9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.7 High
AI Score
Confidence
High
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.017 Low
EPSS
Percentile
87.4%
The kernel packages contain the Linux kernel, the core of any Linux operating
system.
Security Fix(es):
kernel: xfrm_expand_policies() in net/xfrm/xfrm_policy.c can cause a refcount
to be dropped twice (CVE-2022-36879)
kernel: null-ptr-deref vulnerabilities in sl_tx_timeout in drivers/net/slip
(CVE-2022-41858)
kernel: use-after-free caused by invalid pointer hostname in fs/cifs/connect.c
(CVE-2023-1195)
kernel: UAF during login when accessing the shost ipaddress (CVE-2023-2162)
kernel: use after free in vcs_read in drivers/tty/vt/vc_screen.c due to race
(CVE-2023-3567)
kernel: use-after-free in netfilter: nf_tables (CVE-2023-3777)
kernel: net/sched: sch_hfsc UAF (CVE-2023-4623)
kernel: use after free in nvmet_tcp_free_crypto in NVMe (CVE-2023-5178)
kernel: IGB driver inadequate buffer size for frames larger than MTU
(CVE-2023-45871)
kernel: SEV-ES local priv escalation (CVE-2023-46813)
Bug Fix(es):
RHEL 9 Hyper-V: Excessive hv_storvsc driver logging with srb_status
SRB_STATUS_INTERNAL_ERROR (0x30)
RHEL9.0 - s390/qeth: NET2016 - fix use-after-free in HSCI
DM multipath showing failed path for an nvme-o-FC LUN when performing I/O
operations
XFS: sync to upstream v5.15
AMDSERVER 9.4 Bug, Turin: Support larger microcode patches
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.7 High
AI Score
Confidence
High
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.017 Low
EPSS
Percentile
87.4%