Lucene search
Ubuntu.comUB:CVE-2023-6356HistoryFeb 07, 2024 - 12:00 a.m.
CVE-2023-6356
2024-02-0700:00:00
ubuntu.com
ubuntu.com
16
linux
nvme driver
tcp
null pointer dereference
denial of service
bugzilla
red hat
suse
A flaw was found in the Linux kernel’s NVMe driver. This issue may allow an
unauthenticated malicious actor to send a set of crafted TCP packages when
using NVMe over TCP, leading the NVMe driver to a NULL pointer dereference
in the NVMe driver and causing kernel panic and a denial of service.
Bugs
- <https://bugzilla.redhat.com/show_bug.cgi?id=2254054>
- <https://bugzilla.suse.com/show_bug.cgi?id=1217987>
Notes
| Author | Note |
|---|---|
| rodrigo-zaiden | fixes for CVE-2023-6536, CVE-2023-6535, and CVE-2023-6356 are all the same. the differences between the CVEs are that they were reported against different methods. NULL pointer dereference in nvmet_tcp_build_iovec USN-6765-1 for linux-oem-6.5 wrongly stated that this CVE was fixed in version 6.5.0-1022.23. The mentioned notice was revoked and the state of the fix for linux-oem-6.5 was recovered to the previous state. |
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 20.04 | noarch | linux | < any | UNKNOWN |
| ubuntu | 22.04 | noarch | linux | < any | UNKNOWN |
| ubuntu | 23.10 | noarch | linux | < any | UNKNOWN |
| ubuntu | 24.04 | noarch | linux | < any | UNKNOWN |
| ubuntu | 20.04 | noarch | linux-aws | < any | UNKNOWN |
| ubuntu | 22.04 | noarch | linux-aws | < any | UNKNOWN |
| ubuntu | 23.10 | noarch | linux-aws | < any | UNKNOWN |
| ubuntu | 24.04 | noarch | linux-aws | < any | UNKNOWN |
| ubuntu | 20.04 | noarch | linux-aws-5.15 | < any | UNKNOWN |
| ubuntu | 22.04 | noarch | linux-aws-6.5 | < any | UNKNOWN |
Related
ubuntucve
ubuntucve
CVE-2023-6536
2024-02-07 00:00:00
CVE-2023-6535
2024-02-07 00:00:00
nessus
nessus
Fedora 39 : kernel (2024-50ab089b1d)
2024-02-02 00:00:00
Fedora 38 : kernel (2024-0f89e13079)
2024-02-02 00:00:00
RHEL 9 : kernel (RHSA-2024:0723)
2024-02-07 00:00:00
openvas
openvas
Fedora: Security Advisory for kernel (FEDORA-2024-0f89e13079)
2024-02-04 00:00:00
Fedora: Security Advisory for kernel (FEDORA-2024-50ab089b1d)
2024-02-02 00:00:00
openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2024:0476-1)
2024-03-04 00:00:00
fedora
fedora
[SECURITY] Fedora 38 Update: kernel-6.6.14-100.fc38
2024-02-02 02:23:23
[SECURITY] Fedora 39 Update: kernel-6.6.14-200.fc39
2024-02-02 01:15:59
redhatcve
redhatcve
debiancve
debiancve
prion
prion
Null pointer dereference
2024-02-07 21:15:00
Null pointer dereference
2024-02-07 21:15:00
Null pointer dereference
2024-02-07 21:15:00
cvelist
cvelist
CVE-2023-6356 Kernel: null pointer dereference in nvmet_tcp_build_iovec
2024-02-07 21:04:20
CVE-2023-6535 Kernel: null pointer dereference in nvmet_tcp_execute_request
2024-02-07 21:04:21
CVE-2023-6536 Kernel: null pointer dereference in __nvmet_req_complete
2024-02-07 21:05:13
cve
cve
redhat
redhat
(RHSA-2024:0725) Important: kernel-rt security update
2024-02-07 16:03:29
(RHSA-2024:0723) Important: kernel security update
2024-02-07 16:01:23
(RHSA-2024:1248) Important: kernel security update
2024-03-12 00:03:02
osv
osv
Important: kernel security update
2024-03-27 04:37:19
Important: kernel security update
2024-02-20 00:00:00
oraclelinux
oraclelinux
kernel security update
2024-03-15 00:00:00
kernel security update
2024-02-22 00:00:00
kernel security update
2024-03-06 00:00:00
rocky
rocky
kernel security update
2024-03-27 04:37:19
ibm
ibm
Security Bulletin: Vulnerabilities in OpenSSH, Linux Kernel might affect IBM Storage Copy Data Management
2024-04-30 21:44:44
Security Bulletin: Vulnerabilities in Spring, Tomcat, Jackson, sudo, and Linux kernel can affect IBM Spectrum Protect Plus
2024-03-20 18:36:29
Security Bulletin: IBM QRadar SIEM contains multiple vulnerabilities
2024-05-09 12:31:16
almalinux
almalinux
Important: kernel security update
2024-02-20 00:00:00