Vulnerabilities > Linux > Linux Kernel > 6.0.18
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-03-19 | CVE-2022-48423 | Out-of-bounds Write vulnerability in Linux Kernel In the Linux kernel before 6.1.3, fs/ntfs3/record.c does not validate resident attribute names. | 7.8 |
| 2023-03-19 | CVE-2022-48425 | Release of Invalid Pointer or Reference vulnerability in Linux Kernel In the Linux kernel through 6.2.7, fs/ntfs3/inode.c has an invalid kfree because it does not validate MFT flags before replaying logs. | 7.8 |
| 2023-03-16 | CVE-2023-28466 | NULL Pointer Dereference vulnerability in multiple products do_tls_getsockopt in net/tls/tls_main.c in the Linux kernel through 6.2.6 lacks a lock_sock call, leading to a race condition (with a resultant use-after-free or NULL pointer dereference). | 7.0 |
| 2023-03-06 | CVE-2022-3707 | Double Free vulnerability in multiple products A double-free memory flaw was found in the Linux kernel. | 5.5 |
| 2023-03-02 | CVE-2023-1118 | Use After Free vulnerability in Linux Kernel A flaw use after free in the Linux kernel integrated infrared receiver/transceiver driver was found in the way user detaching rc device. | 7.8 |
| 2023-03-01 | CVE-2023-23005 | NULL Pointer Dereference vulnerability in multiple products In the Linux kernel before 6.2, mm/memory-tiers.c misinterprets the alloc_memory_type return value (expects it to be NULL in the error case, whereas it is actually an error pointer). | 5.5 |
| 2023-02-28 | CVE-2023-22997 | NULL Pointer Dereference vulnerability in Linux Kernel In the Linux kernel before 6.1.2, kernel/module/decompress.c misinterprets the module_get_next_page return value (expects it to be NULL in the error case, whereas it is actually an error pointer). | 5.5 |
| 2023-02-28 | CVE-2023-0461 | Use After Free vulnerability in Linux Kernel There is a use-after-free vulnerability in the Linux Kernel which can be exploited to achieve local privilege escalation. | 7.8 |
| 2023-02-25 | CVE-2023-26545 | Double Free vulnerability in multiple products In the Linux kernel before 6.1.13, there is a double free in net/mpls/af_mpls.c upon an allocation failure (for registering the sysctl table under a new location) during the renaming of a device. | 4.7 |
| 2023-02-22 | CVE-2023-23039 | Race Condition vulnerability in Linux Kernel An issue was discovered in the Linux kernel through 6.2.0-rc2. | 5.7 |