5 matches found
Linux Distros Unpatched Vulnerability : CVE-2023-52772
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: afunix: fix use-after-free in unixstreamreadactor syzbot reported the following crash 1 Afte...
SUSE-SU-2024:3370-1 Security update for the Linux Kernel (Live Patch 0 for SLE 15 SP6)
This update for the Linux Kernel 6.4.0-15060021 fixes several issues. The following security issues were fixed: - CVE-2023-52846: Prevent use after free in prpcreatetaggedframe bsc1225099. - CVE-2024-35817: Set gtt bound flag in amdgputtmgartbind bsc1225313. - CVE-2024-36921: Guard against invali...
SUSE-SU-2024:3032-1 Security update for the Linux Kernel (Live Patch 0 for SLE 15 SP6)
This update for the Linux Kernel 6.4.0-15060021 fixes several issues. The following security issues were fixed: - CVE-2024-36921: wifi: iwlwifi: mvm: guard against invalid STA ID removal bsc1225850. - CVE-2023-52772: Fixed use-after-free in unixstreamreadactor bsc1224991...
CVE-2023-52772
In the Linux kernel, the following vulnerability has been resolved: afunix: fix use-after-free in unixstreamreadactor syzbot reported the following crash 1 After releasing unix socket lock, u-oobskb can be changed by another thread. We must temporarily increase skb refcount to make sure this othe...
CVE-2023-52772
CVE-2023-52772 is a Linux kernel use-after-free in unix_stream_read_actor() affecting af_unix sockets. The issue arises when releasing the unix socket lock and u->oob_skb can be changed by another thread, requiring temporarily increased skb refcount. The vulnerability was fixed upstream in the...