|
231
|
5.5
-
|
MEDIUM
Local
|
A use-after-free vulnerability was found in the cxgb4 driver in the Linux kernel. The bug occurs when the cxgb4 device is detaching due to a possible rearming of the flower_stats_timer from the work …
|
CWE-416
Use After Free
|
CVE-2023-4133
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 17:34
2023-08-4
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
232
|
5.5
-
|
MEDIUM
Local
|
A use-after-free vulnerability was found in the siano smsusb module in the Linux kernel. The bug occurs during device initialization when the siano device is plugged in. This flaw allows a local user…
|
CWE-416
Use After Free
|
CVE-2023-4132
|
cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 17:34
2023-08-4
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
233
|
5.5
-
|
MEDIUM
Local
|
A buffer overflow flaw was found in base/gdevdevn.c:1973 in devn_pcx_write_rle() in ghostscript. This issue may allow a local attacker to cause a denial of service via outputting a crafted PDF file f…
|
CWE-120
Classic Buffer Overflow
|
CVE-2023-38559
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 17:13
2023-08-2
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
234
|
4.6
-
|
MEDIUM
Physics
|
A flaw was found in the USB Host Controller Driver framework in the Linux kernel. The usb_giveback_urb function has a logic loophole in its implementation. Due to the inappropriate judgment condition…
|
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
|
CVE-2023-4010
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 17:34
2023-08-1
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
235
|
7.8
-
|
HIGH
Local
|
A use-after-free flaw was found in the Linux kernel's netfilter in the way a user triggers the nft_pipapo_remove function with the element, without a NFT_SET_EXT_KEY_END. This issue could allow a loc…
|
CWE-416
Use After Free
|
CVE-2023-4004
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 17:34
2023-08-1
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
236
|
4.4
-
|
MEDIUM
Local
|
A flaw was found in the Linux kernel’s IP framework for transforming packets (XFRM subsystem). This issue may allow a malicious user with CAP_NET_ADMIN privileges to cause a 4 byte out-of-bounds read…
|
CWE-125
Out-of-bounds Read
|
CVE-2023-3773
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 17:18
2023-07-26
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
237
|
4.4
-
|
MEDIUM
Local
|
A flaw was found in the Linux kernel’s IP framework for transforming packets (XFRM subsystem). This issue may allow a malicious user with CAP_NET_ADMIN privileges to directly dereference a NULL point…
|
CWE-476
NULL Pointer Dereference
|
CVE-2023-3772
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 17:18
2023-07-26
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
238
|
7.5
-
|
HIGH
Network
|
A flaw was found in Keylime. Due to their blocking nature, the Keylime registrar is subject to a remote denial of service against its SSL connections. This flaw allows an attacker to exhaust all avai…
|
CWE-834
Excessive Iteration
|
CVE-2023-38200
|
cpe:2.3:o:redhat:enterprise_linux:9.0:*
|
|
|
|
|
2024-11-21 17:13
2023-07-25
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
239
|
7.8
-
|
HIGH
Local
|
An out-of-bounds memory access flaw was found in the Linux kernel’s TUN/TAP device driver functionality in how a user generates a malicious (too big) networking packet when napi frags is enabled. Thi…
|
CWE-787 CWE-416
Out-of-bounds Write Use After Free
|
CVE-2023-3812
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 17:18
2023-07-25
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
240
|
5.3
-
|
MEDIUM
Network
|
A flaw was found in libvirt. The virStoragePoolObjListSearch function does not return a locked pool as expected, resulting in a race condition and denial of service when attempting to lock the same o…
|
CWE-667
Improper Locking
|
CVE-2023-3750
|
cpe:2.3:o:redhat:enterprise_linux:9.0:*
|
|
|
|
|
2024-11-21 17:17
2023-07-25
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|