CVE-2023-4194
- EPSS 0.27%
- Veröffentlicht 07.08.2023 14:15:11
- Zuletzt bearbeitet 24.03.2026 12:16:07
A flaw was found in the Linux kernel's TUN/TAP functionality. This issue could allow a local user to bypass network filters and gain unauthorized access to some resources. The original patches fixing CVE-2023-1076 are incorrect or incomplete. The pro...
CVE-2023-4133
- EPSS 0.22%
- Veröffentlicht 03.08.2023 15:15:33
- Zuletzt bearbeitet 21.11.2024 08:34:27
A use-after-free vulnerability was found in the cxgb4 driver in the Linux kernel. The bug occurs when the cxgb4 device is detaching due to a possible rearming of the flower_stats_timer from the work queue. This flaw allows a local user to crash the s...
CVE-2023-4132
- EPSS 0.26%
- Veröffentlicht 03.08.2023 15:15:32
- Zuletzt bearbeitet 21.11.2024 08:34:27
A use-after-free vulnerability was found in the siano smsusb module in the Linux kernel. The bug occurs during device initialization when the siano device is plugged in. This flaw allows a local user to crash the system, causing a denial of service c...
CVE-2023-4004
- EPSS 0.95%
- Veröffentlicht 31.07.2023 17:15:10
- Zuletzt bearbeitet 21.11.2024 08:34:12
A use-after-free flaw was found in the Linux kernel's netfilter in the way a user triggers the nft_pipapo_remove function with the element, without a NFT_SET_EXT_KEY_END. This issue could allow a local user to crash the system or potentially escalate...
CVE-2023-4010
- EPSS 0.52%
- Veröffentlicht 31.07.2023 17:15:10
- Zuletzt bearbeitet 21.11.2024 08:34:13
A flaw was found in the USB Host Controller Driver framework in the Linux kernel. The usb_giveback_urb function has a logic loophole in its implementation. Due to the inappropriate judgment condition of the goto statement, the function cannot return ...
CVE-2023-2640
- EPSS 15.78%
- Veröffentlicht 26.07.2023 02:15:09
- Zuletzt bearbeitet 21.11.2024 07:58:59
On Ubuntu kernels carrying both c914c0e27eb0 and "UBUNTU: SAUCE: overlayfs: Skip permission checking for trusted.overlayfs.* xattrs", an unprivileged user may set privileged extended attributes on the mounted files, leading them to be set on the uppe...
CVE-2023-32629
- EPSS 8.89%
- Veröffentlicht 26.07.2023 02:15:09
- Zuletzt bearbeitet 21.11.2024 08:03:44
Local privilege escalation vulnerability in Ubuntu Kernels overlayfs ovl_copy_up_meta_inode_data skip permission checks when calling ovl_do_setxattr on Ubuntu kernels
CVE-2023-3772
- EPSS 0.45%
- Veröffentlicht 25.07.2023 16:15:11
- Zuletzt bearbeitet 21.11.2024 08:18:01
A flaw was found in the Linux kernel’s IP framework for transforming packets (XFRM subsystem). This issue may allow a malicious user with CAP_NET_ADMIN privileges to directly dereference a NULL pointer in xfrm_update_ae_params(), leading to a possibl...
CVE-2023-3773
- EPSS 0.24%
- Veröffentlicht 25.07.2023 16:15:11
- Zuletzt bearbeitet 21.11.2024 08:18:01
A flaw was found in the Linux kernel’s IP framework for transforming packets (XFRM subsystem). This issue may allow a malicious user with CAP_NET_ADMIN privileges to cause a 4 byte out-of-bounds read of XFRMA_MTIMER_THRESH when parsing netlink attrib...
CVE-2023-20593
- EPSS 5.79%
- Veröffentlicht 24.07.2023 20:15:10
- Zuletzt bearbeitet 13.02.2025 17:16:01
An issue in “Zen 2” CPUs, under specific microarchitectural circumstances, may allow an attacker to potentially access sensitive information.