Early Access — Mondoo Vulnerability Intelligence is currently in preview.
linux, linux-aws, linux-aws-5.4, linux-azure, linux-azure-5.4, linux-bluefield, linux-gcp, linux-gcp-5.4, linux-gkeop, linux-hwe-5.4, linux-ibm, linux-ibm-5.4, linux-kvm, linux-oracle, linux-oracle-5.4, linux-raspi, linux-raspi-5.4, linux-xilinx-zynqmp vulnerabilities
Seth Jenkins discovered that the Linux kernel did not properly perform address randomization for a per-cpu memory management structure. A local attacker could use this to expose sensitive information (kernel memory) or in conjunction with another kernel vulnerability. (CVE-2023-0597)
Yu Hao and Weiteng Chen discovered that the Bluetooth HCI UART driver in the Linux kernel contained a race condition, leading to a null pointer dereference vulnerability. A local attacker could use this to cause a denial of service (system crash). (CVE-2023-31083)
Lin Ma discovered that the Netlink Transformation (XFRM) subsystem in the Linux kernel contained a null pointer dereference vulnerability in some situations. A local privileged attacker could use this to cause a denial of service (system crash). (CVE-2023-3772)
It was discovered that the Siano USB MDTV receiver device driver in the Linux kernel did not properly handle device initialization failures in certain situations, leading to a use-after-free vulnerability. A physically proximate attacker could use this cause a denial of service (system crash). (CVE-2023-4132)
5.4.0-166.1835.4.0-1113.1235.4.0-1119.1265.4.0-1074.805.4.0-1117.1265.4.0-1080.845.4.0-1060.655.4.0-1102.1085.4.0-1112.1215.4.0-1097.1095.4.0-1033.375.4.0-1113.123~18.04.15.4.0-1119.126~18.04.25.4.0-1117.126~18.04.15.4.0-166.183~18.04.25.4.0-1060.65~18.04.15.4.0-1112.121~18.04.45.4.0-1097.109~18.04.2