CVE-2023-34256
- EPSS 0.25%
- Veröffentlicht 31.05.2023 20:15:10
- Zuletzt bearbeitet 11.03.2025 16:15:14
An issue was discovered in the Linux kernel before 6.3.3. There is an out-of-bounds read in crc16 in lib/crc16.c when called from fs/ext4/super.c because ext4_group_desc_csum does not properly check an offset. NOTE: this is disputed by third parties ...
CVE-2023-33288
- EPSS 0.32%
- Veröffentlicht 22.05.2023 03:15:09
- Zuletzt bearbeitet 18.03.2025 19:15:41
An issue was discovered in the Linux kernel before 6.2.9. A use-after-free was found in bq24190_remove in drivers/power/supply/bq24190_charger.c. It could allow a local attacker to crash the system due to a race condition.
CVE-2020-36694
- EPSS 0.44%
- Veröffentlicht 21.05.2023 23:15:08
- Zuletzt bearbeitet 31.01.2025 18:15:29
An issue was discovered in netfilter in the Linux kernel before 5.10. There can be a use-after-free in the packet processing context, because the per-CPU sequence count is mishandled during concurrent iptables rules replacement. This could be exploit...
CVE-2023-2124
- EPSS 0.49%
- Veröffentlicht 15.05.2023 22:15:12
- Zuletzt bearbeitet 21.11.2024 07:57:58
An out-of-bounds memory access flaw was found in the Linux kernel’s XFS file system in how a user restores an XFS image after failure (with a dirty log journal). This flaw allows a local user to crash or potentially escalate their privileges on the s...
CVE-2023-2513
- EPSS 0.25%
- Veröffentlicht 08.05.2023 21:15:11
- Zuletzt bearbeitet 23.04.2025 17:16:29
A use-after-free vulnerability was found in the Linux kernel's ext4 filesystem in the way it handled the extra inode size for extended attributes. This flaw could allow a privileged local user to cause a system crash or other undefined behaviors.
CVE-2023-32233
- EPSS 12.97%
- Veröffentlicht 08.05.2023 20:15:20
- Zuletzt bearbeitet 05.05.2025 16:15:39
In the Linux kernel through 6.3.1, a use-after-free in Netfilter nf_tables when processing batch requests can be abused to perform arbitrary read and write operations on kernel memory. Unprivileged local users can obtain root privileges. This occurs ...
CVE-2023-32269
- EPSS 0.27%
- Veröffentlicht 05.05.2023 17:15:09
- Zuletzt bearbeitet 05.05.2025 16:15:40
An issue was discovered in the Linux kernel before 6.1.11. In net/netrom/af_netrom.c, there is a use-after-free because accept is also allowed for a successfully connected AF_NETROM socket. However, in order for an attacker to exploit this, the syste...
CVE-2023-31436
- EPSS 0.58%
- Veröffentlicht 28.04.2023 02:15:09
- Zuletzt bearbeitet 21.11.2024 08:01:51
qfq_change_class in net/sched/sch_qfq.c in the Linux kernel before 6.2.13 allows an out-of-bounds write because lmax can exceed QFQ_MIN_LMAX.
CVE-2023-0458
- EPSS 0.72%
- Veröffentlicht 26.04.2023 19:15:08
- Zuletzt bearbeitet 21.11.2024 07:37:13
A speculative pointer dereference problem exists in the Linux Kernel on the do_prlimit() function. The resource argument value is controlled and is used in pointer arithmetic for the 'rlim' variable and can be used to leak the contents. We recommend ...
CVE-2023-0045
- EPSS 2.4%
- Veröffentlicht 25.04.2023 23:15:09
- Zuletzt bearbeitet 13.02.2025 17:15:52
The current implementation of the prctl syscall does not issue an IBPB immediately during the syscall. The ib_prctl_set function updates the Thread Information Flags (TIFs) for the task and updates the SPEC_CTRL MSR on the function __speculation_ctr...