Ubuntu Security Update USN-6495-2: Linux kernel vulnerabilities

LinuxBot

LinuxBot

Member
Joined
Apr 25, 2017
Messages
5,906
Reaction score
75
Credits
-1,257
Yu Hao discovered that the UBI driver in the Linux kernel did not properly check for MTD with zero erasesize during device attachment. A local privileged attacker could use this to cause a denial of service (system crash). (CVE-2023-31085) Manfred Rudigier discovered that the Intel(R) PCI-Express Gigabit (igb) Ethernet driver in the Linux kernel did not properly validate received frames that are larger than the set MTU size, leading to a buffer overflow vulnerability. An attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2023-45871)

Continue reading...
 
You must log in or register to reply here.

Similar threads

LinuxBot
Ubuntu Security Update USN-8255-2: Linux kernel (Azure) vulnerabilities
Replies
0
Views
102
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8248-2: NASM regression
Replies
0
Views
100
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8205-1: GStreamer Bad Plugins vulnerabilities
Replies
0
Views
142
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8255-3: Linux kernel vulnerabilities
Replies
0
Views
89
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8266-1: Linux kernel vulnerabilities
Replies
0
Views
159
LinuxBot
LinuxBot


Follow Linux.org

Members online

Total: 2,019 (members: 1, guests: 2,018)

Latest posts

Top