Количество 15
Количество 15
BDU:2023-03727
Уязвимость функции io_poll_update() в модуле io_uring/io_uring.c ядра операционной системы Linux, позволяющая нарушителю повысить свои привилегии
CVE-2023-3389
A use-after-free vulnerability in the Linux Kernel io_uring subsystem can be exploited to achieve local privilege escalation. Racing a io_uring cancel poll request with a linked timeout can cause a UAF in a hrtimer. We recommend upgrading past commit ef7dfac51d8ed961b742218f526bd589f3900a59 (4716c73b188566865bdd79c3a6709696a224ac04 for 5.10 stable and 0e388fce7aec40992eadee654193cad345d62663 for 5.15 stable).
CVE-2023-3389
A use-after-free vulnerability in the Linux Kernel io_uring subsystem can be exploited to achieve local privilege escalation. Racing a io_uring cancel poll request with a linked timeout can cause a UAF in a hrtimer. We recommend upgrading past commit ef7dfac51d8ed961b742218f526bd589f3900a59 (4716c73b188566865bdd79c3a6709696a224ac04 for 5.10 stable and 0e388fce7aec40992eadee654193cad345d62663 for 5.15 stable).
CVE-2023-3389
A use-after-free vulnerability in the Linux Kernel io_uring subsystem can be exploited to achieve local privilege escalation. Racing a io_uring cancel poll request with a linked timeout can cause a UAF in a hrtimer. We recommend upgrading past commit ef7dfac51d8ed961b742218f526bd589f3900a59 (4716c73b188566865bdd79c3a6709696a224ac04 for 5.10 stable and 0e388fce7aec40992eadee654193cad345d62663 for 5.15 stable).
CVE-2023-3389
CVE-2023-3389
A use-after-free vulnerability in the Linux Kernel io_uring subsystem ...
GHSA-9787-f568-7rr2
A use-after-free vulnerability in the Linux Kernel io_uring subsystem can be exploited to achieve local privilege escalation. Racing a io_uring cancel poll request with a linked timeout can cause a UAF in a hrtimer. We recommend upgrading past commit 4716c73b188566865bdd79c3a6709696a224ac04 for 5.10 stable and 0e388fce7aec40992eadee654193cad345d62663 for 5.15 stable.
ROS-20230904-02
Множественные уязвимости ядра ОС
ROS-20230904-01
Множественные уязвимости ядра ОС
SUSE-SU-2023:2803-1
Security update for the Linux Kernel
SUSE-SU-2023:2892-1
Security update for the Linux Kernel
SUSE-SU-2023:2831-1
Security update for the Linux Kernel
SUSE-SU-2023:2820-1
Security update for the Linux Kernel
SUSE-SU-2023:3302-1
Security update for the Linux Kernel
SUSE-SU-2023:2871-1
Security update for the Linux Kernel
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | BDU:2023-03727 Уязвимость функции io_poll_update() в модуле io_uring/io_uring.c ядра операционной системы Linux, позволяющая нарушителю повысить свои привилегии | CVSS3: 7.8 | 0% Низкий | почти 3 года назад |
 | CVE-2023-3389 A use-after-free vulnerability in the Linux Kernel io_uring subsystem can be exploited to achieve local privilege escalation. Racing a io_uring cancel poll request with a linked timeout can cause a UAF in a hrtimer. We recommend upgrading past commit ef7dfac51d8ed961b742218f526bd589f3900a59 (4716c73b188566865bdd79c3a6709696a224ac04 for 5.10 stable and 0e388fce7aec40992eadee654193cad345d62663 for 5.15 stable). | CVSS3: 7.8 | 0% Низкий | почти 2 года назад |
 | CVE-2023-3389 A use-after-free vulnerability in the Linux Kernel io_uring subsystem can be exploited to achieve local privilege escalation. Racing a io_uring cancel poll request with a linked timeout can cause a UAF in a hrtimer. We recommend upgrading past commit ef7dfac51d8ed961b742218f526bd589f3900a59 (4716c73b188566865bdd79c3a6709696a224ac04 for 5.10 stable and 0e388fce7aec40992eadee654193cad345d62663 for 5.15 stable). | CVSS3: 5.5 | 0% Низкий | около 2 лет назад |
 | CVE-2023-3389 A use-after-free vulnerability in the Linux Kernel io_uring subsystem can be exploited to achieve local privilege escalation. Racing a io_uring cancel poll request with a linked timeout can cause a UAF in a hrtimer. We recommend upgrading past commit ef7dfac51d8ed961b742218f526bd589f3900a59 (4716c73b188566865bdd79c3a6709696a224ac04 for 5.10 stable and 0e388fce7aec40992eadee654193cad345d62663 for 5.15 stable). | CVSS3: 7.8 | 0% Низкий | почти 2 года назад |
 | CVSS3: 7.8 | 0% Низкий | почти 2 года назад | |
| CVE-2023-3389 A use-after-free vulnerability in the Linux Kernel io_uring subsystem ... | CVSS3: 7.8 | 0% Низкий | почти 2 года назад |
| GHSA-9787-f568-7rr2 A use-after-free vulnerability in the Linux Kernel io_uring subsystem can be exploited to achieve local privilege escalation. Racing a io_uring cancel poll request with a linked timeout can cause a UAF in a hrtimer. We recommend upgrading past commit 4716c73b188566865bdd79c3a6709696a224ac04 for 5.10 stable and 0e388fce7aec40992eadee654193cad345d62663 for 5.15 stable. | CVSS3: 5.5 | 0% Низкий | почти 2 года назад |
 | ROS-20230904-02 Множественные уязвимости ядра ОС | CVSS3: 9.3 | почти 2 года назад | |
| ROS-20230904-01 Множественные уязвимости ядра ОС | CVSS3: 9.3 | почти 2 года назад | |
 | SUSE-SU-2023:2803-1 Security update for the Linux Kernel | почти 2 года назад | ||
| SUSE-SU-2023:2892-1 Security update for the Linux Kernel | почти 2 года назад | ||
| SUSE-SU-2023:2831-1 Security update for the Linux Kernel | почти 2 года назад | ||
| SUSE-SU-2023:2820-1 Security update for the Linux Kernel | почти 2 года назад | ||
| SUSE-SU-2023:3302-1 Security update for the Linux Kernel | почти 2 года назад | ||
| SUSE-SU-2023:2871-1 Security update for the Linux Kernel | почти 2 года назад |
Уязвимостей на страницу