CVE-2023-1990

Опубликовано: 12 апр. 2023

Источник: debian

Описание

A use-after-free flaw was found in ndlc_remove in drivers/nfc/st-nci/ndlc.c in the Linux Kernel. This flaw could allow an attacker to crash the system due to a race problem.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
linux	fixed	6.1.25-1		package
linux	fixed	5.10.178-1	bullseye	package

Примечания

https://git.kernel.org/linus/5000fe6c27827a61d8250a7e4a1d26c3298ef4f6 (6.3-rc3)
STMicroelectronics ST NCI NFC driver (NFC_ST_NCI_I2C, NFC_ST_NCI_SPI) not
enabled in Debian

Связанные уязвимости

CVE-2023-1990

CVSS3: 4.7

ubuntu

почти 3 года назад

A use-after-free flaw was found in ndlc_remove in drivers/nfc/st-nci/ndlc.c in the Linux Kernel. This flaw could allow an attacker to crash the system due to a race problem.

CVE-2023-1990

CVSS3: 5.1

redhat

почти 3 года назад

A use-after-free flaw was found in ndlc_remove in drivers/nfc/st-nci/ndlc.c in the Linux Kernel. This flaw could allow an attacker to crash the system due to a race problem.

CVE-2023-1990

CVSS3: 4.7

nvd

почти 3 года назад

A use-after-free flaw was found in ndlc_remove in drivers/nfc/st-nci/ndlc.c in the Linux Kernel. This flaw could allow an attacker to crash the system due to a race problem.

CVE-2023-1990

CVSS3: 4.7

msrc

почти 3 года назад

Описание отсутствует

GHSA-xh27-567v-j74r

CVSS3: 4.7

github

почти 3 года назад

A use-after-free flaw was found in ndlc_remove in drivers/nfc/st-nci/ndlc.c in the Linux Kernel. This flaw could allow an attacker to crash the system due to a race problem.