A use-after-free flaw was found in r592_remove in drivers/memstick/host/r592.c in media access in the Linux Kernel. This flaw allows a local attacker to crash the system at device disconnect, possibly leading to a kernel information leak.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
History
21 Nov 2024, 08:16
Type | Values Removed | Values Added |
---|---|---|
References | () https://cdn.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.3.4 - Third Party Advisory | |
References | () https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=63264422785021704c39b38f65a78ab9e4a186d7 - Mailing List, Vendor Advisory | |
References | () https://lists.debian.org/debian-lts-announce/2023/07/msg00030.html - Mailing List, Third Party Advisory, VDB Entry | |
References | () https://lists.debian.org/debian-lts-announce/2023/10/msg00027.html - Mailing List, Third Party Advisory | |
References | () https://lore.kernel.org/lkml/CAPDyKFoV9aZObZ5GBm0U_-UVeVkBN_rAG-kH3BKoP4EXdYM4bw%40mail.gmail.com/t/ - | |
References | () https://security.netapp.com/advisory/ntap-20230706-0004/ - Third Party Advisory |
07 Nov 2023, 04:17
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
29 Oct 2023, 02:42
Type | Values Removed | Values Added |
---|---|---|
References | (MLIST) https://lists.debian.org/debian-lts-announce/2023/10/msg00027.html - Mailing List, Third Party Advisory | |
First Time |
Debian debian Linux
Debian |
|
CPE | cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:* |
20 Oct 2023, 00:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
28 Sep 2023, 19:03
Type | Values Removed | Values Added |
---|---|---|
First Time |
Netapp hci Baseboard Management Controller
Netapp |
|
CPE | cpe:2.3:a:netapp:hci_baseboard_management_controller:h500s:*:*:*:*:*:*:* cpe:2.3:a:netapp:hci_baseboard_management_controller:h700s:*:*:*:*:*:*:* cpe:2.3:a:netapp:hci_baseboard_management_controller:h410c:*:*:*:*:*:*:* cpe:2.3:a:netapp:hci_baseboard_management_controller:h300s:*:*:*:*:*:*:* cpe:2.3:a:netapp:hci_baseboard_management_controller:h410s:*:*:*:*:*:*:* |
|
References | (MLIST) https://lists.debian.org/debian-lts-announce/2023/07/msg00030.html - Mailing List, Third Party Advisory, VDB Entry | |
References | (CONFIRM) https://security.netapp.com/advisory/ntap-20230706-0004/ - Third Party Advisory | |
References | (MISC) https://cdn.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.3.4 - Third Party Advisory | |
References | (MISC) https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=63264422785021704c39b38f65a78ab9e4a186d7 - Mailing List, Vendor Advisory |
27 Jul 2023, 21:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
06 Jul 2023, 19:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
19 Jun 2023, 15:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
16 Jun 2023, 16:11
Type | Values Removed | Values Added |
---|---|---|
First Time |
Linux
Linux linux Kernel |
|
References | (MISC) https://lore.kernel.org/lkml/CAPDyKFoV9aZObZ5GBm0U_-UVeVkBN_rAG-kH3BKoP4EXdYM4bw@mail.gmail.com/t/ - Exploit, Mailing List, Vendor Advisory | |
CPE | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.1 |
CWE | CWE-416 |
09 Jun 2023, 20:40
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-06-09 20:15
Updated : 2024-11-21 08:16
NVD link : CVE-2023-3141
Mitre link : CVE-2023-3141
CVE.ORG link : CVE-2023-3141
JSON object : View
Products Affected
debian
- debian_linux
linux
- linux_kernel
netapp
- hci_baseboard_management_controller
CWE
CWE-416
Use After Free