VDB
CVE-2023-3312
CVE-2023-3312
PUBLISHED
CVSS 8.699999809265137 HIGH
Es existiert eine Schwachstelle im Linux-Kernel. Der Fehler besteht während des Device Unbind, was zu einem Double Release Problem in drivers/cpufreq/qcom-cpufreq-hw.c im cpufreq Subsystem führt. Ein lokaler Angreifer kann diese Schwachstelle ausnutzen, um einen Denial-of-Service-Zustand zu verursachen.
EPSS 0.06% · 18.4th percentile
Risk Scores
CVSS v4.0
8.699999809265137
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
EPSS Score
0.06%
18.4th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Red Hat | Red Hat Enterprise Linux | |
| SUSE | SUSE Linux | |
| Red Hat | Red Hat Enterprise Linux 8 | |
| Oracle | Oracle Linux | |
| Open Source | Open Source Linux Kernel <6.4-rc1 | |
| Amazon | Amazon Linux 2 | |
| IBM | IBM Storage Scale <6.1.9.5 | |
| Debian | Debian Linux | |
| IBM | IBM Storage Scale <6.2.2.0 | |
| Red Hat | Red Hat Enterprise Linux 9 | |
| Ubuntu | Ubuntu Linux |
Timeline
- Jun 18, 2023 CVE Published
- Jun 20, 2023 EPSS Score
- Jul 25, 2023 EPSS Score
- Aug 30, 2023 EPSS Score
- Oct 4, 2023 EPSS Score
- Nov 8, 2023 EPSS Score
- Dec 13, 2023 EPSS Score
- Jan 18, 2024 EPSS Score
- Feb 22, 2024 EPSS Score
- May 2, 2024 EPSS Score
- Jun 7, 2024 EPSS Score
- Jul 12, 2024 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-1494.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-1494 advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=2215502 advisory
- https://access.redhat.com/security/cve/CVE-2023-3268 advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=2215847 advisory
- https://alas.aws.amazon.com/AL2/ALASKERNEL-5.4-2023-047.html advisory
- https://alas.aws.amazon.com/AL2/ALASKERNEL-5.15-2023-021.html advisory
- https://alas.aws.amazon.com/AL2/ALASKERNEL-5.10-2023-034.html advisory
- https://www.debian.org/security/2023/dsa-5448 advisory
- https://lists.suse.com/pipermail/sle-security-updates/2023-July/015467.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2023-July/015471.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2023-July/015472.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2023-July/015496.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2023-July/015491.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2023-July/015490.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2023-July/015512.html advisory
- https://ubuntu.com/security/notices/USN-6254-1 advisory
- https://ubuntu.com/security/notices/USN-6252-1 advisory
- https://lists.debian.org/debian-lts-announce/2023/07/msg00030.html advisory
- https://ubuntu.com/security/notices/USN-6283-1 advisory
…and 28 more