CVE-2023-40283

Опубликовано: 14 авг. 2023

Источник: debian

EPSS Низкий

Описание

An issue was discovered in l2cap_sock_release in net/bluetooth/l2cap_sock.c in the Linux kernel before 6.4.10. There is a use-after-free because the children of an sk are mishandled.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
linux	fixed	6.4.11-1		package

Примечания

https://git.kernel.org/linus/1728137b33c00d5a2b5110ed7aafb42e7c32e4a1 (6.5-rc1)

EPSS

Процентиль: 1%

0.0001

Низкий

Связанные уязвимости

CVE-2023-40283

CVSS3: 7.8

ubuntu

больше 2 лет назад

An issue was discovered in l2cap_sock_release in net/bluetooth/l2cap_sock.c in the Linux kernel before 6.4.10. There is a use-after-free because the children of an sk are mishandled.

CVE-2023-40283

CVSS3: 7.8

redhat

больше 2 лет назад

An issue was discovered in l2cap_sock_release in net/bluetooth/l2cap_sock.c in the Linux kernel before 6.4.10. There is a use-after-free because the children of an sk are mishandled.

CVE-2023-40283

CVSS3: 7.8

nvd

больше 2 лет назад

An issue was discovered in l2cap_sock_release in net/bluetooth/l2cap_sock.c in the Linux kernel before 6.4.10. There is a use-after-free because the children of an sk are mishandled.

CVE-2023-40283

CVSS3: 7.8

msrc

около 2 лет назад

An issue was discovered in l2cap_sock_release in net/bluetooth/l2cap_sock.c in the Linux kernel before 6.4.10. There is a use-after-free because the children of an sk are mishandled.

GHSA-cp56-rpr6-7673

CVSS3: 7.8

github

больше 2 лет назад

An issue was discovered in l2cap_sock_release in net/bluetooth/l2cap_sock.c in the Linux kernel before 6.4.10. There is a use-after-free because the children of an sk are mishandled.

EPSS

Процентиль: 1%

0.0001

Низкий