VulDB Recent Entries

A vulnerability was found in Linux Kernel up to 6.1.10 and classified as critical. Affected by this issue is the function vcs_read of the file drivers/tty/vt/vc_screen.c. The manipulation leads to use after free. This vulnerability is handled as CVE-2023-52973. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Linux Kernel up to 5.4.230/5.10.165/5.15.90/6.1.8 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component amd. The manipulation leads to integer overflow. This vulnerability is known as CVE-2022-49748. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, was found in Linux Kernel up to 5.10.165/5.15.90/6.1.8. Affected is the function i2c_dw_scl_lcnt. The manipulation leads to privilege escalation. This vulnerability is traded as CVE-2022-49749. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in Linux Kernel up to 6.1.6. This issue affects the function bitmap_ip_create of the component netfilter. The manipulation leads to insufficiently random values. The identification of this vulnerability is CVE-2023-53032. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in Linux Kernel up to 6.1.8. This vulnerability affects the function page_pool_release_retry of the component fec. The manipulation leads to improper update of reference count. This vulnerability was named CVE-2023-52998. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in Linux Kernel up to 5.15.90/6.1.8. This affects the function vfs_write of the component kprobe. The manipulation leads to denial of service. This vulnerability is uniquely identified as CVE-2023-52995. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.10. It has been rated as problematic. Affected by this issue is the function panic_on_warn of the component isotp. The manipulation leads to state issue. This vulnerability is handled as CVE-2023-52941. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.15.90/6.1.8. It has been declared as critical. Affected by this vulnerability is the function safety_feat_cfg. The manipulation leads to null pointer dereference. This vulnerability is known as CVE-2023-53011. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.15.92/6.1.10 and classified as critical. This issue affects some unknown processing of the component kprobe. The manipulation leads to denial of service. The identification of this vulnerability is CVE-2023-52978. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.10. It has been classified as critical. Affected is the function collapse_and_free_pmd of the component khugepaged. The manipulation leads to use after free. This vulnerability is traded as CVE-2023-52935. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Linux Kernel up to 4.19.271/5.4.230/5.10.165/5.15.90/6.1.8 and classified as critical. This vulnerability affects the function net_assign_generic. The manipulation leads to use after free. This vulnerability was named CVE-2023-52999. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Linux Kernel up to 6.1.10. This affects the function iscsi_sw_tcp_session_create. The manipulation leads to use after free. This vulnerability is uniquely identified as CVE-2023-52974. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in Linux Kernel up to 6.1.10. Affected by this issue is the function wait_on_bit of the component fscache. The manipulation leads to state issue. This vulnerability is handled as CVE-2023-52982. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in Linux Kernel up to 6.1.10. Affected by this vulnerability is the function mem_cgroup_track_foreign_dirty_slowpath of the component LRU Page Handler. The manipulation leads to null pointer dereference. This vulnerability is known as CVE-2023-52939. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in Linux Kernel up to 6.1.10. Affected is the function vm_xa of the component i915. The manipulation leads to use after free. This vulnerability is traded as CVE-2023-52931. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.10.167/5.15.92/6.1.10. It has been rated as problematic. This issue affects the function bit_17 of the component i915. The manipulation leads to double free. The identification of this vulnerability is CVE-2023-52930. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.15.92/6.1.10. It has been declared as problematic. This vulnerability affects the function check_kfunc_call of the file kernel/bpf/verifier.c. The manipulation leads to privilege escalation. This vulnerability was named CVE-2023-52928. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.15.90/6.1.8. It has been classified as critical. This affects the function platform_get_resource of the component uniphier-glue. The manipulation leads to null pointer dereference. This vulnerability is uniquely identified as CVE-2022-49758. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.15.90/6.1.7 and classified as problematic. Affected by this issue is the function put_cpu. The manipulation of the argument perpcu leads to allocation of resources. This vulnerability is handled as CVE-2023-53029. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Linux Kernel up to 4.19.271/5.4.230/5.10.165/5.15.90/6.1.8. Affected is the function bpf_ringbuf_output. The manipulation leads to type confusion. This vulnerability is traded as CVE-2023-53024. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.