Lucene search
+L

6 matches found

Tenable Nessus
Tenable Nessus
added 2025/04/30 12:0 a.m.20 views

Amazon Linux AMI : kernel (ALAS-2025-1975)

The version of kernel installed on the remote host is prior to 4.14.330-176.540. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2025-1975 advisory. A use-after-free flaw was found in vcsread in drivers/tty/vt/vcscreen.c in vcscreen in the Linux Kernel. In this fl...

7.8CVSS6.5AI score0.00419EPSS
Exploits0References8
Amazon
Amazon
added 2025/04/29 12:0 a.m.20 views

Important: kernel

Issue Overview: A use-after-free flaw was found in vcsread in drivers/tty/vt/vcscreen.c in vcscreen in the Linux Kernel. In this flaw an attacker with local user access may lead to a system crash or a leak of internal kernel information. CVE-2023-3567 In the Linux kernel, the following...

7.8CVSS6.3AI score0.00419EPSS
Exploits0
NVD
NVD
added 2025/03/27 5:15 p.m.13 views

CVE-2023-52973

In the Linux kernel, the following vulnerability has been resolved: vcscreen: move load of struct vcdata pointer in vcsread to avoid UAF After a call to consoleunlock in vcsread the vcdata struct can be freed by vcdeallocate. Because of that, the struct vcdata pointer load must be done at the top...

7.8CVSS0.00274EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2025/03/27 5:15 p.m.6 views

CVE-2023-52973

In the Linux kernel, the following vulnerability has been resolved: vcscreen: move load of struct vcdata pointer in vcsread to avoid UAF After a call to consoleunlock in vcsread the vcdata struct can be freed by vcdeallocate. Because of that, the struct vcdata pointer load must be done at the top...

7.8CVSS6.3AI score0.00274EPSS
Exploits0References9
CVE
CVE
added 2025/03/27 4:43 p.m.171 views

CVE-2023-52973

The CVE-2023-52973 issue affects the Linux kernel’s vc_screen path (vt/vc_screen.c). Root cause: a use-after-free of vc_data after console_unlock() in vcs_read(), where the vc_data pointer was loaded inside the loop, allowing a UAF in vcs_size(). The bug was fixed by moving the vc_data load to th...

7.8CVSS6.2AI score0.00274EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2025/03/27 4:43 p.m.11 views

CVE-2023-52973 vc_screen: move load of struct vc_data pointer in vcs_read() to avoid UAF

In the Linux kernel, the following vulnerability has been resolved: vcscreen: move load of struct vcdata pointer in vcsread to avoid UAF After a call to consoleunlock in vcsread the vcdata struct can be freed by vcdeallocate. Because of that, the struct vcdata pointer load must be done at the top...

0.00274EPSS
Exploits0References7
Rows per page
Query Builder