Lucene search
OracleLinuxELSA-2023-12842HistoryOct 03, 2023 - 12:00 a.m.
Unbreakable Enterprise kernel security update
2023-10-0300:00:00
linux.oracle.com
11
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.1 High
AI Score
Confidence
High
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.007 Low
EPSS
Percentile
80.0%
[4.1.12-124.79.2]
- net/sched: cls_route: No longer copy tcf_result on update to avoid use-after-free (valis) [Orabug: 35814273] {CVE-2023-4206}
- net/sched: sch_qfq: account for stab overhead in qfq_enqueue (Pedro Tammela) [Orabug: 35636291] {CVE-2023-3611}
- rds: Fix lack of reentrancy for connection reset with dst addr zero (Hakon Bugge) [Orabug: 35741584] [Orabug: 35818110] {CVE-2023-22024}
[4.1.12-124.79.1] - xfrm: add NULL check in xfrm_update_ae_params (Lin Ma) [Orabug: 35754509] {CVE-2023-3772}
- net: vmxnet3: fix possible NULL pointer dereference in vmxnet3_rq_cleanup() (Zixuan Fu) [Orabug: 35732892] {CVE-2023-4459}
- net: vmxnet3: fix possible use-after-free bugs in vmxnet3_rq_alloc_rx_buf() (Zixuan Fu) [Orabug: 35732764] {CVE-2023-4387}
- net/sched: cls_fw: Fix improper refcount update leads to use-after-free (M A Ramdhan) [Orabug: 35636313] {CVE-2023-3776}
- netfilter: nf_tables: prevent OOB access in nft_byteorder_eval (Thadeu Lima de Souza Cascardo) [Orabug: 35609787] {CVE-2023-35001}
- ext4: fix use-after-free in ext4_xattr_set_entry (Baokun Li) [Orabug: 35382025] {CVE-2023-2513}
- ext4: add EXT4_INODE_HAS_XATTR_SPACE macro in xattr.h (Baokun Li) [Orabug: 35382025] {CVE-2023-2513}
- netfilter: nf_tables: stricter validation of element data (Pablo Neira Ayuso) [Orabug: 34362008] {CVE-2022-34918}
Related
nessus
nessus
OracleVM 3.4 : kernel-uek (OVMSA-2023-0023)
2023-11-03 00:00:00
Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2023-12842)
2023-10-03 00:00:00
CentOS 7 : kpatch-patch (RHSA-2023:7419)
2023-12-22 00:00:00
redhat
redhat
(RHSA-2023:7419) Important: kpatch-patch security update
2023-11-21 14:42:55
(RHSA-2024:0262) Important: kernel security update
2024-01-16 15:44:51
(RHSA-2024:1831) Important: kernel security update
2024-04-16 00:09:13
amazon
amazon
Important: kernel
2023-08-03 20:16:00
Important: kernel
2023-08-03 18:09:00
Important: kernel
2023-08-03 18:09:00
oraclelinux
oraclelinux
kernel security update
2023-11-22 00:00:00
Unbreakable Enterprise kernel-container security update
2023-09-16 00:00:00
Unbreakable Enterprise kernel security update
2023-09-16 00:00:00
virtuozzo
virtuozzo
openvas
openvas
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2023-3099)
2023-11-01 00:00:00
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2023-2898)
2023-10-09 00:00:00
CentOS: Security Advisory for bpftool (CESA-2023:7423)
2024-03-05 00:00:00
prion
prion
Design/Logic Flaw
2023-09-20 21:15:00
Null pointer dereference
2023-08-21 19:15:00
Design/Logic Flaw
2023-05-08 21:15:00
cve
cve
centos
centos
bpftool, kernel, perf, python security update
2024-01-12 19:36:38
githubexploit
githubexploit
Exploit for Type Confusion in Linux Linux Kernel
2022-07-24 14:47:40
Exploit for Type Confusion in Linux Linux Kernel
2022-07-24 14:47:55
Exploit for Type Confusion in Linux Linux Kernel
2022-07-21 22:06:19
zdt
zdt
Netfilter nft_set_elem_init Heap Overflow Privilege Escalation Exploit
2022-09-28 00:00:00
debiancve
debiancve
redhatcve
redhatcve
cbl_mariner
cbl_mariner
CVE-2023-2513 affecting package kernel for versions less than 5.15.112.1-1
2023-06-02 21:37:28
CVE-2022-34918 affecting package kernel 5.10.123.1-1
2022-08-12 16:45:24
CVE-2023-4459 affecting package kernel for versions less than 5.15.126.1-1
2023-08-30 15:15:49
cnvd
cnvd
Linux Kernel Denial of Service Vulnerability (CNVD-2023-71723)
2023-08-24 00:00:00
WordPress WP-EMail plugin cross-site scripting vulnerability
2023-08-18 00:00:00
Linux kernel elevation of privilege vulnerability (CNVD-2023-70082)
2023-09-11 00:00:00
ubuntucve
ubuntucve
packetstorm
packetstorm
Netfilter nft_set_elem_init Heap Overflow Privilege Escalation
2022-09-28 00:00:00
osv
osv
linux-oem-5.14, linux-oem-5.17 vulnerability
2022-08-02 17:39:00
linux-gkeop vulnerabilities
2023-08-31 13:23:41
linux-raspi, linux-raspi-5.4 vulnerabilities
2023-09-06 14:11:44
ubuntu
ubuntu
Linux kernel (OEM) vulnerability
2022-08-02 00:00:00
Linux kernel vulnerabilities
2023-08-31 00:00:00
Linux kernel (Raspberry Pi) vulnerabilities
2023-09-06 00:00:00
ibm
ibm
metasploit
metasploit
Netfilter nft_set_elem_init Heap Overflow Privilege Escalation
2022-07-20 11:51:22
zdi
zdi
photon
photon
Important Photon OS Security Update - PHSA-2023-4.0-0457
2023-08-25 00:00:00
Important Photon OS Security Update - PHSA-2023-5.0-0059
2023-07-28 00:00:00
f5
f5
K000137871 : Linux kernel vulnerability CVE-2023-35001
2023-12-12 00:00:00
K000138731 : Linux vulnerability CVE-2023-3776
2024-02-27 00:00:00
K000138726 : Linux kernel vulnerability CVE-2023-3611
2024-03-01 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2023-2241
2023-10-10 09:26:01
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.1 High
AI Score
Confidence
High
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.007 Low
EPSS
Percentile
80.0%
Related for ELSA-2023-12842