📚 USN-6724-1: Linux kernel vulnerabilities
Nachrichtenbereich: 🐧 Unix Server
🔗 Quelle: ubuntu.com
Pratyush Yadav discovered that the Xen network backend implementation in the Linux kernel did not properly handle zero length data request, leading to a null pointer dereference vulnerability. An attacker in a guest VM could possibly use this to cause a denial of service (host domain crash). (CVE-2023-46838) It was discovered that the Habana's AI Processors driver in the Linux kernel did not properly initialize certain data structures before passing them to user space. A local attacker could use this to expose sensitive information (kernel memory). (CVE-2023-50431) It was discovered that the device mapper driver in the Linux kernel did not properly validate target size during certain memory allocations. A local attacker could use this to cause a denial of service (system crash). (CVE-2023-52429, CVE-2024-23851) It was discovered that the CIFS network file system implementation in the Linux kernel did not properly validate certain SMB messages, leading to an out-of-bounds read vulnerability. An attacker could use this to cause a denial of service (system crash) or possibly expose sensitive information. (CVE-2023-6610) Yang Chaoming discovered that the KSMBD implementation in the Linux kernel did not properly validate request buffer sizes, leading to an out-of-bounds read vulnerability. An attacker could use this to cause a denial of service (system crash) or possibly expose sensitive information. (CVE-2024-22705) Chenyuan Yang discovered that the btrfs file system in the Linux kernel did not properly handle read operations on newly created subvolumes in certain conditions. A local attacker could use this to cause a denial of service (system crash). (CVE-2024-23850) Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Android drivers; - Userspace I/O drivers; - F2FS file system; - SMB network file system; - Networking core; (CVE-2023-52434, CVE-2023-52436, CVE-2023-52435, CVE-2023-52439, CVE-2023-52438) ...
📰 USN-6898-3: Linux kernel kernel vulnerabilities
📈 21.38 Punkte
🐧 Unix Server
📰 USN-2848-1: Linux kernel vulnerabilities
📈 17.16 Punkte
🐧 Unix Server
📰 USN-2890-1: Linux kernel vulnerabilities
📈 17.16 Punkte
🐧 Unix Server
📰 USN-3170-1: Linux kernel vulnerabilities
📈 17.16 Punkte
🐧 Unix Server
📰 USN-3542-1: Linux kernel vulnerabilities
📈 17.16 Punkte
🐧 Unix Server
📰 USN-2971-1: Linux kernel vulnerabilities
📈 17.16 Punkte
🐧 Unix Server
📰 USN-2889-1: Linux kernel vulnerabilities
📈 17.16 Punkte
🐧 Unix Server
📰 USN-4114-1: Linux kernel vulnerabilities
📈 17.16 Punkte
🐧 Unix Server
📰 USN-3097-2: Linux kernel (OMAP4) vulnerabilities
📈 17.16 Punkte
🐧 Unix Server
📰 USN-4689-2: Linux kernel vulnerabilities
📈 17.16 Punkte
🐧 Unix Server
📰 USN-4414-1: Linux kernel vulnerabilities
📈 17.16 Punkte
🐧 Unix Server
📰 USN-3344-1: Linux kernel vulnerabilities
📈 17.16 Punkte
🐧 Unix Server
📰 USN-6446-1: Linux kernel vulnerabilities
📈 17.16 Punkte
🐧 Unix Server
📰 USN-5978-1: Linux kernel (OEM) vulnerabilities
📈 17.16 Punkte
🐧 Unix Server
📰 USN-5660-1: Linux kernel (GCP) vulnerabilities
📈 17.16 Punkte
🐧 Unix Server
📰 USN-6607-1: Linux kernel (Azure) vulnerabilities
📈 17.16 Punkte
🐧 Unix Server
📰 USN-6503-1: Linux kernel vulnerabilities
📈 17.16 Punkte
🐧 Unix Server
📰 USN-5859-1: Linux kernel (OEM) vulnerabilities
📈 17.16 Punkte
🐧 Unix Server
📰 USN-5756-2: Linux kernel (GKE) vulnerabilities
📈 17.16 Punkte
🐧 Unix Server
📰 USN-6766-3: Linux kernel (AWS) vulnerabilities
📈 17.16 Punkte
🐧 Unix Server
📰 USN-6681-2: Linux kernel vulnerabilities
📈 17.16 Punkte
🐧 Unix Server
📰 USN-6896-1: Linux kernel vulnerabilities
📈 17.16 Punkte
🐧 Unix Server
📰 USN-6777-3: Linux kernel (GCP) vulnerabilities
📈 17.16 Punkte
🐧 Unix Server