Linux Linux Kernel
42 CVEs affecting Linux Linux Kernel. Latest disclosed: 2024-02-05. Critical: 1, High: 19.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2023-2163 | Critical | 10.0 | 2023-09-20 | Incorrect verifier pruning in BPF in Linux Kernel >=5.4 leads to unsafe code paths being incorrectly marked as safe, resulting in arbitrary read/write in kerne… |
CVE-2022-42896 | High | 8.0 | 2022-11-23 | There are use-after-free vulnerabilities in the Linux kernel's net/bluetooth/l2cap_core.c's l2cap_connect and l2cap_le_connect_req functions which may allow co… |
CVE-2023-0266 | High | 7.9 | 2023-01-30 | A use after free vulnerability exists in the ALSA PCM package in the Linux Kernel. SNDRV_CTL_IOCTL_ELEM_{READ|WRITE}32 is missing locks that can be used in a u… |
CVE-2023-35001 | High | 7.8 | 2023-07-05 | Linux Kernel nftables Out-Of-Bounds Read/Write Vulnerability; nft_byteorder poorly handled vm register contents when CAP_NET_ADMIN is in any user or network na… |
CVE-2023-31248 | High | 7.8 | 2023-07-05 | Linux Kernel nftables Use-After-Free Local Privilege Escalation Vulnerability; `nft_chain_lookup_byid()` failed to check whether a chain was active and CAP_NET… |
CVE-2023-3390 | High | 7.8 | 2023-06-28 | A use-after-free vulnerability was found in the Linux kernel's netfilter subsystem in net/netfilter/nf_tables_api.c. Mishandled error handling with NFT_MSG_NE… |
CVE-2023-1295 | High | 7.8 | 2023-06-28 | A time-of-check to time-of-use issue exists in io_uring subsystem's IORING_OP_CLOSE operation in the Linux kernel's versions 5.6 - 5.11 (inclusive), which allo… |
CVE-2023-2235 | High | 7.8 | 2023-05-01 | A use-after-free vulnerability in the Linux Kernel Performance Events system can be exploited to achieve local privilege escalation. The perf_group_detach fun… |
CVE-2023-2236 | High | 7.8 | 2023-05-01 | A use-after-free vulnerability in the Linux Kernel io_uring subsystem can be exploited to achieve local privilege escalation. Both io_install_fixed_file and i… |
CVE-2023-1872 | High | 7.8 | 2023-04-12 | A use-after-free vulnerability in the Linux Kernel io_uring system can be exploited to achieve local privilege escalation. The io_file_get_fixed function lack… |
CVE-2023-1829 | High | 7.8 | 2023-04-12 | A use-after-free vulnerability in the Linux Kernel traffic control index filter (tcindex) can be exploited to achieve local privilege escalation. The tcindex_d… |
CVE-2023-1281 | High | 7.8 | 2023-03-22 | Use After Free vulnerability in Linux kernel traffic control index filter (tcindex) allows Privilege Escalation. The imperfect hash area can be updated while p… |
CVE-2023-0461 | High | 7.8 | 2023-02-28 | There is a use-after-free vulnerability in the Linux Kernel which can be exploited to achieve local privilege escalation. To reach the vulnerability kernel con… |
CVE-2023-0240 | High | 7.8 | 2023-01-30 | There is a logic error in io_uring's implementation which can be used to trigger a use-after-free vulnerability leading to privilege escalation. In the io_pre… |
CVE-2022-4696 | High | 7.8 | 2023-01-11 | There exists a use-after-free vulnerability in the Linux kernel through io_uring and the IORING_OP_SPLICE operation. If IORING_OP_SPLICE is missing the IO_WQ_W… |
CVE-2022-3910 | High | 7.8 | 2022-11-22 | Use After Free vulnerability in Linux Kernel allows Privilege Escalation. An improper Update of Reference Count in io_uring leads to Use-After-Free and Local P… |
CVE-2021-3491 | High | 7.8 | 2021-06-04 | The io_uring subsystem in the Linux kernel allowed the MAX_RW_COUNT limit to be bypassed in the PROVIDE_BUFFERS operation, which led to negative values being u… |
CVE-2021-3490 | High | 7.8 | 2021-06-04 | The eBPF ALU32 bounds tracking for bitwise ops (AND, OR and XOR) in the Linux kernel did not properly update 32-bit bounds, which could be turned into out of b… |
CVE-2021-3489 | High | 7.8 | 2021-06-04 | The eBPF RINGBUF bpf_ringbuf_reserve() function in the Linux kernel did not check that the allocated size was smaller than the ringbuf size, allowing an attack… |
CVE-2019-11477 | High | 7.5 | 2019-06-18 | Jonathan Looney discovered that the TCP_SKB_CB(skb)->tcp_gso_segs value was subject to an integer overflow in the Linux kernel when handling TCP Selective Ackn… |