VYPR

rpm package

almalinux/kernel-headers

pkg:rpm/almalinux/kernel-headers

Vulnerabilities (1,155)

  • CVE-2023-42754Oct 5, 2023
    affected < 5.14.0-427.13.1.el9_4fixed 5.14.0-427.13.1.el9_4

    A NULL pointer dereference flaw was found in the Linux kernel ipv4 stack. The socket buffer (skb) was assumed to be associated with a device before calling __ip_options_compile, which is not always the case if the skb is re-routed by ipvs. This issue may allow a local user with C

  • CVE-2023-4732Oct 3, 2023
    affected < 4.18.0-513.5.1.el8_9fixed 4.18.0-513.5.1.el8_9

    A flaw was found in pfn_swap_entry_to_page in memory management subsystem in the Linux Kernel. In this flaw, an attacker with a local user privilege may cause a denial of service problem due to a BUG statement referencing pmd_t x.

  • CVE-2023-42756Sep 28, 2023
    affected < 5.14.0-427.13.1.el9_4fixed 5.14.0-427.13.1.el9_4

    A flaw was found in the Netfilter subsystem of the Linux kernel. A race condition between IPSET_CMD_ADD and IPSET_CMD_SWAP can lead to a kernel panic due to the invocation of `__ip_set_put` on a wrong `set`. This issue may allow a local user to crash the system.

  • CVE-2023-4155Sep 13, 2023
    affected < 4.18.0-513.5.1.el8_9fixed 4.18.0-513.5.1.el8_9

    A flaw was found in KVM AMD Secure Encrypted Virtualization (SEV) in the Linux kernel. A KVM guest using SEV-ES or SEV-SNP with multiple vCPUs can trigger a double fetch race condition vulnerability and invoke the `VMGEXIT` handler recursively. If an attacker manages to call the

  • CVE-2023-4208Sep 6, 2023
    affected < 4.18.0-513.5.1.el8_9fixed 4.18.0-513.5.1.el8_9

    A use-after-free vulnerability in the Linux kernel's net/sched: cls_u32 component can be exploited to achieve local privilege escalation. When u32_change() is called on an existing filter, the whole tcf_result struct is always copied into the new instance of the filter. This cau

  • CVE-2023-4207Sep 6, 2023
    affected < 4.18.0-513.5.1.el8_9fixed 4.18.0-513.5.1.el8_9

    A use-after-free vulnerability in the Linux kernel's net/sched: cls_fw component can be exploited to achieve local privilege escalation. When fw_change() is called on an existing filter, the whole tcf_result struct is always copied into the new instance of the filter. This cause

  • CVE-2023-4206Sep 6, 2023
    affected < 4.18.0-513.5.1.el8_9fixed 4.18.0-513.5.1.el8_9

    A use-after-free vulnerability in the Linux kernel's net/sched: cls_route component can be exploited to achieve local privilege escalation. When route4_change() is called on an existing filter, the whole tcf_result struct is always copied into the new instance of the filter. Thi

  • CVE-2022-40982Aug 11, 2023
    affected < 4.18.0-513.5.1.el8_9fixed 4.18.0-513.5.1.el8_9

    Information exposure through microarchitectural state after transient execution in certain vector execution units for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.

  • CVE-2023-25775Aug 11, 2023
    affected < 5.14.0-427.13.1.el9_4fixed 5.14.0-427.13.1.el9_4

    Improper access control in the Intel(R) Ethernet Controller RDMA driver for linux before version 1.9.30 may allow an unauthenticated user to potentially enable escalation of privilege via network access.

  • CVE-2023-4132Aug 3, 2023
    affected < 4.18.0-513.5.1.el8_9fixed 4.18.0-513.5.1.el8_9

    A use-after-free vulnerability was found in the siano smsusb module in the Linux kernel. The bug occurs during device initialization when the siano device is plugged in. This flaw allows a local user to crash the system, causing a denial of service condition.

  • CVE-2023-4133Aug 3, 2023
    affected < 5.14.0-427.13.1.el9_4fixed 5.14.0-427.13.1.el9_4

    A use-after-free vulnerability was found in the cxgb4 driver in the Linux kernel. The bug occurs when the cxgb4 device is detaching due to a possible rearming of the flower_stats_timer from the work queue. This flaw allows a local user to crash the system, causing a denial of ser

  • CVE-2023-4004Jul 31, 2023
    affected < 4.18.0-477.27.2.el8_8fixed 4.18.0-477.27.2.el8_8

    A use-after-free flaw was found in the Linux kernel's netfilter in the way a user triggers the nft_pipapo_remove function with the element, without a NFT_SET_EXT_KEY_END. This issue could allow a local user to crash the system or potentially escalate their privileges on the syste

  • CVE-2023-3772Jul 25, 2023
    affected < 4.18.0-513.5.1.el8_9fixed 4.18.0-513.5.1.el8_9

    A flaw was found in the Linux kernel’s IP framework for transforming packets (XFRM subsystem). This issue may allow a malicious user with CAP_NET_ADMIN privileges to directly dereference a NULL pointer in xfrm_update_ae_params(), leading to a possible kernel crash and denial of s

  • CVE-2023-20593Jul 24, 2023
    affected < 4.18.0-477.27.2.el8_8fixed 4.18.0-477.27.2.el8_8

    An issue in “Zen 2” CPUs, under specific microarchitectural circumstances, may allow an attacker to potentially access sensitive information.

  • CVE-2023-33951Jul 24, 2023
    affected < 4.18.0-513.5.1.el8_9fixed 4.18.0-513.5.1.el8_9

    A race condition vulnerability was found in the vmwgfx driver in the Linux kernel. The flaw exists within the handling of GEM objects. The issue results from improper locking when performing operations on an object. This flaw allows a local privileged user to disclose information

  • CVE-2023-3567Jul 24, 2023
    affected < 5.14.0-427.13.1.el9_4fixed 5.14.0-427.13.1.el9_4

    A use-after-free flaw was found in vcs_read in drivers/tty/vt/vc_screen.c in vc_screen in the Linux Kernel. This issue may allow an attacker with local user access to cause a system crash or leak internal kernel information.

  • CVE-2023-33952Jul 24, 2023
    affected < 4.18.0-513.5.1.el8_9fixed 4.18.0-513.5.1.el8_9

    A double-free vulnerability was found in handling vmw_buffer_object objects in the vmwgfx driver in the Linux kernel. This issue occurs due to the lack of validating the existence of an object prior to performing further free operations on the object, which may allow a local priv

  • CVE-2023-3776Jul 21, 2023
    affected < 4.18.0-477.27.2.el8_8fixed 4.18.0-477.27.2.el8_8

    A use-after-free vulnerability in the Linux kernel's net/sched: cls_fw component can be exploited to achieve local privilege escalation. If tcf_change_indev() fails, fw_set_parms() will immediately return an error after incrementing or decrementing the reference counter in tcf_b

  • CVE-2023-3611Jul 21, 2023
    affected < 4.18.0-513.5.1.el8_9fixed 4.18.0-513.5.1.el8_9

    An out-of-bounds write vulnerability in the Linux kernel's net/sched: sch_qfq component can be exploited to achieve local privilege escalation. The qfq_change_agg() function in net/sched/sch_qfq.c allows an out-of-bounds write because lmax is updated according to packet sizes wi

  • CVE-2023-3609Jul 21, 2023
    affected < 4.18.0-513.5.1.el8_9fixed 4.18.0-513.5.1.el8_9

    A use-after-free vulnerability in the Linux kernel's net/sched: cls_u32 component can be exploited to achieve local privilege escalation. If tcf_change_indev() fails, u32_set_parms() will immediately return an error after incrementing or decrementing the reference counter in tcf

Page 51 of 58