Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntuUbuntuLSN-0104-1
HistoryJun 10, 2024 - 12:00 a.m.

Kernel Live Patch Security Notice

2024-06-1000:00:00
ubuntu.com
1
kernel
live patch
security
ata over ethernet
appletalk
race condition
use-after-free
denial of service
arbitrary code
netfilter
net
qualcomm
out-of-bounds read

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.9 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

Details

It was discovered that the ATA over Ethernet (AoE) driver in the Linux
kernel contained a race condition, leading to a use-after-free
vulnerability. An attacker could use this to cause a denial of service or
possibly execute arbitrary code.(CVE-2023-6270)

It was discovered that a race condition existed in the AppleTalk networking
subsystem of the Linux kernel, leading to a use-after-free vulnerability. A
local attacker could use this to cause a denial of service (system crash)
or possibly execute arbitrary code.(CVE-2023-51781)

In the Linux kernel, the following vulnerability has been
resolved: netfilter: nft_set_rbtree: skip end interval element from gc
rbtree lazy gc on insert might collect an end interval element that has
been just added in this transactions, skip end interval elements that are
not yet active.(CVE-2024-26581)

In the Linux kernel, the following vulnerability has been
resolved: net: qualcomm: rmnet: fix global oob in rmnet_policy The variable
rmnet_link_ops assign a bigger maxtype which leads to a global out-of-
bounds read when parsing the netlink attributes.(CVE-2024-26597)

Related

cbl_mariner 3
prion 4
ubuntucve 5
debiancve 5
nvd 5
cvelist 5
cve 5
vulnrichment 2
redhatcve 4
osv 36
cnvd 1
ubuntu 33
nessus 43
amazon 2
openvas 40
debian 3
photon 1
mageia 2
cbl_mariner
cbl_mariner
CVE-2024-26581 affecting package hyperv-daemons for versions less than 5.15.153.1-1
2024-04-09 20:48:36
CVE-2024-26581 affecting package hyperv-daemons for versions less than 6.6.22.1-2
2024-04-02 21:08:16
CVE-2023-51781 affecting package kernel for versions less than 5.15.148.1-1
2024-02-25 03:00:06
prion
prion
Spoofing
2024-02-20 13:15:00
Design/Logic Flaw
2024-02-23 15:15:00
Race condition
2024-01-11 19:15:00
ubuntucve
ubuntucve
CVE-2024-26581
2024-02-20 00:00:00
CVE-2023-51781
2024-01-11 00:00:00
CVE-2024-26597
2024-02-23 00:00:00
debiancve
debiancve
CVE-2024-26581
2024-02-20 13:15:09
CVE-2024-26597
2024-02-23 15:15:09
CVE-2023-51781
2024-01-11 19:15:12
nvd
nvd
CVE-2024-26581
2024-02-20 13:15:09
CVE-2023-51781
2024-01-11 19:15:12
CVE-2024-26597
2024-02-23 15:15:09
cvelist
cvelist
CVE-2024-26597 net: qualcomm: rmnet: fix global oob in rmnet_policy
2024-02-23 14:46:26
CVE-2023-51781
2023-12-25 00:00:00
CVE-2024-26581 netfilter: nft_set_rbtree: skip end interval element from gc
2024-02-20 12:52:57
cve
cve
CVE-2024-26597
2024-02-23 15:15:09
CVE-2024-26581
2024-02-20 13:15:09
CVE-2023-51781
2024-01-11 19:15:12
vulnrichment
vulnrichment
CVE-2024-26597 net: qualcomm: rmnet: fix global oob in rmnet_policy
2024-02-23 14:46:26
CVE-2024-26898 aoe: fix the potential use-after-free problem in aoecmd_cfg_pkts
2024-04-17 10:27:48
redhatcve
redhatcve
CVE-2024-26581
2024-02-20 20:22:07
CVE-2023-51781
2024-01-10 13:35:57
CVE-2023-6270
2024-01-04 15:23:15
osv
osv
CVE-2023-51781
2024-01-11 19:15:12
linux-azure, linux-lowlatency, linux-nvidia vulnerabilities
2024-04-23 17:37:06
linux, linux-aws, linux-aws-5.15, linux-azure-5.15, linux-azure-fde, linux-azure-fde-5.15, linux-gcp, linux-gcp-5.15, linux-gke, linux-gkeop, linux-gkeop-5.15, linux-hwe-5.15, linux-ibm, linux-ibm-5.15, linux-intel-iotg, linux-intel-iotg-5.15, linux-kvm, linux-lowlatency-hwe-5.15, linux-oracle, linux-oracle-5.15, linux-raspi vulnerabilities
2024-04-19 13:51:13
cnvd
cnvd
Linux kernel code execution vulnerability (CNVD-2024-14767)
2024-01-05 00:00:00
ubuntu
ubuntu
Kernel Live Patch Security Notice
2024-04-30 00:00:00
Linux kernel (ARM laptop) vulnerabilities
2024-03-21 00:00:00
Linux kernel vulnerabilities
2024-04-19 00:00:00
nessus
nessus
Amazon Linux AMI : kernel (ALAS-2024-1923)
2024-03-05 00:00:00
Ubuntu 23.10 : Linux kernel (ARM laptop) vulnerabilities (USN-6707-2)
2024-03-21 00:00:00
Ubuntu 22.04 LTS / 23.10 : Linux kernel vulnerabilities (USN-6707-1)
2024-03-20 00:00:00
amazon
amazon
Important: kernel
2024-02-28 23:54:00
Important: kernel
2024-02-29 10:03:00
openvas
openvas
Ubuntu: Security Advisory (USN-6707-4)
2024-03-29 00:00:00
Ubuntu: Security Advisory (USN-6707-1)
2024-03-21 00:00:00
Ubuntu: Security Advisory (USN-6742-2)
2024-04-24 00:00:00
debian
debian
[SECURITY] [DSA 5593-1] linux security update
2024-01-01 13:25:21
[SECURITY] [DSA 5594-1] linux security update
2024-01-02 21:05:08
[SECURITY] [DLA 3711-1] linux-5.10 security update
2024-01-11 17:58:27
photon
photon
Important Photon OS Security Update - PHSA-2024-3.0-0713
2024-01-16 00:00:00
mageia
mageia
Updated kernel, kmod-xtables-addons, kmod-virtualbox packages fix security vulnerabilities
2024-04-23 04:20:56
Updated kernel-linus packages fix security vulnerabilities
2024-04-23 04:20:56

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.9 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON
Related for LSN-0104-1
cbl_mariner3prion4ubuntucve5debiancve5nvd5cvelist5cve5vulnrichment2redhatcve4osv36cnvd1ubuntu33nessus43amazon2openvas40debian3photon1mageia2