Lucene search

[email protected]NVD:CVE-2023-35829

HistoryJun 18, 2023 - 10:15 p.m.

CVE-2023-35829

2023-06-1822:15:09

CWE-416

CWE-362

[email protected]

web.nvd.nist.gov

linux kernel

use-after-free

rkvdec_remove

drivers

staging

media

7 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

7.6 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

An issue was discovered in the Linux kernel before 6.3.2. A use-after-free was found in rkvdec_remove in drivers/staging/media/rkvdec/rkvdec.c.

Affected configurations

NVD

Node

linuxlinux_kernelRange5.8–5.10.180

linuxlinux_kernelRange5.11–5.15.111

linuxlinux_kernelRange5.16–6.1.28

linuxlinux_kernelRange6.2–6.2.15

linuxlinux_kernelRange6.3–6.3.2

Node

netapph300sMatch-

netapph410sMatch-

netapph500sMatch-

netapph700sMatch-

References

cdn.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.3.2

git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=3228cec23b8b29215e18090c6ba635840190993d

lore.kernel.org/all/a4dafa22-3ee3-dbe1-fd50-fee07883ce1a%40xs4all.nl/

lore.kernel.org/lkml/20230307173900.1299387-1-zyytlz.wz%40163.com/T/

security.netapp.com/advisory/ntap-20230803-0002/

7 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

7.6 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for NVD:CVE-2023-35829

cve1 redhatcve1 debiancve1 cvelist1 ubuntucve1 osv5 githubexploit2 prion1 cbl_mariner2 thn1 nessus10 openvas9 ubuntu5 mageia2 photon1 ics1 redos1