Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2023-0030HistoryMar 08, 2023 - 11:15 p.m.
CVE-2023-0030
2023-03-0823:15:10
Debian Security Bug Tracker
security-tracker.debian.org
16
linux kernel
nouveau driver
memory overflow
nvkm_vma_tail function
privilege escalation
unix
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0
Percentile
5.1%
A use-after-free flaw was found in the Linux kernel’s nouveau driver in how a user triggers a memory overflow that causes the nvkm_vma_tail function to fail. This flaw allows a local user to crash or potentially escalate their privileges on the system.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | linux | < 5.2.6-1 | linux_5.2.6-1_all.deb |
| Debian | 11 | all | linux | < 5.2.6-1 | linux_5.2.6-1_all.deb |
| Debian | 999 | all | linux | < 5.2.6-1 | linux_5.2.6-1_all.deb |
| Debian | 13 | all | linux | < 5.2.6-1 | linux_5.2.6-1_all.deb |
Related
cvelist
cvelist
CVE-2023-0030
2023-03-08 00:00:00
prion
prion
Design/Logic Flaw
2023-03-08 23:15:00
cve
cve
CVE-2023-0030
2023-03-08 23:15:10
ubuntucve
ubuntucve
CVE-2023-0030
2023-03-08 00:00:00
nvd
nvd
CVE-2023-0030
2023-03-08 23:15:10
redhatcve
redhatcve
CVE-2023-0030
2023-01-01 16:04:50
cnvd
cnvd
Linux kernel resource management error vulnerability (CNVD-2023-58989)
2023-03-11 00:00:00
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0
Percentile
5.1%
Related for DEBIANCVE:CVE-2023-0030