VYPR

Kernel

by Linux

Source repositories

CVEs (15,817)

  • CVE-2023-35826HigJun 18, 2023
    risk 0.00cvss 7.0epss 0.00

    An issue was discovered in the Linux kernel before 6.3.2. A use-after-free was found in cedrus_remove in drivers/staging/media/sunxi/cedrus/cedrus.c.

  • CVE-2023-35824HigJun 18, 2023
    risk 0.00cvss 7.0epss 0.00

    An issue was discovered in the Linux kernel before 6.3.2. A use-after-free was found in dm1105_remove in drivers/media/pci/dm1105/dm1105.c.

  • CVE-2023-35823HigJun 18, 2023
    risk 0.00cvss 7.0epss 0.00

    An issue was discovered in the Linux kernel before 6.3.2. A use-after-free was found in saa7134_finidev in drivers/media/pci/saa7134/saa7134-core.c.

  • CVE-2023-3268HigJun 16, 2023
    risk 0.00cvss 7.1epss 0.00

    An out of bounds (OOB) memory access flaw was found in the Linux kernel in relay_file_read_start_pos in kernel/relay.c in the relayfs. This flaw could allow a local attacker to crash the system or leak kernel internal information.

  • CVE-2023-3159MedJun 12, 2023
    risk 0.00cvss 6.7epss 0.00

    A use after free issue was discovered in driver/firewire in outbound_phy_packet_callback in the Linux Kernel. In this flaw a local attacker with special privilege may cause a use after free problem when queue_event() fails.

  • CVE-2023-3161MedJun 12, 2023
    risk 0.00cvss 5.5epss 0.00

    A flaw was found in the Framebuffer Console (fbcon) in the Linux Kernel. When providing font->width and font->height greater than 32 to fbcon_set_font, since there are no checks in place, a shift-out-of-bounds occurs leading to undefined behavior and possible denial of service.

  • CVE-2023-3141HigJun 9, 2023
    risk 0.00cvss 7.1epss 0.00

    A use-after-free flaw was found in r592_remove in drivers/memstick/host/r592.c in media access in the Linux Kernel. This flaw allows a local attacker to crash the system at device disconnect, possibly leading to a kernel information leak.

  • CVE-2023-2985MedJun 1, 2023
    risk 0.00cvss 5.5epss 0.00

    A use after free flaw was found in hfsplus_put_super in fs/hfsplus/super.c in the Linux Kernel. This flaw could allow a local user to cause a denial of service problem.

  • CVE-2023-3006MedMay 31, 2023
    risk 0.00cvss 5.5epss 0.00

    A known cache speculation vulnerability, known as Branch History Injection (BHI) or Spectre-BHB, becomes actual again for the new hw AmpereOne. Spectre-BHB is similar to Spectre v2, except that malicious code uses the shared branch history (stored in the CPU Branch History…

  • CVE-2023-34256MedMay 31, 2023
    risk 0.00cvss 5.5epss 0.00

    An issue was discovered in the Linux kernel before 6.3.3. There is an out-of-bounds read in crc16 in lib/crc16.c when called from fs/ext4/super.c because ext4_group_desc_csum does not properly check an offset. NOTE: this is disputed by third parties because the kernel is not…

  • CVE-2022-48502HigMay 31, 2023
    risk 0.00cvss 7.1epss 0.01

    An issue was discovered in the Linux kernel before 6.2. The ntfs3 subsystem does not properly check for correctness during disk reads, leading to an out-of-bounds read in ntfs_set_ea in fs/ntfs3/xattr.c.

  • CVE-2023-0459MedMay 25, 2023
    risk 0.00cvss 6.5epss 0.01

    Copy_from_user on 64-bit versions of the Linux kernel does not implement the __uaccess_begin_nospec allowing a user to bypass the "access_ok" check and pass a kernel pointer to copy_from_user(). This would allow an attacker to leak information. We recommend upgrading beyond…

  • CVE-2023-33288MedMay 22, 2023
    risk 0.00cvss 4.7epss 0.00

    An issue was discovered in the Linux kernel before 6.2.9. A use-after-free was found in bq24190_remove in drivers/power/supply/bq24190_charger.c. It could allow a local attacker to crash the system due to a race condition.

  • CVE-2020-36694MedMay 21, 2023
    risk 0.00cvss 6.7epss 0.00

    An issue was discovered in netfilter in the Linux kernel before 5.10. There can be a use-after-free in the packet processing context, because the per-CPU sequence count is mishandled during concurrent iptables rules replacement. This could be exploited with the CAP_NET_ADMIN…

  • CVE-2023-33250MedMay 21, 2023
    risk 0.00cvss 4.4epss 0.00

    The Linux kernel 6.3 has a use-after-free in iopt_unmap_iova_range in drivers/iommu/iommufd/io_pagetable.c.

  • CVE-2023-1195MedMay 18, 2023
    risk 0.00cvss 5.5epss 0.00

    A use-after-free flaw was found in reconn_set_ipaddr_from_hostname in fs/cifs/connect.c in the Linux kernel. The issue occurs when it forgets to set the free pointer server->hostname to NULL, leading to an invalid pointer request.

  • CVE-2023-33203MedMay 18, 2023
    risk 0.00cvss 6.4epss 0.00

    The Linux kernel before 6.2.9 has a race condition and resultant use-after-free in drivers/net/ethernet/qualcomm/emac/emac.c if a physically proximate attacker unplugs an emac based device.

  • CVE-2023-2124HigMay 15, 2023
    risk 0.00cvss 7.8epss 0.00

    An out-of-bounds memory access flaw was found in the Linux kernel’s XFS file system in how a user restores an XFS image after failure (with a dirty log journal). This flaw allows a local user to crash or potentially escalate their privileges on the system.

  • CVE-2023-2513MedMay 8, 2023
    risk 0.00cvss 6.7epss 0.00

    A use-after-free vulnerability was found in the Linux kernel's ext4 filesystem in the way it handled the extra inode size for extended attributes. This flaw could allow a privileged local user to cause a system crash or other undefined behaviors.

  • CVE-2023-32269MedMay 5, 2023
    risk 0.00cvss 6.7epss 0.00

    An issue was discovered in the Linux kernel before 6.1.11. In net/netrom/af_netrom.c, there is a use-after-free because accept is also allowed for a successfully connected AF_NETROM socket. However, in order for an attacker to exploit this, the system must have netrom routing…

Page 701 of 791