CVE-2023-1990

A use-after-free flaw was found in ndlcremove in drivers/nfc/st-nci/ndlc.c in the Linux Kernel. This flaw could allow an attacker to crash the system due to a race problem...

CVE-2023-1990

A use-after-free flaw was found in ndlcremove in drivers/nfc/st-nci/ndlc.c in the Linux Kernel. This flaw could allow an attacker to crash the system due to a race problem...

CVE-2023-1989

A use-after-free flaw was found in btsdioremove in drivers\bluetooth\btsdio.c in the Linux Kernel. In this flaw, a call to btsdioremove with an unfinished job, may cause a race problem leading to a UAF on hdev devices...

CVE-2023-1990

A use-after-free flaw was found in ndlcremove in drivers/nfc/st-nci/ndlc.c in the Linux Kernel. This issue could allow an attacker to crash the system due to a race problem...

CVE-2023-1989

A use-after-free flaw was found in btsdioremove in drivers\bluetooth\btsdio.c in the Linux Kernel. In this flaw, a call to btsdioremove with an unfinished job, may cause a race problem leading to a UAF on hdev devices...

CVE-2023-1989

A use-after-free flaw was found in btsdioremove in drivers\bluetooth\btsdio.c in the Linux Kernel. In this flaw, a call to btsdioremove with an unfinished job, may cause a race problem leading to a UAF on hdev devices...

SUSE SLES15: cluster-md-kmp-azure / dlm-kmp-azure / gfs2-kmp-azure / etc (SUSE-SU-2023:1802-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:1802-1 advisory. The SUSE Linux Enterprise 15 SP4 Azure kernel was updated to receive various security and bugfixes. The following...

NewStart CGSL CORE 5.05 / MAIN 5.05 : kernel Multiple Vulnerabilities (NS-SA-2023-0017)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has kernel packages installed that are affected by multiple vulnerabilities: - net/netfilter/nftablesapi.c in the Linux kernel through 5.18.1 allows a local user able to create user/net namespaces to escalate privileges to root...

ADM HDX Insight/Gateway Insight fail to display data over one month

ADM HDX Insight/Gateway Insight cannot show more than one month data although the time period was set to more than 3 Months or longer. e.g. Unable to show the "Terminated Sessions" record under path "Gateway HDX InsightUsers" over one month...

CVE-2023-1582

A race problem was found in fs/proc/taskmmu.c in the memory management sub-component in the Linux kernel. This issue may allow a local attacker with user privilege to cause a denial of service...

Design/Logic Flaw

A use-after-free flaw was found in xgenehwmonremove in drivers/hwmon/xgene-hwmon.c in the Hardware Monitoring Linux Kernel Driver xgene-hwmon. This flaw could allow a local attacker to crash the system due to a race problem. This vulnerability could even lead to a kernel information leak problem...

CVE-2023-1855

A use-after-free flaw was found in xgenehwmonremove in drivers/hwmon/xgene-hwmon.c in the Hardware Monitoring Linux Kernel Driver xgene-hwmon. This flaw could allow a local attacker to crash the system due to a race problem. This vulnerability could even lead to a kernel information leak problem...

CVE-2023-1859

A use-after-free flaw was found in xen9pfsfrontremovet in net/9p/transxen.c in Xen transport for 9pfs in the Linux Kernel. This flaw could allow a local attacker to crash the system due to a race problem, possibly leading to a kernel information leak...

CVE-2023-1582

CVE-2023-1582 is described in connected documents as a race condition in the Linux kernel's fs/proc/task_mmu.c under the memory management component. It may allow a local privileged user to cause a denial of service. The MiracleLinux advisory block lists the vulnerability and confirms the race co...

CVE-2023-1855

CVE-2023-1855 describes a use-after-free in xgene_hwmon_remove (drivers/hwmon/xgene-hwmon.c) of the Linux kernel hardware monitoring driver. The Astra Linux security bulletin mirrors this flaw and notes it could allow a local attacker to crash the system or leak kernel memory due to a race condit...

CVE-2023-1582

A race problem was found in fs/proc/taskmmu.c in the memory management sub-component in the Linux kernel. This issue may allow a local attacker with user privilege to cause a denial of service...

ChatGPT Has a Big Privacy Problem

Italy’s recent ban of Open AI’s generative text tool may just be the beginning of ChatGPT's regulatory woes...

CVE-2023-20099

Technical details for CVE-2023-20099 are not publicly available in the provided documents. Monitor for updates and the release of concrete information on affected products, impact, and remediation.

CVE-2023-23655

CVE-2023-23655 relates to the WordPress plugin MainWP Code Snippets Extension (< =4.0.2). The vulnerability is due to Broken Access Control: there is no authorization check when updating plugin settings, which could let any authenticated user (e.g., a subscriber) modify settings. Affected vers...

CVE-2023-1582

A race problem was found in fs/proc/taskmmu.c in the memory management sub-component in the Linux kernel. This issue may allow a local attacker with user privilege to cause a denial of service. Mitigation This flaw can be mitigated by disabling THP on the system. How to disable THP ?...