blob: 5a3d43090c84684c53da628cd8fbd95a4fab82f7 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
|
Package : linux
CVE ID : CVE-2023-2124 CVE-2023-2156 CVE-2023-2269 CVE-2023-3090 CVE-2023-3141 CVE-2023-3212 CVE-2023-3268 CVE-2023-3269 CVE-2023-3390 CVE-2023-31084 CVE-2023-32250 CVE-2023-32254 CVE-2023-34256 CVE-2023-35788
Several vulnerabilities have been discovered in the Linux kernel that
may lead to a privilege escalation, denial of service or information
leaks.
CVE-2023-2124
Kyle Zeng, Akshay Ajayan and Fish Wang that missing metadata
validation may result in denial of service, or potentially privilege
escalation, if a corrupted XFS disk image is mounted.
CVE-2023-2156
Max VA discovered that the IPv6 RPL protocol implementation in the
Linux kernel did not properly handled user-supplied data, resulting
in an assertion failure. An unauthenticated remote attacker can take
advantage of this flaw for denial of service.
CVE-2023-2269
Zheng Zhang reported that improper handling of locking in the device-
mapper implementation may result in denial of service.
CVE-2023-3090
It was discovered that missing initialization in the ipvlan
networking, leading to an out-of-bounds write vulnerability, may
result in denial of service, or execution of arbitrary code.
CVE-2023-3141
CVE-2023-3212
CVE-2023-3268
CVE-2023-3269
Ruihan Li discovered that incorrect lock handling for accessing and
updating virtual memory areas (VMAs) may result in privilege
escalation.
CVE-2023-3390
CVE-2023-31084
CVE-2023-32250 / CVE-2023-32254
Quentin Minster discovered two race conditions in KSMBD, a kernel server which
implements the SMB3 protocol, which could result in denial of service
or potentially the execution of arbitrary code.
CVE-2023-34256
CVE-2023-35788
|