发布于3月6日3月6日 超级管理员 Red Hat: CVE-2023-6176: kernel: local dos vulnerability in scatterwalk_copychunks (Multiple Advisories) Severity 4 CVSS (AV:L/AC:H/Au:S/C:N/I:N/A:C) Published 11/16/2023 Created 05/24/2024 Added 05/23/2024 Modified 12/05/2024 Description A null pointer dereference flaw was found in the Linux kernel API for the cryptographic algorithm scatterwalk functionality. This issue occurs when a user constructs a malicious packet with specific socket configuration, which could allow a local user to crash the system or escalate their privileges on the system. Solution(s) redhat-upgrade-kernel redhat-upgrade-kernel-rt References CVE-2023-6176 RHSA-2024:2394 RHSA-2024:2950 RHSA-2024:3138
参与讨论
你可立刻发布并稍后注册。 如果你有帐户,立刻登录发布帖子。
注意:你的帖子需要版主批准后才能看到。