPSS 0.32%
- Veröffentlicht 22.05.2023 03:15:09
- Zuletzt bearbeitet 18.03.2025 19:15:41
An issue was discovered in the Linux kernel before 6.2.9. A use-after-free was found in bq24190_remove in drivers/power/supply/bq24190_charger.c. It could allow a local attacker to crash the system due to a race condition.
CVE-2020-36694
- EPSS 0.44%
- Veröffentlicht 21.05.2023 23:15:08
- Zuletzt bearbeitet 31.01.2025 18:15:29
An issue was discovered in netfilter in the Linux kernel before 5.10. There can be a use-after-free in the packet processing context, because the per-CPU sequence count is mishandled during concurrent iptables rules replacement. This could be exploit...
CVE-2023-33203
- EPSS 0.36%
- Veröffentlicht 18.05.2023 08:15:08
- Zuletzt bearbeitet 05.05.2025 16:15:40
The Linux kernel before 6.2.9 has a race condition and resultant use-after-free in drivers/net/ethernet/qualcomm/emac/emac.c if a physically proximate attacker unplugs an emac based device.