Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2023-1195HistoryMay 18, 2023 - 10:15 p.m.
CVE-2023-1195
2023-05-1822:15:09
Debian Security Bug Tracker
security-tracker.debian.org
15
cve-2023-1195
reconn_set_ipaddr_from_hostname
fs/cifs/connect.c
forgets to set
invalid pointer request
unix
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
0.0004 Low
EPSS
Percentile
9.1%
A use-after-free flaw was found in reconn_set_ipaddr_from_hostname in fs/cifs/connect.c in the Linux kernel. The issue occurs when it forgets to set the free pointer server->hostname to NULL, leading to an invalid pointer request.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | linux | < 6.1.4-1 | linux_6.1.4-1_all.deb |
| Debian | 11 | all | linux | < 5.10.218-1 | linux_5.10.218-1_all.deb |
| Debian | 999 | all | linux | < 6.1.4-1 | linux_6.1.4-1_all.deb |
| Debian | 13 | all | linux | < 6.1.4-1 | linux_6.1.4-1_all.deb |
Related
cve
cve
CVE-2023-1195
2023-05-18 22:15:09
prion
prion
Design/Logic Flaw
2023-05-18 22:15:00
cvelist
cvelist
CVE-2023-1195
2023-05-18 00:00:00
cbl_mariner
cbl_mariner
CVE-2023-1195 affecting package kernel for versions less than 5.15.112.1-2
2023-06-14 23:53:35
CVE-2023-1195 affecting package kernel 5.10.179.1-1
2023-06-13 20:02:41
nvd
nvd
CVE-2023-1195
2023-05-18 22:15:09
redhatcve
redhatcve
CVE-2023-1195
2023-03-06 08:59:26
ubuntucve
ubuntucve
CVE-2023-1195
2023-03-07 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2023-03-23 00:00:00
Linux kernel (HWE) vulnerabilities
2023-03-28 00:00:00
nessus
nessus
Ubuntu 22.04 LTS : Linux kernel (HWE) vulnerabilities (USN-5979-1)
2023-03-28 00:00:00
Ubuntu 22.10 : Linux kernel vulnerabilities (USN-5970-1)
2023-03-24 00:00:00
RHEL 9 : kernel (RHSA-2024:0432)
2024-01-25 00:00:00
osv
osv
linux-hwe-5.19 vulnerabilities
2023-03-28 16:23:40
Important: kernel security, bug fix, and enhancement update
2023-05-16 00:00:00
Important: kernel-rt security and bug fix update
2023-05-16 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-5970-1)
2023-03-24 00:00:00
Ubuntu: Security Advisory (USN-5979-1)
2023-03-29 00:00:00
redhat
redhat
(RHSA-2024:0432) Important: kernel security and bug fix update
2024-01-24 14:40:37
(RHSA-2024:0431) Important: kernel-rt security and bug fix update
2024-01-24 14:40:36
ibm
ibm
oraclelinux
oraclelinux
kernel security, bug fix, and enhancement update
2023-05-23 00:00:00
kernel security, bug fix, and enhancement update
2023-05-15 00:00:00
almalinux
almalinux
Important: kernel-rt security and bug fix update
2023-05-16 00:00:00
Important: kernel security, bug fix, and enhancement update
2023-05-16 00:00:00
Important: kernel security, bug fix, and enhancement update
2023-05-09 00:00:00
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
0.0004 Low
EPSS
Percentile
9.1%
Related for DEBIANCVE:CVE-2023-1195