Lucene search
+L

15 matches found

OpenVAS
OpenVAS
added 2024/03/04 12:0 a.m.27 views

openSUSE: Security Advisory for the Linux Kernel RT (Live Patch 1 for SLE 15 SP5) (SUSE-SU-2023:3676-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.3AI score0.06127EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2024/01/16 12:0 a.m.25 views

EulerOS Virtualization 3.0.6.0 : kernel (EulerOS-SA-2023-3434)

According to the versions of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : A use-after-free flaw was found in net/sched/clsfw.c in classifiers clsfw, clsu32, and clsroute in the Linux Kernel. This flaw allo...

7.8CVSS7AI score0.12966EPSS
Exploits13References24
Tenable Nessus
Tenable Nessus
added 2023/09/20 12:0 a.m.27 views

SUSE SLES15: kernel-livepatch-5_14_21-150400_15_37-rt / etc (SUSE-SU-2023:3676-1)

The remote SUSE Linux SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:3676-1 advisory. This update for the Linux Kernel 5.14.21-1504001537 fixes several issues. The following security issues were fixed: - CVE-2023-2156: Fixed a fl...

7.8CVSS6.8AI score0.06127EPSS
Exploits3References10
Tenable Nessus
Tenable Nessus
added 2023/09/20 12:0 a.m.27 views

SUSE SLES15 Security Update : kernel RT (Live Patch 5 for SLE 15 SP4) (SUSE-SU-2023:3668-1)

The remote SUSE Linux SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:3668-1 advisory. This update for the Linux Kernel 5.14.21-1504001518 fixes several issues. The following security issues were fixed: - CVE-2023-32233: Fixed a...

7.8CVSS6.7AI score0.12966EPSS
Exploits10References19
Tenable Nessus
Tenable Nessus
added 2023/09/20 12:0 a.m.28 views

SUSE SLES15: kernel-livepatch-5_14_21-150400_15_5-rt / etc (SUSE-SU-2023:3671-1)

The remote SUSE Linux SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:3671-1 advisory. This update for the Linux Kernel 5.14.21-150400155 fixes several issues. The following security issues were fixed: - CVE-2023-32233: Fixed a...

7.8CVSS6.7AI score0.12966EPSS
Exploits10References22
Tenable Nessus
Tenable Nessus
added 2023/09/12 12:0 a.m.35 views

SUSE SLES15 Security Update : kernel (Live Patch 41 for SLE 15 SP1) (SUSE-SU-2023:3571-1)

The remote SUSE Linux SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:3571-1 advisory. This update for the Linux Kernel 4.12.14-150100197148 fixes several issues. The following security issues were fixed: - CVE-2023-3567: Fixed a...

7.8CVSS6.7AI score0.01508EPSS
Exploits3References10
RedHat Linux
RedHat Linux
added 2023/08/29 9:26 a.m.4 views

kernel: ipvlan: out-of-bounds write caused by unclear skb->cb

A flaw was found in the IPVLAN network driver in the Linux kernel. This issue is caused by missing skb-cb initialization in ipoptionsecho and can lead to an out-of-bounds write stack overflow. This may allow a local user to cause a denial of service or potentially achieve local privilege escalati...

7.8CVSS6.7AI score0.00491EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2023/08/02 12:0 a.m.43 views

AlmaLinux 9 : kpatch-patch (ALSA-2023:4380)

The remote AlmaLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALSA-2023:4380 advisory. - A heap out-of-bounds write vulnerability in the Linux Kernel ipvlan network driver can be exploited to achieve local privilege escalation. The...

7.8CVSS7AI score0.00532EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2023/07/20 12:0 a.m.59 views

Ubuntu 22.04 LTS : Linux kernel (OEM) vulnerabilities (USN-6231-1)

The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6231-1 advisory. It was discovered that the XFS file system implementation in the Linux kernel did not properly perform metadata validation when mounting certain images. ...

7.8CVSS7.4AI score0.00491EPSS
Exploits2References6
OSV
OSV
added 2023/07/14 11:3 a.m.20 views

SUSE-SU-2023:2831-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP4 Azure kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2023-1077: Fixed a type confusion in picknextrtentity, that could cause memory corruption bsc1208600. - CVE-2023-1249: Fixed a use-after-free flaw in t...

7.8CVSS8.2AI score0.01037EPSS
Exploits4References66
RedhatCVE
RedhatCVE
added 2023/07/04 6:17 p.m.81 views

CVE-2023-3090

A flaw was found in the IPVLAN network driver in the Linux kernel. This issue is caused by missing skb-cb initialization in ipoptionsecho and can lead to an out-of-bounds write stack overflow. This may allow a local user to cause a denial of service or potentially achieve local privilege...

7.8CVSS7.4AI score0.00491EPSS
Exploits1References3
NVD
NVD
added 2023/06/28 8:15 p.m.23 views

CVE-2023-3090

A heap out-of-bounds write vulnerability in the Linux Kernel ipvlan network driver can be exploited to achieve local privilege escalation. The out-of-bounds write is caused by missing skb-cb initialization in the ipvlan network driver. The vulnerability is reachable if CONFIGIPVLAN is enabled. We...

7.8CVSS7.8AI score0.00491EPSS
Exploits1References9
Debian CVE
Debian CVE
added 2023/06/28 7:6 p.m.42 views

CVE-2023-3090

A heap out-of-bounds write vulnerability in the Linux Kernel ipvlan network driver can be exploited to achieve local privilege escalation. The out-of-bounds write is caused by missing skb-cb initialization in the ipvlan network driver. The vulnerability is reachable if CONFIGIPVLAN is enabled. We...

7.8CVSS6.9AI score0.00491EPSS
Exploits1
CVE
CVE
added 2023/06/28 7:6 p.m.218 views

CVE-2023-3090

CVE-2023-3090 is a Linux kernel vulnerability affecting the ipvlan driver. It causes a heap out-of-bounds write due to missing skb->cb initialization, and is exploitable when CONFIG_IPVLAN is enabled. The issue enables local privilege escalation as described in multiple sources (e.g., Astra Li...

7.8CVSS7.9AI score0.00491EPSS
Exploits1References9Affected Software1
Cvelist
Cvelist
added 2023/06/28 7:6 p.m.35 views

CVE-2023-3090 Out-of-bounds write in Linux kernel's ipvlan network driver

A heap out-of-bounds write vulnerability in the Linux Kernel ipvlan network driver can be exploited to achieve local privilege escalation. The out-of-bounds write is caused by missing skb-cb initialization in the ipvlan network driver. The vulnerability is reachable if CONFIGIPVLAN is enabled. We...

7.8CVSS7.9AI score0.00491EPSS
Exploits1References9
Rows per page
Query Builder