The Linux Kernel Organization Linux vulnerabilities

6 known vulnerabilities affecting the_linux_kernel_organization/linux.

Total CVEs

6

CISA KEV

1

actively exploited

Public exploits

0

Exploited in wild

1

Severity breakdown

HIGH4MEDIUM2

Vulnerabilities

Page 1 of 1

CVE-2023-6040HIGHCVSS 7.8fixed in 5.18-rc12024-01-12

CVE-2023-6040 [HIGH] CWE-125 CVE-2023-6040: An out-of-bounds access vulnerability involving netfilter was reported and fixed as: f1082dd31fe4 (n An out-of-bounds access vulnerability involving netfilter was reported and fixed as: f1082dd31fe4 (netfilter: nf_tables: Reject tables of unsupported family); While creating a new netfilter table, lack of a safeguard against invalid nf_tables family (pf) values within `nf_tables_newtable` function enables an attacker to achieve out-of-bounds access.

CVE-2022-2585HIGHCVSS 7.8fixed in 6.0~rc12024-01-08

CVE-2022-2585 [MEDIUM] CWE-416 CVE-2022-2585: It was discovered that when exec'ing from a non-leader thread, armed POSIX CPU timers would be left It was discovered that when exec'ing from a non-leader thread, armed POSIX CPU timers would be left on a list but freed, leading to a use-after-free.

CVE-2022-2588HIGHCVSS 7.8fixed in 6.0~rc12024-01-08

CVE-2022-2588 [MEDIUM] CWE-416 CVE-2022-2588: It was discovered that the cls_route filter implementation in the Linux kernel would not remove an o It was discovered that the cls_route filter implementation in the Linux kernel would not remove an old filter from the hashtable before freeing it if its handle had the value 0.

CVE-2021-3600HIGHCVSS 7.8fixed in 5.112024-01-08

CVE-2021-3600 [HIGH] CWE-125 CVE-2021-3600: It was discovered that the eBPF implementation in the Linux kernel did not properly track bounds inf It was discovered that the eBPF implementation in the Linux kernel did not properly track bounds information for 32 bit registers when performing div and mod operations. A local attacker could use this to possibly execute arbitrary code.

CVE-2023-1032MEDIUMCVSS 5.5fixed in 6.3~rc22024-01-08

CVE-2023-1032 [MEDIUM] CWE-415 CVE-2023-1032: The Linux kernel io_uring IORING_OP_SOCKET operation contained a double free in function __sys_socke The Linux kernel io_uring IORING_OP_SOCKET operation contained a double free in function __sys_socket_file() in file net/socket.c. This issue was introduced in da214a475f8bd1d3e9e7a19ddfeb4d1617551bab and fixed in 649c15c7691e9b13cbe9bf6c65c365350e056067.

CVE-2022-2586MEDIUMCVSS 5.3KEVfixed in 6.0~rc12024-01-08

CVE-2022-2586 [MEDIUM] CWE-416 CVE-2022-2586: It was discovered that a nft object or expression could reference a nft set on a different nft table, leading to a use-after-free once that table was It was discovered that a nft object or expression could reference a nft set on a different nft table, leading to a use-after-free once that table was deleted.