OESA-2023-1493

A use-after-free flaw was found in r592_remove in drivers/memstick/host/r592.c in media access in the Linux Kernel. This flaw allows a local attacker to crash the system at device disconnect, possibly leading to a kernel information leak.(CVE-2023-3141)

An out of bounds (OOB) memory access flaw was found in the Linux kernel in relayfilereadstartpos in kernel/relay.c in the relayfs. This flaw could allow a local attacker to crash the system or leak kernel internal information.(CVE-2023-3268)

An issue was discovered in the Linux kernel before 6.3.2. A use-after-free was found in rkvdec_remove in drivers/staging/media/rkvdec/rkvdec.c.(CVE-2023-35829)

An issue was discovered in the Linux kernel before 6.3.8. fs/smb/server/smb2pdu.c in ksmbd has an integer underflow and out-of-bounds read in deassemblenegcontexts.(CVE-2023-38427)

An issue was discovered in the Linux kernel before 6.3.4. fs/ksmbd/connection.c in ksmbd has an off-by-one error in memory allocation (because of ksmbdsmb2check_message) that may lead to out-of-bounds access.(CVE-2023-38429)

An issue was discovered in the Linux kernel before 6.3.9. ksmbd does not validate the SMB request protocol ID, leading to an out-of-bounds read.(CVE-2023-38430)

A use-after-free flaw was found in the Linux kernel's netfilter in the way a user triggers the nftpipaporemove function with the element, without a NFTSETEXTKEYEND. This issue could allow a local user to crash the system or potentially escalate their privileges on the system.(CVE-2023-4004)

Database specific

{
    "severity": "Critical"
}

References

Affected packages

openEuler:22.03-LTS-SP2 / kernel

Package

Name: kernel
Purl: pkg:rpm/openEuler/kernel&distro=openEuler-22.03-LTS-SP2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.10.0-153.22.0.98.oe2203sp2

Ecosystem specific

{
    "src": [
        "kernel-5.10.0-153.22.0.98.oe2203sp2.src.rpm"
    ],
    "x86_64": [
        "kernel-source-5.10.0-153.22.0.98.oe2203sp2.x86_64.rpm",
        "perf-5.10.0-153.22.0.98.oe2203sp2.x86_64.rpm",
        "kernel-devel-5.10.0-153.22.0.98.oe2203sp2.x86_64.rpm",
        "kernel-5.10.0-153.22.0.98.oe2203sp2.x86_64.rpm",
        "kernel-debuginfo-5.10.0-153.22.0.98.oe2203sp2.x86_64.rpm",
        "kernel-tools-devel-5.10.0-153.22.0.98.oe2203sp2.x86_64.rpm",
        "kernel-tools-debuginfo-5.10.0-153.22.0.98.oe2203sp2.x86_64.rpm",
        "bpftool-5.10.0-153.22.0.98.oe2203sp2.x86_64.rpm",
        "perf-debuginfo-5.10.0-153.22.0.98.oe2203sp2.x86_64.rpm",
        "kernel-debugsource-5.10.0-153.22.0.98.oe2203sp2.x86_64.rpm",
        "python3-perf-5.10.0-153.22.0.98.oe2203sp2.x86_64.rpm",
        "kernel-headers-5.10.0-153.22.0.98.oe2203sp2.x86_64.rpm",
        "bpftool-debuginfo-5.10.0-153.22.0.98.oe2203sp2.x86_64.rpm",
        "kernel-tools-5.10.0-153.22.0.98.oe2203sp2.x86_64.rpm",
        "python3-perf-debuginfo-5.10.0-153.22.0.98.oe2203sp2.x86_64.rpm"
    ],
    "aarch64": [
        "bpftool-5.10.0-153.22.0.98.oe2203sp2.aarch64.rpm",
        "perf-5.10.0-153.22.0.98.oe2203sp2.aarch64.rpm",
        "kernel-debuginfo-5.10.0-153.22.0.98.oe2203sp2.aarch64.rpm",
        "kernel-source-5.10.0-153.22.0.98.oe2203sp2.aarch64.rpm",
        "kernel-headers-5.10.0-153.22.0.98.oe2203sp2.aarch64.rpm",
        "kernel-devel-5.10.0-153.22.0.98.oe2203sp2.aarch64.rpm",
        "kernel-debugsource-5.10.0-153.22.0.98.oe2203sp2.aarch64.rpm",
        "kernel-5.10.0-153.22.0.98.oe2203sp2.aarch64.rpm",
        "perf-debuginfo-5.10.0-153.22.0.98.oe2203sp2.aarch64.rpm",
        "python3-perf-5.10.0-153.22.0.98.oe2203sp2.aarch64.rpm",
        "kernel-tools-debuginfo-5.10.0-153.22.0.98.oe2203sp2.aarch64.rpm",
        "python3-perf-debuginfo-5.10.0-153.22.0.98.oe2203sp2.aarch64.rpm",
        "bpftool-debuginfo-5.10.0-153.22.0.98.oe2203sp2.aarch64.rpm",
        "kernel-tools-devel-5.10.0-153.22.0.98.oe2203sp2.aarch64.rpm",
        "kernel-tools-5.10.0-153.22.0.98.oe2203sp2.aarch64.rpm"
    ]
}