Lucene search
K

7 matches found

RedHat Linux
RedHat Linux
added 2023/08/08 8:27 a.m.7 views

kernel: tcindex: use-after-free vulnerability in traffic control index filter allows privilege escalation

A use-after-free vulnerability was found in the traffic control index filter tcindex in the Linux kernel. The imperfect hash area can be updated while packets are traversing. This issue could allow a local attacker to cause a use-after-free problem, leading to privilege escalation...

7.8CVSS6.6AI score0.00305EPSS
Exploits0References5
OSV
OSV
added 2023/05/10 2:56 p.m.7 views

USN-6070-1 linux-azure-fde-5.15, linux-raspi vulnerabilities

It was discovered that the Traffic-Control Index TCINDEX implementation in the Linux kernel did not properly perform filter deactivation in some situations. A local attacker could possibly use this to gain elevated privileges. Please note that with the fix for this CVE, kernel support for the...

7.8CVSS6.8AI score0.01029EPSS
Exploits1References3
OSV
OSV
added 2023/04/21 11:5 a.m.12 views

OESA-2023-1251 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: An out-of-boundsOOB memory access vulnerability was found in vmwgfx driver in drivers/gpu/vmxgfx/vmxgfxkms.c in GPU component in the Linux kernel with device file '/dev/dri/renderD128 or Dxxx'. This flaw allows a local attacker...

7.8CVSS6.5AI score0.01029EPSS
Exploits1References6
BDU FSTEC
BDU FSTEC
added 2023/04/20 12:0 a.m.5 views

The vulnerability of the indexing filter of the traffic control system tcindex (net/sched/cls_tcindex.c) in the Linux operating system allows a hacker to increase their privileges.

The vulnerability of the indexing filter in the tcindex traffic control system net/sched/clstcindex.c in the Linux operating system is related to improper handling of filters, resulting in the re-release of previously released memory. Exploiting this vulnerability can allow an attacker to increas...

7.8CVSS6.6AI score0.01029EPSS
Exploits1References17Affected Software4
OSV
OSV
added 2023/03/31 11:5 a.m.1 views

OESA-2023-1197 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: Intel microprocessor generations 6 to 8 are affected by a new Spectre variant that is able to bypass their retpoline mitigation in the kernel to leak arbitrary data. An attacker with unprivileged user access can hijack return...

7.8CVSS6.7AI score0.04947EPSS
Exploits0References7
OSV
OSV
added 2023/03/27 10:38 p.m.5 views

USN-5977-1 linux-oem-6.0 vulnerabilities

It was discovered that the Traffic-Control Index TCINDEX implementation in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2023-1281 It was discovered that the KVM VMX...

8.8CVSS6.9AI score0.00305EPSS
Exploits0References4
Amazon
Amazon
added 2023/03/22 12:0 a.m.10 views

Important: kernel

Issue Overview: A regression exists in the Linux Kernel within KVM: nVMX that allowed for speculative execution attacks. L2 can carry out Spectre v2 attacks on L1 due to L1 thinking it doesn't need retpolines or IBPB after running L2 due to KVM L0 advertising eIBRS support to L1. An attacker at L...

9.1CVSS7.9AI score0.01219EPSS
Exploits0
Rows per page
Query Builder