1841
|
5.5 |
MEDIUM
Local
|
linux redhat debian
|
linux_kernel enterprise_linux debian_linux
|
A flaw was found in the IPv4 Resource Reservation Protocol (RSVP) classifier in the Linux kernel. The xprt pointer may go beyond the linear part of the skb, leading to an out-of-bounds read in the `r…
|
CWE-125
Out-of-bounds Read
|
CVE-2023-42755
|
2024-09-14 04:15 |
2023-10-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1842
|
5.5 |
MEDIUM
Local
|
linux redhat fedoraproject
|
linux_kernel enterprise_linux fedora
|
A NULL pointer dereference flaw was found in the Linux kernel ipv4 stack. The socket buffer (skb) was assumed to be associated with a device before calling __ip_options_compile, which is not always t…
|
CWE-476
NULL Pointer Dereference
|
CVE-2023-42754
|
2024-09-14 04:15 |
2023-10-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1843
|
7.8 |
HIGH
Local
|
linux redhat debian
|
linux_kernel enterprise_linux debian_linux
|
An array indexing vulnerability was found in the netfilter subsystem of the Linux kernel. A missing macro could lead to a miscalculation of the `h->nets` array offset, providing attackers with the pr…
|
CWE-787
Out-of-bounds Write
|
CVE-2023-42753
|
2024-09-14 04:15 |
2023-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1844
|
6.5 |
MEDIUM
Network
|
qemu redhat fedoraproject
|
qemu enterprise_linux fedora
|
A flaw was found in the QEMU built-in VNC server while processing ClientCutText messages. A wrong exit condition may lead to an infinite loop when inflating an attacker controlled zlib buffer in the …
|
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
|
CVE-2023-3255
|
2024-09-14 04:15 |
2023-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1845
|
5.5 |
MEDIUM
Local
|
linux redhat fedoraproject debian
|
linux_kernel enterprise_linux enterprise_linux_for_real_time enterprise_linux_for_real_time_for_nfv fedora debian_linux
|
A use-after-free vulnerability was found in the siano smsusb module in the Linux kernel. The bug occurs during device initialization when the siano device is plugged in. This flaw allows a local user…
|
CWE-416
Use After Free
|
CVE-2023-4132
|
2024-09-14 04:15 |
2023-08-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1846
|
7.8 |
HIGH
Local
|
linux fedoraproject redhat netapp debian
|
linux_kernel fedora enterprise_linux h300s h500s h700s h410s debian_linux
|
A use-after-free flaw was found in the Linux kernel's netfilter in the way a user triggers the nft_pipapo_remove function with the element, without a NFT_SET_EXT_KEY_END. This issue could allow a loc…
|
CWE-416
Use After Free
|
CVE-2023-4004
|
2024-09-14 04:15 |
2023-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1847
|
4.4 |
MEDIUM
Local
|
redhat fedoraproject linux debian
|
enterprise_linux enterprise_linux_for_real_time enterprise_linux_for_real_time_for_nfv fedora linux_kernel debian_linux
|
A flaw was found in the Linux kernel’s IP framework for transforming packets (XFRM subsystem). This issue may allow a malicious user with CAP_NET_ADMIN privileges to directly dereference a NULL point…
|
CWE-476
NULL Pointer Dereference
|
CVE-2023-3772
|
2024-09-14 04:15 |
2023-07-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1848
|
5.3 |
MEDIUM
Network
|
redhat
|
libvirt enterprise_linux
|
A flaw was found in libvirt. The virStoragePoolObjListSearch function does not return a locked pool as expected, resulting in a race condition and denial of service when attempting to lock the same o…
|
CWE-667
Improper Locking
|
CVE-2023-3750
|
2024-09-14 04:15 |
2023-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1849
|
7.1 |
HIGH
Local
|
linux redhat canonical
|
linux_kernel enterprise_linux ubuntu_linux
|
A use-after-free flaw was found in vcs_read in drivers/tty/vt/vc_screen.c in vc_screen in the Linux Kernel. This issue may allow an attacker with local user access to cause a system crash or leak int…
|
CWE-416
Use After Free
|
CVE-2023-3567
|
2024-09-14 04:15 |
2023-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1850
|
6.5 |
MEDIUM
Local
|
qemu redhat
|
qemu enterprise_linux
|
A DMA reentrancy issue leading to a use-after-free error was found in the e1000e NIC emulation code in QEMU. This issue could allow a privileged guest user to crash the QEMU process on the host, resu…
|
CWE-416
Use After Free
|
CVE-2023-3019
|
2024-09-14 04:15 |
2023-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|