1144 matches found
kernel: drm/vkms: Fix memory leak in vkms_init()
In the Linux kernel, the following vulnerability has been resolved: drm/vkms: Fix memory leak in vkmsinit A memory leak was reported after the vkms module install failed. unreferenced object 0xffff88810bc28520 size 16: comm "modprobe", pid 9662, jiffies 4298009455 age 42.590s hex dump first 16...
CVE-2023-47233
A use-after-free issue was found in the brcm80211 component in the Linux kernel, which may be triggered by a physical attacker while disconnecting a device. Mitigation To mitigate this issue, prevent module brcmfmac from being loaded. Please see https://access.redhat.com/solutions/41278 for how t...
Huawei HarmonyOS Competitive Conditions Issue Vulnerability
Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. Huawei HarmonyOS suffers from a Competitive Conditional Issue vulnerability, which stems from a conditional competitive vulnerability in the kernel module. A...
SUSE-SU-2023:4159-1 Security update for suse-module-tools
This update for suse-module-tools fixes the following issues: - Updated to version 12.13: - CVE-2023-1829: Blacklisted the Linux kernel tcindex classifier module bsc1210335. - CVE-2023-23559: Blacklisted the Linux kernel RNDIS modules bsc1205767, jscPED-5731. - Disabled the isstifmboxmsr driver...
CVE-2023-45862
An out-of-bounds memory access flaw was found in the Linux kernel ENE SD/MS Card reader driver. This issue occurs when using a malicious USB device, which could allow a local user to crash the system. Mitigation To mitigate this issue, prevent module ums-eneub6250 from being loaded. Please see...
CVE-2023-44119
Vulnerability of mutual exclusion management in the kernel module.Successful exploitation of this vulnerability will affect availability...
CVE-2023-44119
Vulnerability of mutual exclusion management in the kernel module.Successful exploitation of this vulnerability will affect availability...
Privilege escalation
Vulnerability of mutual exclusion management in the kernel module.Successful exploitation of this vulnerability will affect availability...
CVE-2023-44119
Vulnerability of mutual exclusion management in the kernel module.Successful exploitation of this vulnerability will affect availability...
CVE-2023-44119
CVE-2023-44119 affects Huawei HarmonyOS with a kernel-level DoS via issues in mutual exclusion lock management in kernel modules. Public records (CNVD/CNNVD) describe the vulnerability as a denial-of-service risk stemming from mutex handling in kernel space, potentially compromising availability....
CVE-2023-44119
Vulnerability of mutual exclusion management in the kernel module.Successful exploitation of this vulnerability will affect availability...
CVE-2023-39189
A flaw was found in the Netfilter subsystem in the Linux kernel. The nfnlosfaddcallback function did not validate the user mode controlled optnum field. This flaw allows a local privileged CAPNETADMIN attacker to trigger an out-of-bounds read, leading to a crash or information disclosure...
CVE-2023-39192
A flaw was found in the Netfilter subsystem in the Linux kernel. The xtu32 module did not validate the fields in the xtu32 structure. This flaw allows a local privileged attacker to trigger an out-of-bounds read by setting the size fields with a value beyond the array boundaries, leading to a cra...
CVE-2023-39193
A flaw was found in the Netfilter subsystem in the Linux kernel. The sctpmtcheck did not validate the flagcount field. This flaw allows a local privileged CAPNETADMIN attacker to trigger an out-of-bounds read, leading to a crash or information disclosure. Mitigation This flaw can be mitigated by...
CVE-2023-5345
A flaw was found in the SMB client component in the Linux kernel. In case of an error in smb3fscontextparseparam, ctx-password was freed, but the field was not set to NULL, potentially leading to a use-after-free vulnerability. This flaw allows a local user to crash or potentially escalate their...
PT-2024-14591 · Linux +2 · Linux Kernel +2
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A use-after-free uaf vulnerability has been resolved in the Linux kernel, specifically in the ksmbd module. The issue is related to the smb20 oplock break ack function, where a referen...
CVE-2023-42755
A flaw was found in the IPv4 Resource Reservation Protocol RSVP classifier in the Linux kernel. The xprt pointer may go beyond the linear part of the skb, leading to an out-of-bounds read in the rsvpclassify function. This issue may allow a local user to crash the system and cause a denial of...
CVE-2023-41296
Vulnerability of missing authorization in the kernel module. Successful exploitation of this vulnerability may affect integrity and confidentiality...
CVE-2023-41296
Vulnerability of missing authorization in the kernel module. Successful exploitation of this vulnerability may affect integrity and confidentiality...
Authorization
Vulnerability of missing authorization in the kernel module. Successful exploitation of this vulnerability may affect integrity and confidentiality...