A use-after-free flaw was found in r592_remove in drivers/memstick/host/r592.c in media access in the Linux Kernel. This flaw allows a local attacker to crash the system at device disconnect, possibly leading to a kernel information leak.
References
Link | Resource |
---|---|
https://cdn.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.3.4 | Third Party Advisory |
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=63264422785021704c39b38f65a78ab9e4a186d7 | Mailing List Vendor Advisory |
https://lists.debian.org/debian-lts-announce/2023/07/msg00030.html | Mailing List Third Party Advisory VDB Entry |
https://lists.debian.org/debian-lts-announce/2023/10/msg00027.html | Mailing List Third Party Advisory |
https://lore.kernel.org/lkml/CAPDyKFoV9aZObZ5GBm0U_-UVeVkBN_rAG-kH3BKoP4EXdYM4bw%40mail.gmail.com/t/ | |
https://security.netapp.com/advisory/ntap-20230706-0004/ | Third Party Advisory |
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
History
07 Nov 2023, 04:17
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
29 Oct 2023, 02:42
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:* | |
First Time |
Debian debian Linux
Debian |
|
References | (MLIST) https://lists.debian.org/debian-lts-announce/2023/10/msg00027.html - Mailing List, Third Party Advisory |
20 Oct 2023, 00:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
28 Sep 2023, 19:03
Type | Values Removed | Values Added |
---|---|---|
References | (MLIST) https://lists.debian.org/debian-lts-announce/2023/07/msg00030.html - Mailing List, Third Party Advisory, VDB Entry | |
References | (CONFIRM) https://security.netapp.com/advisory/ntap-20230706-0004/ - Third Party Advisory | |
References | (MISC) https://cdn.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.3.4 - Third Party Advisory | |
References | (MISC) https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=63264422785021704c39b38f65a78ab9e4a186d7 - Mailing List, Vendor Advisory | |
First Time |
Netapp hci Baseboard Management Controller
Netapp |
|
CPE | cpe:2.3:a:netapp:hci_baseboard_management_controller:h500s:*:*:*:*:*:*:* cpe:2.3:a:netapp:hci_baseboard_management_controller:h700s:*:*:*:*:*:*:* cpe:2.3:a:netapp:hci_baseboard_management_controller:h410c:*:*:*:*:*:*:* cpe:2.3:a:netapp:hci_baseboard_management_controller:h300s:*:*:*:*:*:*:* cpe:2.3:a:netapp:hci_baseboard_management_controller:h410s:*:*:*:*:*:*:* |
27 Jul 2023, 21:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
06 Jul 2023, 19:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
19 Jun 2023, 15:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
16 Jun 2023, 16:11
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | |
CWE | CWE-416 | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.1 |
References | (MISC) https://lore.kernel.org/lkml/CAPDyKFoV9aZObZ5GBm0U_-UVeVkBN_rAG-kH3BKoP4EXdYM4bw@mail.gmail.com/t/ - Exploit, Mailing List, Vendor Advisory | |
First Time |
Linux
Linux linux Kernel |
09 Jun 2023, 20:40
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-06-09 20:15
Updated : 2024-02-28 20:13
NVD link : CVE-2023-3141
Mitre link : CVE-2023-3141
CVE.ORG link : CVE-2023-3141
JSON object : View
Products Affected
linux
- linux_kernel
debian
- debian_linux
netapp
- hci_baseboard_management_controller
CWE
CWE-416
Use After Free