Debian

Debian 12 (bookworm)

11230 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.7

CVE-2023-21400

Exploit
  • EPSS 0.04%
  • Veröffentlicht 13.07.2023 00:15:24
  • Zuletzt bearbeitet 13.02.2025 17:16:02

In multiple functions of io_uring.c, there is a possible kernel memory corruption due to improper locking. This could lead to local escalation of privilege in the kernel with System execution privileges needed. User interaction is not needed for exp...

7.8

CVE-2023-3106

  • EPSS 0.01%
  • Veröffentlicht 12.07.2023 09:15:14
  • Zuletzt bearbeitet 21.11.2024 08:16:28

A NULL pointer dereference vulnerability was found in netlink_dump. This issue can occur when the Netlink socket receives the message(sendmsg) for the XFRM_MSG_GETSA, XFRM_MSG_GETPOLICY type message, and the DUMP flag is set and can cause a denial of...

4.7

CVE-2023-3108

  • EPSS 0.01%
  • Veröffentlicht 11.07.2023 16:15:12
  • Zuletzt bearbeitet 06.03.2025 16:15:42

A flaw was found in the subsequent get_user_pages_fast in the Linux kernel’s interface for symmetric key cipher algorithms in the skcipher_recvmsg of crypto/algif_skcipher.c function. This flaw allows a local user to crash the system.

7.8

CVE-2023-3269

  • EPSS 0.24%
  • Veröffentlicht 11.07.2023 12:15:10
  • Zuletzt bearbeitet 21.11.2024 08:16:52

A vulnerability exists in the memory management subsystem of the Linux kernel. The lock handling for accessing and updating virtual memory areas (VMAs) is incorrect, leading to use-after-free problems. This issue can be successfully exploited to exec...

8.1

CVE-2023-32250

  • EPSS 0.11%
  • Veröffentlicht 10.07.2023 16:15:52
  • Zuletzt bearbeitet 21.11.2024 08:02:58

A flaw was found in the Linux kernel's ksmbd, a high-performance in-kernel SMB server. The specific flaw exists within the processing of SMB2_SESSION_SETUP commands. The issue results from the lack of proper locking when performing operations on an o...

8.1

CVE-2023-32254

  • EPSS 0.07%
  • Veröffentlicht 10.07.2023 16:15:52
  • Zuletzt bearbeitet 21.11.2024 08:02:59

A flaw was found in the Linux kernel's ksmbd, a high-performance in-kernel SMB server. The specific flaw exists within the processing of SMB2_TREE_DISCONNECT commands. The issue results from the lack of proper locking when performing operations on an...

4.6

CVE-2023-37453

Exploit
  • EPSS 0.02%
  • Veröffentlicht 06.07.2023 17:15:14
  • Zuletzt bearbeitet 05.05.2025 16:15:42

An issue was discovered in the USB subsystem in the Linux kernel through 6.4.2. There is an out-of-bounds and crash in read_descriptors in drivers/usb/core/sysfs.c.

5.5

CVE-2023-37454

Exploit
  • EPSS 0.01%
  • Veröffentlicht 06.07.2023 17:15:14
  • Zuletzt bearbeitet 21.11.2024 08:11:44

An issue was discovered in the Linux kernel through 6.4.2. A crafted UDF filesystem image causes a use-after-free write operation in the udf_put_super and udf_close_lvid functions in fs/udf/super.c. NOTE: the suse.com reference has a different perspe...

7.8

CVE-2023-35001

  • EPSS 0.22%
  • Veröffentlicht 05.07.2023 19:15:10
  • Zuletzt bearbeitet 21.11.2024 08:07:48

Linux Kernel nftables Out-Of-Bounds Read/Write Vulnerability; nft_byteorder poorly handled vm register contents when CAP_NET_ADMIN is in any user or network namespace

7.8

CVE-2023-31248

  • EPSS 0.22%
  • Veröffentlicht 05.07.2023 19:15:09
  • Zuletzt bearbeitet 21.11.2024 08:01:42

Linux Kernel nftables Use-After-Free Local Privilege Escalation Vulnerability; `nft_chain_lookup_byid()` failed to check whether a chain was active and CAP_NET_ADMIN is in any user or network namespace