Lucene search
+L

44 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2023-28466

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - dotlsgetsockopt in net/tls/tlsmain.c in the Linux kernel through 6.2.6 lacks a locksock call, leading to a race condition with a resultant use-after-free or NUL...

7CVSS6.3AI score0.00273EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2024/04/26 2:49 p.m.43 views

Security Bulletin: IBM MQ Appliance is affected by a Linux Kernel vulnerability (CVE-2023-28466)

Summary IBM MQ Appliance has addressed a Linux Kernel denial of service vulnerability. Vulnerability Details CVEID:CVE-2023-28466 DESCRIPTION: Linux Kernel is vulnerable to a denial of service, caused by the lack of a locksock call in dotlsgetsockopt in net/tls/tlsmain.c. By sending a specially...

7CVSS7.1AI score0.00273EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/12/04 4:47 p.m.59 views

Security Bulletin: Linux Kernel vulnerability may affect IBM Elastic Storage System (CVE-2023-28466)

Summary There is a vulnerability in the Linux kernel, used by IBM Elastic Storage System, which could allow a denial of service. Vulnerability Details CVEID:CVE-2023-28466 DESCRIPTION: Linux Kernel is vulnerable to a denial of service, caused by the lack of a locksock call in dotlsgetsockopt in...

7CVSS7.1AI score0.00273EPSS
Exploits0Affected Software1
OpenVAS
OpenVAS
added 2023/09/11 12:0 a.m.33 views

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2023-2755)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.7AI score0.12966EPSS
Exploits22References2
OpenVAS
OpenVAS
added 2023/09/05 12:0 a.m.31 views

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2023-2647)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.7AI score0.12966EPSS
Exploits22References2
OSV
OSV
added 2023/08/31 4:54 p.m.30 views

RLSA-2023:3819 Moderate: kernel-rt security and bug fix update

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Security Fixes: kernel: tls: race condition in dotlsgetsockopt may lead to use-after-free or NULL pointer dereference CVE-2023-28466 For more details abou...

7CVSS7.7AI score0.00273EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/08/31 12:0 a.m.55 views

Rocky Linux 8 : kernel (RLSA-2023:3847)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2023:3847 advisory. - dotlsgetsockopt in net/tls/tlsmain.c in the Linux kernel through 6.2.6 lacks a locksock call, leading to a race condition with a resultant use-after-free or NU...

7CVSS6.8AI score0.00273EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2023/08/31 12:0 a.m.41 views

Rocky Linux 8 : kernel-rt (RLSA-2023:3819)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2023:3819 advisory. - dotlsgetsockopt in net/tls/tlsmain.c in the Linux kernel through 6.2.6 lacks a locksock call, leading to a race condition with a resultant use-after-free or NU...

7CVSS6.8AI score0.00273EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2023/08/30 12:0 a.m.37 views

Ubuntu: Security Advisory (USN-6314-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.2AI score0.00491EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2023/08/29 12:0 a.m.31 views

Ubuntu: Security Advisory (USN-6311-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.5AI score0.0406EPSS
Exploits4References2
OpenVAS
OpenVAS
added 2023/08/18 12:0 a.m.27 views

Ubuntu: Security Advisory (USN-6301-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.2AI score0.00491EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2023/08/01 12:0 a.m.32 views

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2023-2503)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7AI score0.00726EPSS
Exploits0References2
Oracle linux
Oracle linux
added 2023/07/25 12:0 a.m.42 views

kernel security, bug fix, and enhancement update

4.18.0-477.15.18.OL8 - net: tls: fix possible race condition between dotlsgetsockoptconf and dotlssetsockoptconf Hangyu Hua CVE-2023-28466...

7CVSS7.4AI score0.00273EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/07/25 12:0 a.m.57 views

Oracle Linux 9 : kernel (ELSA-2023-3723)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-3723 advisory. - net: tls: fix possible race condition between dotlsgetsockoptconf and dotlssetsockoptconf CVE-2023-28466 - i2c: xgene-slimpro: Fix out-of-bounds bug ...

7.8CVSS7.1AI score0.12966EPSS
Exploits10References7
Tenable Nessus
Tenable Nessus
added 2023/07/21 12:0 a.m.34 views

Oracle Linux 8 : kernel (ELSA-2023-3847)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-3847 advisory. - net: tls: fix possible race condition between dotlsgetsockoptconf and dotlssetsockoptconf Hangyu Hua CVE-2023-28466 Tenable has extracted the preceding...

7CVSS6.9AI score0.00273EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/07/01 12:0 a.m.20 views

SUSE SLES15 Security Update : kernel (Live Patch 22 for SLE 15 SP3) (SUSE-SU-2023:2741-1)

The remote SUSE Linux SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:2741-1 advisory. This update for the Linux Kernel 5.3.18-1503005987 fixes several issues. The following security issues were fixed: - CVE-2022-4744: Fixed...

7.8CVSS6.8AI score0.05095EPSS
Exploits0References16
OSV
OSV
added 2023/06/30 1:58 p.m.5 views

SUSE-SU-2023:2755-1 Security update for the Linux Kernel (Live Patch 1 for SLE 15 SP4)

This update for the Linux Kernel 5.14.21-1504002411 fixes several issues. The following security issues were fixed: - CVE-2022-4744: Fixed double-free that could lead to DoS or privilege escalation in TUN/TAP device driver functionality bsc1209672. - CVE-2023-23455: Fixed a denial of service insi...

7.8CVSS7.2AI score0.00587EPSS
Exploits0References9
OSV
OSV
added 2023/06/30 9:44 a.m.6 views

SUSE-SU-2023:2743-1 Security update for the Linux Kernel (Live Patch 6 for SLE 15 SP4)

This update for the Linux Kernel 5.14.21-1504002438 fixes several issues. The following security issues were fixed: - CVE-2023-23455: Fixed a denial of service inside atmtcenqueue in net/sched/schatm.c because of type confusion non-negative numbers can sometimes indicate a TCACTSHOT condition...

7.8CVSS7AI score0.00587EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2023/06/30 12:0 a.m.25 views

SUSE SLES12: kernel-livepatch-5_14_21-150400_24_46-default / etc (SUSE-SU-2023:2703-1)

The remote SUSE Linux SLES12 / SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:2703-1 advisory. This update for the Linux Kernel 4.12.14-122156 fixes several issues. The following security issues were fixed: - CVE-2023-31436: Fixe...

7.8CVSS6.7AI score0.00587EPSS
Exploits0References7
OSV
OSV
added 2023/06/29 5:6 p.m.14 views

SUSE-SU-2023:2731-1 Security update for the Linux Kernel (Live Patch 10 for SLE 15 SP4)

This update for the Linux Kernel 5.14.21-1504002455 fixes several issues. The following security issues were fixed: - CVE-2023-31436: Fixed an out-of-bounds write in qfqchangeclass because lmax can exceed QFQMINLMAX bsc1210989. - CVE-2023-28466: Fixed race condition that could lead to...

7.8CVSS7.7AI score0.00587EPSS
Exploits0References5
Rows per page
Query Builder