Количество 122
Количество 122
CVE-2023-4623
A use-after-free vulnerability in the Linux kernel's net/sched: sch_hfsc (HFSC qdisc traffic control) component can be exploited to achieve local privilege escalation. If a class with a link-sharing curve (i.e. with the HFSC_FSC flag set) has a parent without a link-sharing curve, then init_vf() will call vttree_insert() on the parent, but vttree_remove() will be skipped in update_vf(). This leaves a dangling pointer that can cause a use-after-free. We recommend upgrading past commit b3d26c5702c7d6c45456326e56d2ccf3f103e60f.
CVE-2023-4623
A use-after-free vulnerability in the Linux kernel's net/sched: sch_hfsc (HFSC qdisc traffic control) component can be exploited to achieve local privilege escalation. If a class with a link-sharing curve (i.e. with the HFSC_FSC flag set) has a parent without a link-sharing curve, then init_vf() will call vttree_insert() on the parent, but vttree_remove() will be skipped in update_vf(). This leaves a dangling pointer that can cause a use-after-free. We recommend upgrading past commit b3d26c5702c7d6c45456326e56d2ccf3f103e60f.
CVE-2023-4623
A use-after-free vulnerability in the Linux kernel's net/sched: sch_hfsc (HFSC qdisc traffic control) component can be exploited to achieve local privilege escalation. If a class with a link-sharing curve (i.e. with the HFSC_FSC flag set) has a parent without a link-sharing curve, then init_vf() will call vttree_insert() on the parent, but vttree_remove() will be skipped in update_vf(). This leaves a dangling pointer that can cause a use-after-free. We recommend upgrading past commit b3d26c5702c7d6c45456326e56d2ccf3f103e60f.
CVE-2023-4623
A use-after-free vulnerability in the Linux kernel's net/sched: sch_hf ...
SUSE-SU-2024:1097-1
Security update for the Linux Kernel RT (Live Patch 0 for SLE 15 SP5)
SUSE-SU-2024:1039-1
Security update for the Linux Kernel (Live Patch 0 for SLE 15 SP5)
ELSA-2024-12159
ELSA-2024-12159: Unbreakable Enterprise kernel security update (IMPORTANT)
SUSE-SU-2023:4351-1
Security update for the Linux Kernel
SUSE-SU-2023:4375-1
Security update for the Linux Kernel
SUSE-SU-2023:4345-1
Security update for the Linux Kernel
GHSA-mx4p-25w4-ff2f
A vulnerability was found in compare_netdev_and_ip in drivers/infiniband/core/cma.c in RDMA in the Linux Kernel. The improper cleanup results in out-of-boundary read, where a local user can utilize this problem to crash the system or escalation of privilege.
BDU:2023-02526
Уязвимость драйвера Infiniband ядра операционной системы Linux, позволяющая нарушителю вызвать отказ в обслуживании или повысить свои привилегии
SUSE-SU-2023:4328-1
Security update for the Linux Kernel (Live Patch 5 for SLE 15 SP5)
SUSE-SU-2023:4321-1
Security update for the Linux Kernel (Live Patch 42 for SLE 15 SP1)
SUSE-SU-2023:4313-1
Security update for the Linux Kernel (Live Patch 45 for SLE 12 SP5)
SUSE-SU-2023:4300-1
Security update for the Linux Kernel (Live Patch 36 for SLE 15 SP1)
SUSE-SU-2023:4278-1
Security update for the Linux Kernel (Live Patch 41 for SLE 15 SP1)
SUSE-SU-2023:4244-1
Security update for the Linux Kernel (Live Patch 39 for SLE 15 SP2)
SUSE-SU-2023:4208-1
Security update for the Linux Kernel (Live Patch 44 for SLE 12 SP5)
SUSE-SU-2023:4204-1
Security update for the Linux Kernel (Live Patch 36 for SLE 12 SP5)
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2023-4623 A use-after-free vulnerability in the Linux kernel's net/sched: sch_hfsc (HFSC qdisc traffic control) component can be exploited to achieve local privilege escalation. If a class with a link-sharing curve (i.e. with the HFSC_FSC flag set) has a parent without a link-sharing curve, then init_vf() will call vttree_insert() on the parent, but vttree_remove() will be skipped in update_vf(). This leaves a dangling pointer that can cause a use-after-free. We recommend upgrading past commit b3d26c5702c7d6c45456326e56d2ccf3f103e60f. | CVSS3: 7.8 | 0% Низкий | почти 2 года назад |
 | CVE-2023-4623 A use-after-free vulnerability in the Linux kernel's net/sched: sch_hfsc (HFSC qdisc traffic control) component can be exploited to achieve local privilege escalation. If a class with a link-sharing curve (i.e. with the HFSC_FSC flag set) has a parent without a link-sharing curve, then init_vf() will call vttree_insert() on the parent, but vttree_remove() will be skipped in update_vf(). This leaves a dangling pointer that can cause a use-after-free. We recommend upgrading past commit b3d26c5702c7d6c45456326e56d2ccf3f103e60f. | CVSS3: 7.8 | 0% Низкий | почти 2 года назад |
 | CVE-2023-4623 A use-after-free vulnerability in the Linux kernel's net/sched: sch_hfsc (HFSC qdisc traffic control) component can be exploited to achieve local privilege escalation. If a class with a link-sharing curve (i.e. with the HFSC_FSC flag set) has a parent without a link-sharing curve, then init_vf() will call vttree_insert() on the parent, but vttree_remove() will be skipped in update_vf(). This leaves a dangling pointer that can cause a use-after-free. We recommend upgrading past commit b3d26c5702c7d6c45456326e56d2ccf3f103e60f. | CVSS3: 7.8 | 0% Низкий | почти 2 года назад |
| CVE-2023-4623 A use-after-free vulnerability in the Linux kernel's net/sched: sch_hf ... | CVSS3: 7.8 | 0% Низкий | почти 2 года назад |
 | SUSE-SU-2024:1097-1 Security update for the Linux Kernel RT (Live Patch 0 for SLE 15 SP5) | около 1 года назад | ||
| SUSE-SU-2024:1039-1 Security update for the Linux Kernel (Live Patch 0 for SLE 15 SP5) | около 1 года назад | ||
| ELSA-2024-12159 ELSA-2024-12159: Unbreakable Enterprise kernel security update (IMPORTANT) | больше 1 года назад | ||
| SUSE-SU-2023:4351-1 Security update for the Linux Kernel | больше 1 года назад | ||
| SUSE-SU-2023:4375-1 Security update for the Linux Kernel | больше 1 года назад | ||
| SUSE-SU-2023:4345-1 Security update for the Linux Kernel | больше 1 года назад | ||
| GHSA-mx4p-25w4-ff2f A vulnerability was found in compare_netdev_and_ip in drivers/infiniband/core/cma.c in RDMA in the Linux Kernel. The improper cleanup results in out-of-boundary read, where a local user can utilize this problem to crash the system or escalation of privilege. | CVSS3: 7.8 | 0% Низкий | около 2 лет назад |
 | BDU:2023-02526 Уязвимость драйвера Infiniband ядра операционной системы Linux, позволяющая нарушителю вызвать отказ в обслуживании или повысить свои привилегии | CVSS3: 7.8 | 0% Низкий | больше 2 лет назад |
| SUSE-SU-2023:4328-1 Security update for the Linux Kernel (Live Patch 5 for SLE 15 SP5) | 0% Низкий | больше 1 года назад | |
| SUSE-SU-2023:4321-1 Security update for the Linux Kernel (Live Patch 42 for SLE 15 SP1) | 0% Низкий | больше 1 года назад | |
| SUSE-SU-2023:4313-1 Security update for the Linux Kernel (Live Patch 45 for SLE 12 SP5) | 0% Низкий | больше 1 года назад | |
| SUSE-SU-2023:4300-1 Security update for the Linux Kernel (Live Patch 36 for SLE 15 SP1) | 0% Низкий | больше 1 года назад | |
| SUSE-SU-2023:4278-1 Security update for the Linux Kernel (Live Patch 41 for SLE 15 SP1) | 0% Низкий | больше 1 года назад | |
| SUSE-SU-2023:4244-1 Security update for the Linux Kernel (Live Patch 39 for SLE 15 SP2) | 0% Низкий | больше 1 года назад | |
| SUSE-SU-2023:4208-1 Security update for the Linux Kernel (Live Patch 44 for SLE 12 SP5) | 0% Низкий | больше 1 года назад | |
| SUSE-SU-2023:4204-1 Security update for the Linux Kernel (Live Patch 36 for SLE 12 SP5) | 0% Низкий | больше 1 года назад |
Уязвимостей на страницу