VYPR

Kernel

by Linux

Source repositories

CVEs (15,817)

  • CVE-2023-4015HigSep 6, 2023
    risk 0.00cvss 7.8epss 0.00

    A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. On an error when building a nftables rule, deactivating immediate expressions in nft_immediate_deactivate() can lead unbinding the chain…

  • CVE-2023-3777HigSep 6, 2023
    risk 0.00cvss 7.8epss 0.00

    A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. When nf_tables_delrule() is flushing table rules, it is not checked whether the chain is bound and the chain's owner rule can also release…

  • CVE-2023-4387HigAug 16, 2023
    risk 0.00cvss 7.1epss 0.00

    A use-after-free flaw was found in vmxnet3_rq_alloc_rx_buf in drivers/net/vmxnet3/vmxnet3_drv.c in VMware's vmxnet3 ethernet NIC driver in the Linux Kernel. This issue could allow a local attacker to crash the system due to a double-free while cleaning up vmxnet3_rq_cleanup_all,…

  • CVE-2023-4385MedAug 16, 2023
    risk 0.00cvss 5.5epss 0.00

    A NULL pointer dereference flaw was found in dbFree in fs/jfs/jfs_dmap.c in the journaling file system (JFS) in the Linux Kernel. This issue may allow a local attacker to crash the system due to a missing sanity check.

  • CVE-2023-40283HigAug 14, 2023
    risk 0.00cvss 7.8epss 0.01

    An issue was discovered in l2cap_sock_release in net/bluetooth/l2cap_sock.c in the Linux kernel before 6.4.10. There is a use-after-free because the children of an sk are mishandled.

  • CVE-2023-4147HigAug 7, 2023
    risk 0.00cvss 7.8epss 0.01

    A use-after-free flaw was found in the Linux kernel’s Netfilter functionality when adding a rule with NFTA_RULE_CHAIN_ID. This flaw allows a local user to crash or escalate their privileges on the system.

  • CVE-2023-3812HigJul 24, 2023
    risk 0.00cvss 7.8epss 0.00

    An out-of-bounds memory access flaw was found in the Linux kernel’s TUN/TAP device driver functionality in how a user generates a malicious (too big) networking packet when napi frags is enabled. This flaw allows a local user to crash or potentially escalate their privileges…

  • CVE-2023-3863MedJul 24, 2023
    risk 0.00cvss 6.4epss 0.00

    A use-after-free flaw was found in nfc_llcp_find_local in net/nfc/llcp_core.c in NFC in the Linux kernel. This flaw allows a local user with special privileges to impact a kernel information leak issue.

  • CVE-2023-2430MedJul 23, 2023
    risk 0.00cvss 5.5epss 0.00

    A vulnerability was found due to missing lock for IOPOLL flaw in io_cqring_event_overflow() in io_uring.c in Linux Kernel. This flaw allows a local attacker with user privilege to trigger a Denial of Service threat.

  • CVE-2023-3776HigJul 21, 2023
    risk 0.00cvss 7.8epss 0.01

    A use-after-free vulnerability in the Linux kernel's net/sched: cls_fw component can be exploited to achieve local privilege escalation. If tcf_change_indev() fails, fw_set_parms() will immediately return an error after incrementing or decrementing the reference counter in…

  • CVE-2023-3611HigJul 21, 2023
    risk 0.00cvss 7.8epss 0.00

    An out-of-bounds write vulnerability in the Linux kernel's net/sched: sch_qfq component can be exploited to achieve local privilege escalation. The qfq_change_agg() function in net/sched/sch_qfq.c allows an out-of-bounds write because lmax is updated according to packet sizes…

  • CVE-2023-3610HigJul 21, 2023
    risk 0.00cvss 7.8epss 0.00

    A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. Flaw in the error handling of bound chains causes a use-after-free in the abort path of NFT_MSG_NEWRULE. The vulnerability requires…

  • CVE-2023-3609HigJul 21, 2023
    risk 0.00cvss 7.8epss 0.00

    A use-after-free vulnerability in the Linux kernel's net/sched: cls_u32 component can be exploited to achieve local privilege escalation. If tcf_change_indev() fails, u32_set_parms() will immediately return an error after incrementing or decrementing the reference counter in…

  • CVE-2023-0160MedJul 18, 2023
    risk 0.00cvss 4.7epss 0.00

    A deadlock flaw was found in the Linux kernel’s BPF subsystem. This flaw allows a local user to potentially crash the system.

  • CVE-2023-38432CriJul 18, 2023
    risk 0.00cvss 9.1epss 0.02

    An issue was discovered in the Linux kernel before 6.3.10. fs/smb/server/smb2misc.c in ksmbd does not validate the relationship between the command payload size and the RFC1002 length specification, leading to an out-of-bounds read.

  • CVE-2023-38431CriJul 18, 2023
    risk 0.00cvss 9.1epss 0.01

    An issue was discovered in the Linux kernel before 6.3.8. fs/smb/server/connection.c in ksmbd does not validate the relationship between the NetBIOS header's length field and the SMB header sizes, via pdu_size in ksmbd_conn_handler_loop, leading to an out-of-bounds read.

  • CVE-2023-38430CriJul 18, 2023
    risk 0.00cvss 9.1epss 0.01

    An issue was discovered in the Linux kernel before 6.3.9. ksmbd does not validate the SMB request protocol ID, leading to an out-of-bounds read.

  • CVE-2023-38429CriJul 18, 2023
    risk 0.00cvss 9.8epss 0.01

    An issue was discovered in the Linux kernel before 6.3.4. fs/ksmbd/connection.c in ksmbd has an off-by-one error in memory allocation (because of ksmbd_smb2_check_message) that may lead to out-of-bounds access.

  • CVE-2023-38428CriJul 18, 2023
    risk 0.00cvss 9.1epss 0.03

    An issue was discovered in the Linux kernel before 6.3.4. fs/ksmbd/smb2pdu.c in ksmbd does not properly check the UserName value because it does not consider the address of security buffer, leading to an out-of-bounds read.

  • CVE-2023-38427CriJul 18, 2023
    risk 0.00cvss 9.8epss 0.01

    An issue was discovered in the Linux kernel before 6.3.8. fs/smb/server/smb2pdu.c in ksmbd has an integer underflow and out-of-bounds read in deassemble_neg_contexts.

Page 699 of 791