📚 USN-6548-3: Linux kernel (Oracle) vulnerabilities
Nachrichtenbereich: 🐧 Unix Server
🔗 Quelle: ubuntu.com
It was discovered that Spectre-BHB mitigations were missing for Ampere processors. A local attacker could potentially use this to expose sensitive information. (CVE-2023-3006) It was discovered that the USB subsystem in the Linux kernel contained a race condition while handling device descriptors in certain situations, leading to a out-of-bounds read vulnerability. A local attacker could possibly use this to cause a denial of service (system crash). (CVE-2023-37453) Lucas Leong discovered that the netfilter subsystem in the Linux kernel did not properly validate some attributes passed from userspace. A local attacker could use this to cause a denial of service (system crash) or possibly expose sensitive information (kernel memory). (CVE-2023-39189) Sunjoo Park discovered that the netfilter subsystem in the Linux kernel did not properly validate u32 packets content, leading to an out-of-bounds read vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly expose sensitive information. (CVE-2023-39192) Lucas Leong discovered that the netfilter subsystem in the Linux kernel did not properly validate SCTP data, leading to an out-of-bounds read vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly expose sensitive information. (CVE-2023-39193) Lucas Leong discovered that the Netlink Transformation (XFRM) subsystem in the Linux kernel did not properly handle state filters, leading to an out- of-bounds read vulnerability. A privileged local attacker could use this to cause a denial of service (system crash) or possibly expose sensitive information. (CVE-2023-39194) Kyle Zeng discovered that the IPv4 implementation in the Linux kernel did not properly handle socket buffers (skb) when performing IP routing in certain circumstances, leading to a null pointer dereference vulnerability. A privileged attacker could use this to cause a denial of service (system crash). (CVE-2023-42754) Alon Zahavi discovered that the NVMe-oF/TCP subsystem in the Linux kernel did not properly handle queue initialization failures in certain situations, leading to a use-after-free vulnerability. A remote attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2023-5178) Budimir Markovic discovered that the perf subsystem in the Linux kernel did not properly handle event groups, leading to an out-of-bounds write vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2023-5717) It was discovered that the TLS subsystem in the Linux kernel did not properly perform cryptographic operations in some situations, leading to a null pointer dereference vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2023-6176) ...
📰 USN-6502-2: Linux kernel (Oracle) vulnerabilities
📈 21.67 Punkte
🐧 Unix Server
📰 USN-6446-3: Linux kernel (Oracle) vulnerabilities
📈 21.67 Punkte
🐧 Unix Server
📰 USN-6972-4: Linux kernel (Oracle) vulnerabilities
📈 21.67 Punkte
🐧 Unix Server
📰 USN-6974-2: Linux kernel (Oracle) vulnerabilities
📈 21.67 Punkte
🐧 Unix Server
📰 USN-6974-2: Linux kernel (Oracle) vulnerabilities
📈 21.67 Punkte
🐧 Unix Server
📰 USN-6950-3: Linux kernel (Oracle) vulnerabilities
📈 21.67 Punkte
🐧 Unix Server
📰 USN-6957-1: Linux kernel (Oracle) vulnerabilities
📈 21.67 Punkte
🐧 Unix Server
📰 USN-6953-1: Linux kernel (Oracle) vulnerabilities
📈 21.67 Punkte
🐧 Unix Server
📰 USN-6878-1: Linux kernel (Oracle) vulnerabilities
📈 21.67 Punkte
🐧 Unix Server
📰 USN-6819-4: Linux kernel (Oracle) vulnerabilities
📈 21.67 Punkte
🐧 Unix Server
📰 USN-6609-3: Linux kernel (Oracle) vulnerabilities
📈 21.67 Punkte
🐧 Unix Server
📰 USN-6898-3: Linux kernel kernel vulnerabilities
📈 21.37 Punkte
🐧 Unix Server
📰 USN-4591-1: Linux kernel vulnerabilities
📈 17.15 Punkte
🐧 Unix Server
📰 USN-4369-1: Linux kernel vulnerabilities
📈 17.15 Punkte
🐧 Unix Server
📰 USN-5505-1: Linux kernel vulnerabilities
📈 17.15 Punkte
🐧 Unix Server
📰 USN-4907-1: Linux kernel vulnerabilities
📈 17.15 Punkte
🐧 Unix Server
📰 USN-5804-2: Linux kernel vulnerabilities
📈 17.15 Punkte
🐧 Unix Server
📰 USN-5727-2: Linux kernel (GCP) vulnerabilities
📈 17.15 Punkte
🐧 Unix Server
📰 USN-3072-1: Linux kernel vulnerabilities
📈 17.15 Punkte
🐧 Unix Server
📰 USN-3006-1: Linux kernel vulnerabilities
📈 17.15 Punkte
🐧 Unix Server
📰 USN-6032-1: Linux kernel (OEM) vulnerabilities
📈 17.15 Punkte
🐧 Unix Server
📰 USN-5941-1: Linux kernel (KVM) vulnerabilities
📈 17.15 Punkte
🐧 Unix Server
📰 USN-3161-1: Linux kernel vulnerabilities
📈 17.15 Punkte
🐧 Unix Server
📰 USN-6462-2: Linux kernel (IoT) vulnerabilities
📈 17.15 Punkte
🐧 Unix Server
📰 USN-2930-1: Linux kernel vulnerabilities
📈 17.15 Punkte
🐧 Unix Server
📰 USN-6686-1: Linux kernel vulnerabilities
📈 17.15 Punkte
🐧 Unix Server
📰 USN-6607-1: Linux kernel (Azure) vulnerabilities
📈 17.15 Punkte
🐧 Unix Server