- EPSS 0.28%
- Veröffentlicht 27.03.2023 21:15:10
- Zuletzt bearbeitet 21.11.2024 07:38:24
In the Linux kernel, pick_next_rt_entity() may return a type confused entry, not detected by the BUG_ON condition, as the confused entry will not be NULL, but list_head.The buggy error condition would lead to a type confused entry with the list head,...
CVE-2023-1380
- EPSS 16.64%
- Veröffentlicht 27.03.2023 21:15:10
- Zuletzt bearbeitet 21.11.2024 07:39:04
A slab-out-of-bound read problem was found in brcmf_get_assoc_ies in drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c in the Linux Kernel. This issue could occur when assoc_info->req_len data is bigger than the size of the buffer, defined ...
CVE-2023-0590
- EPSS 0.2%
- Veröffentlicht 23.03.2023 21:15:19
- Zuletzt bearbeitet 21.11.2024 07:37:27
A use-after-free flaw was found in qdisc_graft in net/sched/sch_api.c in the Linux Kernel due to a race problem. This flaw leads to a denial of service issue. If patch ebda44da44f6 ("net: sched: fix race condition in qdisc_graft()") not applied yet, ...
CVE-2023-1513
- EPSS 0.23%
- Veröffentlicht 23.03.2023 21:15:19
- Zuletzt bearbeitet 25.02.2025 20:15:32
A flaw was found in KVM. When calling the KVM_GET_DEBUGREGS ioctl, on 32-bit systems, there might be some uninitialized portions of the kvm_debugregs structure that could be copied to userspace, causing an information leak.
CVE-2023-28772
- EPSS 0.73%
- Veröffentlicht 23.03.2023 15:15:12
- Zuletzt bearbeitet 05.05.2025 16:15:34
An issue was discovered in the Linux kernel before 5.13.3. lib/seq_buf.c has a seq_buf_putmem_hex buffer overflow.
CVE-2022-4095
- EPSS 0.26%
- Veröffentlicht 22.03.2023 15:15:10
- Zuletzt bearbeitet 26.02.2025 17:15:13
A use-after-free flaw was found in Linux kernel before 5.19.2. This issue occurs in cmd_hdl_filter in drivers/staging/rtl8712/rtl8712_cmd.c, allowing an attacker to launch a local denial of service attack and gain escalation of privileges.
CVE-2023-1390
- EPSS 5.1%
- Veröffentlicht 16.03.2023 21:15:11
- Zuletzt bearbeitet 23.04.2025 17:16:25
A remote denial of service vulnerability was found in the Linux kernel’s TIPC kernel module. The while loop in tipc_link_xmit() hits an unknown state while attempting to parse SKBs, which are not in the queue. Sending two small UDP packets to a syste...
CVE-2022-3424
- EPSS 0.24%
- Veröffentlicht 06.03.2023 23:15:10
- Zuletzt bearbeitet 06.03.2025 21:15:12
A use-after-free flaw was found in the Linux kernel’s SGI GRU driver in the way the first gru_file_unlocked_ioctl function is called by the user, where a fail pass occurs in the gru_check_chiplet_assignment function. This flaw allows a local user to ...
CVE-2023-1118
- EPSS 0.29%
- Veröffentlicht 02.03.2023 18:15:09
- Zuletzt bearbeitet 23.04.2025 17:16:24
A flaw use after free in the Linux kernel integrated infrared receiver/transceiver driver was found in the way user detaching rc device. A local user could use this flaw to crash the system or potentially escalate their privileges on the system.
CVE-2023-1095
- EPSS 0.22%
- Veröffentlicht 28.02.2023 23:15:11
- Zuletzt bearbeitet 18.03.2025 16:15:16
In nf_tables_updtable, if nf_tables_table_enable returns an error, nft_trans_destroy is called to free the transaction object. nft_trans_destroy() calls list_del(), but the transaction was never placed on a list -- the list head is all zeroes, this r...