11 matches found
Ubuntu: Security Advisory (USN-6725-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-6725-1: Linux kernel vulnerabilities
Chih-Yen Chang discovered that the KSMBD implementation in the Linux kernel did not properly validate certain data structure fields when parsing lease contexts, leading to an out-of-bounds read vulnerability. A remote attacker could use this to cause a denial of service system crash or possibly...
CVE-2023-32254 affecting package hyperv-daemons for versions less than 5.15.145.2-1
CVE-2023-32254 affecting package hyperv-daemons for versions less than 5.15.145.2-1. An upgraded version of the package is available that resolves this issue...
CVE-2023-32254 affecting package kernel 5.10.185.1-1
CVE-2023-32254 affecting package kernel 5.10.185.1-1. A patched version of the package is available...
CVE-2023-32254 affecting package kernel for versions less than 5.15.118.1-1
CVE-2023-32254 affecting package kernel for versions less than 5.15.118.1-1. A patched version of the package is available...
DEBIAN-CVE-2023-32254
A flaw was found in the Linux kernel's ksmbd, a high-performance in-kernel SMB server. The specific flaw exists within the processing of SMB2TREEDISCONNECT commands. The issue results from the lack of proper locking when performing operations on an object. An attacker can leverage this...
BELL-CVE-2023-32254 CVE-2023-32254 does not affect BellSoft software
Bulletin has no description...
CVE-2023-32254
CVE-2023-32254 affects the Linux kernel ksmbd SMB server, due to missing locking when processing SMB2_TREE_DISCONNECT commands. The flaw can allow code execution in kernel context. Multiple connected sources (Ubuntu USNs 6173/6283, Astra Linux bulletin, CBL-Mariner entries) confirm ksmbd involvem...
[SECURITY] [DSA 5448-1] linux security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5448-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso July 05, 2023 https://www.debian.org/security/faq -...
USN-6173-1 linux-oem-6.1 vulnerabilities
Gwangun Jung discovered that the Quick Fair Queueing scheduler implementation in the Linux kernel contained an out-of-bounds write vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2023-31436 It was discovered that the...
SUSE CVE-2023-32254
A flaw was found in the Linux kernel's ksmbd, a high-performance in-kernel SMB server. The specific flaw exists within the processing of SMB2TREEDISCONNECT commands. The issue results from the lack of proper locking when performing operations on an object. An attacker can leverage this...