CVE-2023-3161
- EPSS 0.21%
- Veröffentlicht 12.06.2023 20:15:12
- Zuletzt bearbeitet 11.03.2025 15:15:39
A flaw was found in the Framebuffer Console (fbcon) in the Linux Kernel. When providing font->width and font->height greater than 32 to fbcon_set_font, since there are no checks in place, a shift-out-of-bounds occurs leading to undefined behavior and...
CVE-2023-3141
- EPSS 0.44%
- Veröffentlicht 09.06.2023 20:15:10
- Zuletzt bearbeitet 11.03.2025 15:15:38
A use-after-free flaw was found in r592_remove in drivers/memstick/host/r592.c in media access in the Linux Kernel. This flaw allows a local attacker to crash the system at device disconnect, possibly leading to a kernel information leak.
CVE-2023-3111
- EPSS 0.44%
- Veröffentlicht 05.06.2023 21:15:11
- Zuletzt bearbeitet 23.04.2025 17:16:34
A use after free vulnerability was found in prepare_to_relocate in fs/btrfs/relocation.c in btrfs in the Linux Kernel. This possible flaw can be triggered by calling btrfs_ioctl_balance() before calling btrfs_ioctl_defrag().
CVE-2023-2985
- EPSS 0.2%
- Veröffentlicht 01.06.2023 01:15:17
- Zuletzt bearbeitet 11.03.2025 16:15:14
A use after free flaw was found in hfsplus_put_super in fs/hfsplus/super.c in the Linux Kernel. This flaw could allow a local user to cause a denial of service problem.
CVE-2023-3006
- EPSS 0.26%
- Veröffentlicht 31.05.2023 20:15:11
- Zuletzt bearbeitet 09.01.2025 21:15:24
A known cache speculation vulnerability, known as Branch History Injection (BHI) or Spectre-BHB, becomes actual again for the new hw AmpereOne. Spectre-BHB is similar to Spectre v2, except that malicious code uses the shared branch history (stored in...
CVE-2022-48502
- EPSS 0.55%
- Veröffentlicht 31.05.2023 20:15:10
- Zuletzt bearbeitet 21.11.2024 07:33:27
An issue was discovered in the Linux kernel before 6.2. The ntfs3 subsystem does not properly check for correctness during disk reads, leading to an out-of-bounds read in ntfs_set_ea in fs/ntfs3/xattr.c.
CVE-2023-34256
- EPSS 0.25%
- Veröffentlicht 31.05.2023 20:15:10
- Zuletzt bearbeitet 11.03.2025 16:15:14
An issue was discovered in the Linux kernel before 6.3.3. There is an out-of-bounds read in crc16 in lib/crc16.c when called from fs/ext4/super.c because ext4_group_desc_csum does not properly check an offset. NOTE: this is disputed by third parties ...
CVE-2023-2612
- EPSS 0.28%
- Veröffentlicht 31.05.2023 00:15:10
- Zuletzt bearbeitet 21.11.2024 07:58:55
Jean-Baptiste Cayrou discovered that the shiftfs file system in the Ubuntu Linux kernel contained a race condition when handling inode locking in some situations. A local attacker could use this to cause a denial of service (kernel deadlock).
CVE-2023-2898
- EPSS 0.2%
- Veröffentlicht 26.05.2023 22:15:14
- Zuletzt bearbeitet 21.11.2024 07:59:31
There is a null-pointer-dereference flaw found in f2fs_write_end_io in fs/f2fs/data.c in the Linux kernel. This flaw allows a local privileged user to cause a denial of service problem.
CVE-2023-2002
- EPSS 1.47%
- Veröffentlicht 26.05.2023 17:15:14
- Zuletzt bearbeitet 21.11.2024 07:57:44
A vulnerability was found in the HCI sockets implementation due to a missing capability check in net/bluetooth/hci_sock.c in the Linux Kernel. This flaw allows an attacker to unauthorized execution of management commands, compromising the confidentia...