CVEs from 2023
Total
6,106
critical
critical 240
high
high 1,529
medium
medium 1,393
low
low 32
% Critical
3.9%
% with KEV
2.7%
% with exploit
3.5%
Top products
- office 29
- office_long_term_servicing_channel 15
- 365_apps 14
- ftmg-esr50sxx 8
- ftmg-esn40sxx 8
- ftmg-esd25axx 8
- ftmg-esr40sxx 8
- ftmg-esd15axx 8
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-52632 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Fix lock dependency warning with srcu ====================================================== WARNING: possible circul… | |||
| CVE-2023-52664 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: net: atlantic: eliminate double free in error handling logic Driver has a logic leak in ring data allocation/free, where aq_ring_… | |||
| CVE-2023-51596 | medium | — | 5.5 | 2y ago | Moderate: bluez security update | |||
| CVE-2023-7250 | medium | — | 5.5 | 2y ago | RHSA-2024:4241: iperf3 security update (Moderate) | |||
| CVE-2023-54136 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: serial: sprd: Fix DMA buffer leak issue Release DMA buffer when _probe() returns failure to avoid memory leak. | |||
| CVE-2023-52462 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: bpf: fix check for attempt to corrupt spilled pointer When register is spilled onto a stack as a 1/2/4-byte register, we set slot… | |||
| CVE-2023-41910 | medium | — | 5.5 | 2y ago | Moderate: lldpd security update | |||
| CVE-2023-52833 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btusb: Add date->evt_skb is NULL check fix crash because of null pointers [ 6104.969662] BUG: kernel NULL pointer der… | |||
| CVE-2023-51764 | medium | — | 5.5 | 2y ago | Postfix through 3.8.5 allows SMTP smuggling unless configured with smtpd_data_restrictions=reject_unauth_pipelining and smtpd_discard_ehlo_keywords=chunking (or certain other options that exist in re… | |||
| CVE-2023-45866 | medium | — | 5.5 | 2y ago | RHSA-2024:11154: bluez security update (Moderate) | |||
| CVE-2023-52467 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: mfd: syscon: Fix null pointer dereference in of_syscon_register() kasprintf() returns a pointer to dynamically allocated memory w… | |||
| CVE-2023-53397 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: modpost: fix off by one in is_executable_section() The > comparison should be >= to prevent an out of bounds array access. | |||
| CVE-2023-53395 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: ACPICA: Add AML_NO_OPERAND_RESOLVE flag to Timer ACPICA commit 90310989a0790032f5a0140741ff09b545af4bc5 According to the ACPI sp… | |||
| CVE-2023-53704 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: clk: imx: clk-imx8mp: improve error handling in imx8mp_clocks_probe() Replace of_iomap() and kzalloc() with devm_of_iomap() and d… | |||
| CVE-2023-54271 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: blk-cgroup: Fix NULL deref caused by blkg_policy_data being installed before init blk-iocost sometimes causes the following crash… | |||
| CVE-2023-52475 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: Input: powermate - fix use-after-free in powermate_config_complete syzbot has found a use-after-free bug [1] in the powermate dri… | |||
| CVE-2023-53402 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: kernel/printk/index.c: fix memory leak with using debugfs_lookup() When calling debugfs_lookup() the result must have dput() call… | |||
| CVE-2023-52585 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix possible NULL dereference in amdgpu_ras_query_error_status_helper() Return invalid error code -EINVAL for invalid… | |||
| CVE-2023-54301 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: serial: 8250_bcm7271: fix leak in `brcmuart_probe` Smatch reports: drivers/tty/serial/8250/8250_bcm7271.c:1120 brcmuart_probe() w… | |||
| CVE-2023-53401 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: mm: kmem: fix a NULL pointer dereference in obj_stock_flush_required() KCSAN found an issue in obj_stock_flush_required(): stock-… | |||
| CVE-2023-52473 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: thermal: core: Fix NULL pointer dereference in zone registration error path If device_register() in thermal_zone_device_register_… | |||
| CVE-2023-53505 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: clk: tegra: tegra124-emc: Fix potential memory leak The tegra and tegra needs to be freed in the error handling path, otherwise i… | |||
| CVE-2023-53483 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: ACPI: processor: Check for null return of devm_kzalloc() in fch_misc_setup() devm_kzalloc() may fail, clk_data->name might be NUL… | |||
| CVE-2023-54083 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: phy: tegra: xusb: Clear the driver reference in usb-phy dev For the dual-role port, it will assign the phy dev to usb-phy dev and… | |||
| CVE-2023-52445 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: media: pvrusb2: fix use after free on context disconnection Upon module load, a kthread is created targeting the pvr2_context_thr… | |||
| CVE-2023-54268 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: debugobjects: Don't wake up kswapd from fill_pool() syzbot is reporting a lockdep warning in fill_pool() because the allocation f… | |||
| CVE-2023-53503 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: ext4: allow ext4_get_group_info() to fail Previously, ext4_get_group_info() would treat an invalid group number as BUG(), since i… | |||
| CVE-2023-54298 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: thermal: intel: quark_dts: fix error pointer dereference If alloc_soc_dts() fails, then we can just return. Trying to free "soc_… | |||
| CVE-2023-52837 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: nbd: fix uaf in nbd_open Commit 4af5f2e03013 ("nbd: use blk_mq_alloc_disk and blk_cleanup_disk") cleans up disk by blk_cleanup_di… | |||
| CVE-2023-54113 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: rcu: dump vmalloc memory info safely Currently, for double invoke call_rcu(), will dump rcu_head objects memory info, if the obje… | |||
| CVE-2023-54291 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: vduse: fix NULL pointer dereference vduse_vdpa_set_vq_affinity callback can be called with NULL value as cpu_mask when deleting t… | |||
| CVE-2023-52455 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: iommu: Don't reserve 0-length IOVA region When the bootloader/firmware doesn't setup the framebuffers, their address and size are… | |||
| CVE-2023-52635 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: PM / devfreq: Synchronize devfreq_monitor_[start/stop] There is a chance if a frequent switch of the governor done in a loop resu… | |||
| CVE-2023-52661 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: drm/tegra: rgb: Fix missing clk_put() in the error handling paths of tegra_dc_rgb_probe() If clk_get_sys(..., "pll_d2_out0") fail… | |||
| CVE-2023-53997 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: thermal: of: fix double-free on unregistration Since commit 3d439b1a2ad3 ("thermal/core: Alloc-copy-free the thermal zone paramet… | |||
| CVE-2023-53719 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: serial: arc_uart: fix of_iomap leak in `arc_serial_probe` Smatch reports: drivers/tty/serial/arc_uart.c:631 arc_serial_probe() w… | |||
| CVE-2023-52637 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: can: j1939: Fix UAF in j1939_sk_match_filter during setsockopt(SO_J1939_FILTER) Lock jsk->sk to prevent UAF when setsockopt(..., … | |||
| CVE-2023-52751 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: smb: client: fix use-after-free in smb2_query_info_compound() The following UAF was triggered when running fstests generic/072 wi… | |||
| CVE-2023-54299 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: usb: typec: bus: verify partner exists in typec_altmode_attention Some usb hubs will negotiate DisplayPort Alt mode with the devi… | |||
| CVE-2023-53391 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: shmem: use ramfs_kill_sb() for kill_sb method of ramfs-based tmpfs As the ramfs-based tmpfs uses ramfs_init_fs_context() for the … | |||
| CVE-2023-53558 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: rcu-tasks: Avoid pr_info() with spin lock in cblist_init_generic() pr_info() is called with rtp->cbs_gbl_lock spin lock locked. … | |||
| CVE-2023-53662 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: ext4: fix memory leaks in ext4_fname_{setup_filename,prepare_lookup} If the filename casefolding fails, we'll be leaking memory f… | |||
| CVE-2023-52920 | medium | 5.5 | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: bpf: support non-r10 register spill/fill to/from stack in precision tracking Use instruction (jump) history to record instruction… | |||
| CVE-2023-54153 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: ext4: turn quotas off if mount failed after enabling quotas Yi found during a review of the patch "ext4: don't BUG on inconsisten… | |||
| CVE-2023-52658 | medium | — | 5.5 | 2y ago | Moderate: kernel security update | |||
| CVE-2023-48161 | medium | — | 5.5 | 2y ago | Moderate: java-1.8.0-openjdk security update | |||
| CVE-2023-45733 | medium | — | 5.5 | 2y ago | Moderate: microcode_ctl security update | |||
| CVE-2023-43490 | medium | — | 5.5 | 2y ago | Moderate: microcode_ctl security update | |||
| CVE-2023-39368 | medium | — | 5.5 | 2y ago | Moderate: microcode_ctl security update | |||
| CVE-2023-22655 | medium | — | 5.5 | 2y ago | Moderate: microcode_ctl security update | |||
| CVE-2023-46103 | medium | — | 5.5 | 2y ago | Moderate: microcode_ctl security update | |||
| CVE-2023-38575 | medium | — | 5.5 | 2y ago | Moderate: microcode_ctl security update | |||
| CVE-2023-20584 | medium | — | 5.5 | 2y ago | Moderate: linux-firmware security update | |||
| CVE-2023-31356 | medium | — | 5.5 | 2y ago | Moderate: linux-firmware security update | |||
| CVE-2023-52463 | medium | — | 5.5 | 2y ago | Moderate: kernel security update | |||
| CVE-2023-52801 | medium | — | 5.5 | 2y ago | Moderate: kernel security update | |||
| CVE-2023-6349 | medium | — | 5.5 | 2y ago | RHSA-2024:5941: libvpx security update (Moderate) | |||
| CVE-2023-37920 | medium | — | 5.5 | 2y ago | Moderate: fence-agents security update | |||
| CVE-2023-25433 | medium | — | 5.5 | 2y ago | RHSA-2024:5079: libtiff security update (Moderate) | |||
| CVE-2023-52809 | medium | — | 5.5 | 2y ago | Moderate: kernel security update | |||
| CVE-2023-52458 | medium | 5.5 | 5.5 | 2y ago | Moderate: kernel security update | |||
| CVE-2023-45237 | medium | — | 5.5 | 2y ago | RHSA-2024:5297: edk2 security update (Moderate) | |||
| CVE-2023-45236 | medium | — | 5.5 | 2y ago | RHSA-2024:5297: edk2 security update (Moderate) | |||
| CVE-2023-31346 | medium | — | 5.5 | 2y ago | RHSA-2024:4262: linux-firmware security update (Moderate) | |||
| CVE-2023-52626 | medium | — | 5.5 | 2y ago | Moderate: kernel security and bug fix update | |||
| CVE-2023-52667 | medium | — | 5.5 | 2y ago | Moderate: kernel security and bug fix update | |||
| CVE-2023-38264 | medium | — | 5.5 | 2y ago | RHSA-2024:6595: java-1.8.0-ibm security update (Moderate) | |||
| CVE-2023-52607 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: powerpc/mm: Fix null-pointer dereference in pgtable_cache_add kasprintf() returns a pointer to dynamically allocated memory which… | |||
| CVE-2023-52598 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: s390/ptrace: handle setting of fpc register correctly If the content of the floating point control (fpc) register of a traced pro… | |||
| CVE-2023-53266 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: arm64: acpi: Fix possible memory leak of ffh_ctxt Allocated 'ffh_ctxt' memory leak is possible if the SMCCC version and conduit c… | |||
| CVE-2023-53698 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: xsk: fix refcount underflow in error path Fix a refcount underflow problem reported by syzbot that can happen when a system is ru… | |||
| CVE-2023-39192 | medium | — | 5.5 | 2y ago | A flaw was found in the Netfilter subsystem in the Linux kernel. The xt_u32 module did not validate the fields in the xt_u32 structure. This flaw allows a local privileged attacker to trigger an out-… | |||
| CVE-2023-1513 | medium | — | 5.5 | 2y ago | A flaw was found in KVM. When calling the KVM_GET_DEBUGREGS ioctl, on 32-bit systems, there might be some uninitialized portions of the kvm_debugregs structure that could be copied to userspace, caus… | |||
| CVE-2023-42755 | medium | — | 5.5 | 2y ago | A flaw was found in the IPv4 Resource Reservation Protocol (RSVP) classifier in the Linux kernel. The xprt pointer may go beyond the linear part of the skb, leading to an out-of-bounds read in the `r… | |||
| CVE-2023-53648 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: ALSA: ac97: Fix possible NULL dereference in snd_ac97_mixer smatch error: sound/pci/ac97/ac97_codec.c:2354 snd_ac97_mixer() error… | |||
| CVE-2023-53798 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: ethtool: Fix uninitialized number of lanes It is not possible to set the number of lanes when setting link modes using the legacy… | |||
| CVE-2023-43361 | medium | — | 5.5 | 2y ago | RHSA-2024:3095: vorbis-tools security update (Moderate) | |||
| CVE-2023-52737 | medium | 5.5 | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: btrfs: lock the inode in shared mode before starting fiemap Currently fiemap does not take the inode's lock (VFS lock), it only l… | |||
| CVE-2023-5090 | medium | — | 5.5 | 2y ago | Moderate: kernel security and bug fix update | |||
| CVE-2023-6240 | medium | — | 5.5 | 2y ago | Moderate: kernel security and bug fix update | |||
| CVE-2023-6917 | medium | — | 5.5 | 2y ago | A vulnerability has been identified in the Performance Co-Pilot (PCP) package, stemming from the mixed privilege levels utilized by systemd services associated with PCP. While certain services operat… | |||
| CVE-2023-53442 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: ice: Block switchdev mode when ADQ is active and vice versa ADQ and switchdev are not supported simultaneously. Enabling both at … | |||
| CVE-2023-53343 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: icmp6: Fix null-ptr-deref of ip6_null_entry->rt6i_idev in icmp6_dev(). With some IPv6 Ext Hdr (RPL, SRv6, etc.), we can send a pa… | |||
| CVE-2023-53335 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: RDMA/cxgb4: Fix potential null-ptr-deref in pass_establish() If get_ep_from_tid() fails to lookup non-NULL value for ep, ep is de… | |||
| CVE-2023-37327 | medium | — | 5.5 | 2y ago | GStreamer FLAC File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interact… | |||
| CVE-2023-53545 | medium | 5.5 | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: unmap and remove csa_va properly Root PD BO should be reserved before unmap and remove a bo_va from VM otherwise lock… | |||
| CVE-2023-53322 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Wait for io return on terminate rport System crash due to use after free. Current code allows terminate_rport_io t… | |||
| CVE-2023-53421 | medium | 5.5 | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: blk-cgroup: Reinit blkg_iostat_set after clearing in blkcg_reset_stats() When blkg_alloc() is called to allocate a blkcg_gq struc… | |||
| CVE-2023-53559 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: ip_vti: fix potential slab-use-after-free in decode_session6 When ip_vti device is set to the qdisc of the sfb type, the cb field… | |||
| CVE-2023-53441 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: bpf: cpumap: Fix memory leak in cpu_map_update_elem Syzkaller reported a memory leak as follows: BUG: memory leak unreferenced o… | |||
| CVE-2023-38469 | medium | — | 5.5 | 2y ago | RHSA-2023:7836: avahi security update (Moderate) | |||
| CVE-2023-53999 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: TC, Fix internal port memory leak The flow rule can be splited, and the extra post_act rules are added to post_act tab… | |||
| CVE-2023-41359 | medium | — | 5.5 | 2y ago | An issue was discovered in FRRouting FRR through 9.0. There is an out-of-bounds read in bgp_attr_aigp_valid in bgpd/bgp_attr.c because there is no check for the availability of two bytes during AIGP … | |||
| CVE-2023-41358 | medium | — | 5.5 | 2y ago | An issue was discovered in FRRouting FRR through 9.0. bgpd/bgp_packet.c processes NLRIs if the attribute length is zero. | |||
| CVE-2023-53380 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: md/raid10: fix null-ptr-deref of mreplace in raid10_sync_request There are two check of 'mreplace' in raid10_sync_request(). In t… | |||
| CVE-2023-53354 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: skbuff: skb_segment, Call zero copy functions before using skbuff frags Commit bf5c25d60861 ("skbuff: in skb_segment, call zeroco… | |||
| CVE-2023-31490 | medium | — | 5.5 | 2y ago | An issue found in Frrouting bgpd v.8.4.2 allows a remote attacker to cause a denial of service via the bgp_attr_psid_sub() function. | |||
| CVE-2023-31489 | medium | — | 5.5 | 2y ago | An issue found in Frrouting bgpd v.8.4.2 allows a remote attacker to cause a denial of service via the bgp_capability_llgr() function. | |||
| CVE-2023-53496 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: x86/platform/uv: Use alternate source for socket to node data The UV code attempts to build a set of tables to allow it to do bid… | |||
| CVE-2023-53615 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix deletion race condition System crash when using debug kernel due to link list corruption. The cause of the lin… |