Early Access — Mondoo Vulnerability Intelligence is currently in preview.
Marek Marczykowski-Górecki discovered that the Xen event channel infrastructure implementation in the Linux kernel contained a race condition. An attacker in a guest VM could possibly use this to cause a denial of service (paravirtualized device unavailability). (CVE-2023-34324)
Zheng Wang discovered a use-after-free in the Renesas Ethernet AVB driver in the Linux kernel during device removal. A privileged attacker could use this to cause a denial of service (system crash). (CVE-2023-35827)
It was discovered that a race condition existed in the Linux kernel when performing operations with kernel objects, leading to an out-of-bounds write. A local attacker could use this to cause a denial of service (system crash) or execute arbitrary code. (CVE-2023-45863)
黄思聪 discovered that the NFC Controller Interface (NCI) implementation in the Linux kernel did not properly handle certain memory allocation failure conditions, leading to a null pointer dereference vulnerability. A local attacker could use this to cause a denial of service (system crash). (CVE-2023-46343)
5.4.0-171.1895.4.0-1118.1285.4.0-1123.1305.4.0-1078.845.4.0-1085.895.4.0-1065.705.4.0-1030.315.4.0-1106.1135.4.0-1117.1265.4.0-1037.415.4.0-1118.128~18.04.15.4.0-1123.130~18.04.15.4.0-171.189~18.04.15.4.0-1065.70~18.04.15.4.0-1117.126~18.04.1