18 matches found
CVE-2023-22024
In the Unbreakable Enterprise Kernel UEK, the RDS module in UEK has two setsockopt2 options, RDSCONNRESET and RDS6CONNRESET, that are not re-entrant. A malicious local user with CAPNETADMIN can use this to crash the kernel. CVSS 3.1 Base Score 5.5 Availability impacts. CVSS Vector:...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.324.5.3.el8 - Revert 'jbd2: Fix wrongly judgement for buffer head removing while doing checkpoint' Sherry Yang Orabug: 35896102 5.4.17-2136.324.5.2.el8 - fix breakage in dormdir Al Viro Orabug: 35885837 5.4.17-2136.324.5.1.el8 - x86: KVM: SVM: always update the x2avic msr interception...
Oracle Linux 8 / 9 : Unbreakable Enterprise kernel (ELSA-2023-12858)
The remote Oracle Linux 8 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-12858 advisory. - netfilter: ipset: add the missing IPSETHASHWITHNET0 macro for ipsethashnetportnet.c Kyle Zeng Orabug: 35824286 CVE-2023-42753 - rds: Fix lack of...
Unbreakable Enterprise kernel security update
4.1.12-124.79.2 - net/sched: clsroute: No longer copy tcfresult on update to avoid use-after-free valis Orabug: 35814273 CVE-2023-4206 - net/sched: schqfq: account for stab overhead in qfqenqueue Pedro Tammela Orabug: 35636291 CVE-2023-3611 - rds: Fix lack of reentrancy for connection reset with...
CVE-2023-22024
creationtimestamp| type| source ---|---|--- 2023-09-21 00:30:27+00:00| seen| https://t.me/cibsecurity/70840 2023-11-15 16:53:03+00:00| published-proof-of-concept| https://t.me/BABATATASASA/5977...
CVE-2023-22024
In the Unbreakable Enterprise Kernel UEK, the RDS module in UEK has two setsockopt2 options, RDSCONNRESET and RDS6CONNRESET, that are not re-entrant. A malicious local user with CAPNETADMIN can use this to crash the kernel. CVSS 3.1 Base Score 5.5 Availability impacts. CVSS Vector:...
CVE-2023-22024
In the Unbreakable Enterprise Kernel UEK, the RDS module in UEK has two setsockopt2 options, RDSCONNRESET and RDS6CONNRESET, that are not re-entrant. A malicious local user with CAPNETADMIN can use this to crash the kernel. CVSS 3.1 Base Score 5.5 Availability impacts. CVSS Vector:...
CVE-2023-22024
CVE-2023-22024 affects the Unbreakable Enterprise Kernel (UEK) RDS module, where two setsockopt options (RDS_CONN_RESET and RDS6_CONN_RESET) are not re-entrant. A local attacker with CAP_NET_ADMIN can crash the kernel. Connected advisories (e.g., Oracle ELSA updates) indicate a security update ad...
Oracle Linux 7 / 8 : Unbreakable Enterprise kernel (ELSA-2023-12803)
The remote Oracle Linux 7 / 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-12803 advisory. 5.4.17-2136.323.8.1 - rds: Fix lack of reentrancy for connection reset with dst addr zero Haakon Bugge Orabug: 35713696 CVE-2023-22024 Tenable has extracte...
Oracle Linux 8 : Unbreakable Enterprise kernel-container (ELSA-2023-12801)
The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-12801 advisory. 5.4.17-2136.323.8.1.el8 - rds: Fix lack of reentrancy for connection reset with dst addr zero Haakon Bugge Orabug: 35713696 CVE-2023-22024 Tenable has extracte...
Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2023-12800)
The remote Oracle Linux 6 / 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-12800 advisory. 4.1.12-124.78.4.1 - rds: Fix lack of reentrancy for connection reset with dst addr zero Haakon Bugge Orabug: 35741584 CVE-2023-22024 Tenable has extracted...
Oracle Linux 7 : Unbreakable Enterprise kernel-container (ELSA-2023-12802)
The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-12802 advisory. 5.4.17-2136.323.8.1.el7 - rds: Fix lack of reentrancy for connection reset with dst addr zero Haakon Bugge Orabug: 35713696 CVE-2023-22024 Tenable has extracte...
Unbreakable Enterprise kernel security update
5.4.17-2136.323.8.1 - rds: Fix lack of reentrancy for connection reset with dst addr zero Haakon Bugge Orabug: 35713696 CVE-2023-22024...
Unbreakable Enterprise kernel security update
5.15.0-105.125.6.2.1 - rds: Fix lack of reentrancy for connection reset with dst addr zero Haakon Bugge Orabug: 35713695 CVE-2023-22024...
Unbreakable Enterprise kernel security update
4.1.12-124.78.4.1 - rds: Fix lack of reentrancy for connection reset with dst addr zero Haakon Bugge Orabug: 35741584 CVE-2023-22024...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.323.8.1.el7 - rds: Fix lack of reentrancy for connection reset with dst addr zero Haakon Bugge Orabug: 35713696 CVE-2023-22024...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.323.8.1.el8 - rds: Fix lack of reentrancy for connection reset with dst addr zero Haakon Bugge Orabug: 35713696 CVE-2023-22024...
Unbreakable Enterprise kernel security update
4.14.35-2047.529.3.1 - rds: Fix lack of reentrancy for connection reset with dst addr zero Haakon Bugge Orabug: 35708852 CVE-2023-22024...