Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2023-31436HistoryApr 28, 2023 - 2:15 a.m.
CVE-2023-31436
2023-04-2802:15:09
Debian Security Bug Tracker
security-tracker.debian.org
38
cve-2023-31436
net/sched/sch_qfq.c
linux kernel
out-of-bounds write
qfq_min_lmax
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
0.0004 Low
EPSS
Percentile
16.1%
qfq_change_class in net/sched/sch_qfq.c in the Linux kernel before 6.2.13 allows an out-of-bounds write because lmax can exceed QFQ_MIN_LMAX.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | linux | < 6.1.27-1 | linux_6.1.27-1_all.deb |
| Debian | 11 | all | linux | < 5.10.179-1 | linux_5.10.179-1_all.deb |
| Debian | 999 | all | linux | < 6.1.27-1 | linux_6.1.27-1_all.deb |
| Debian | 13 | all | linux | < 6.1.27-1 | linux_6.1.27-1_all.deb |
Related
nvd
nvd
nessus
nessus
cve
cve
ubuntucve
ubuntucve
cbl_mariner
cbl_mariner
CVE-2023-31436 affecting package kernel for versions less than 5.15.111.1-1
2023-05-25 09:38:10
CVE-2023-31436 affecting package hyperv-daemons 5.10.177.1-1
2023-05-25 17:55:45
redhatcve
redhatcve
CVE-2023-31436
2023-05-02 18:22:34
CVE-2023-39190
2023-10-09 09:51:13
zdi
zdi
cvelist
cvelist
CVE-2023-31436
2023-04-28 00:00:00
prion
prion
Design/Logic Flaw
2023-04-28 02:15:00
Design/Logic Flaw
2023-07-28 14:15:00
Open redirect
2023-05-01 13:15:00
amazon
amazon
Medium: kernel
2023-05-11 17:49:00
Medium: kernel
2023-05-11 18:00:00
openvas
openvas
Debian: Security Advisory (DSA-5402-1)
2023-05-15 00:00:00
Debian: Security Advisory (DLA-3446-1)
2023-06-07 00:00:00
Ubuntu: Security Advisory (USN-6130-1)
2023-06-02 00:00:00
debian
debian
[SECURITY] [DSA 5402-1] linux security update
2023-05-13 11:20:28
[SECURITY] [DLA 3446-1] linux-5.10 security update
2023-06-05 18:45:37
osv
osv
linux - security update
2023-05-13 00:00:00
linux-5.10 - security update
2023-06-05 00:00:00
redhat
redhat
(RHSA-2024:1377) Important: kpatch-patch security update
2024-03-19 14:30:59
(RHSA-2024:1831) Important: kernel security update
2024-04-16 00:09:13
(RHSA-2024:1323) Important: kpatch-patch security update
2024-03-13 22:30:50
oraclelinux
oraclelinux
kernel security update
2024-04-22 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2023-06-01 00:00:00
Linux kernel vulnerabilities
2023-06-08 00:00:00
Linux kernel vulnerabilities
2023-06-01 00:00:00
mageia
mageia
Updated kernel-linus packages fix security vulnerabilities
2023-05-19 10:23:17
Updated kernel packages fix security vulnerabilities
2023-05-16 22:17:40
centos
centos
bpftool, kernel, perf, python security update
2024-01-12 19:36:38
virtuozzo
virtuozzo
cloudlinux
cloudlinux
kernel: Fix of 10 CVEs
2023-11-21 18:37:30
kernel: Fix of 10 CVEs
2023-11-21 18:24:34
photon
photon
Important Photon OS Security Update - PHSA-2023-3.0-0585
2023-05-24 00:00:00
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
0.0004 Low
EPSS
Percentile
16.1%
Related for DEBIANCVE:CVE-2023-31436