VDB
CVE-2023-3439
CVE-2023-3439
PUBLISHED
Im Linux Kernel existieren mehrere Schwachstellen. Die Fehler bestehen aufgrund mehrerer NULL-Zeiger-Dereferenzen und eines Use-after-free-Problems in den Komponenten AMD Sensor Fusion Hub-Treiber, brcm_nvram_parse, Integrated Sensor Hub (ISH)-Treiber und dem MCTP-Protokoll. Ein lokaler Angreifer kann diese Schwachstellen ausnutzen, um einen Denial-of-Service-Zustand zu verursachen.
EPSS 0.01% · 0.9th percentile
Risk Scores
EPSS Score
0.01%
0.9th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Dell | Dell ECS <3.8.1.1 | |
| Red Hat | Red Hat Enterprise Linux | |
| Open Source | Open Source Linux Kernel | |
| Oracle | Oracle VM | |
| IBM | IBM Spectrum Protect <plus 10.1.15.2 | |
| SUSE | SUSE Linux | |
| Oracle | Oracle Linux | |
| Ubuntu | Ubuntu Linux | |
| Amazon | Amazon Linux 2 | |
| Debian | Debian Linux |
Timeline
- Mar 6, 2023 CVE Published
- Mar 7, 2023 PoC Published
- Jun 29, 2023 EPSS Score
- Aug 3, 2023 EPSS Score
- Sep 7, 2023 EPSS Score
- Oct 12, 2023 EPSS Score
- Nov 16, 2023 EPSS Score
- Dec 21, 2023 EPSS Score
- Jan 25, 2024 EPSS Score
- Feb 29, 2024 EPSS Score
- Apr 4, 2024 EPSS Score
- May 9, 2024 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-1595.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-1595 advisory
- https://linux.oracle.com/errata/ELSA-2024-12150.html advisory
- https://access.redhat.com/errata/RHSA-2024:1278 advisory
- https://lists.debian.org/debian-lts-announce/2024/01/msg00004.html advisory
- https://access.redhat.com/errata/RHSA-2024:1250 advisory
- https://access.redhat.com/errata/RHSA-2024:1253 advisory
- https://github.com/advisories/GHSA-295v-9m5g-79q9 advisory
- https://github.com/advisories/GHSA-3gcx-wjr4-jv32 advisory
- https://github.com/advisories/GHSA-8r8v-fx37-wpw7 advisory
- https://github.com/advisories/GHSA-9787-f568-7rr2 advisory
- https://github.com/advisories/GHSA-hg6h-cj3j-wp77 advisory
- https://github.com/advisories/GHSA-rmg8-h2h6-5wwf advisory
- https://github.com/advisories/GHSA-vj8j-762w-6jmv advisory
- https://github.com/advisories/GHSA-wh7q-2hgq-2xj7 advisory
- https://www.debian.org/security/2023/dsa-5448 advisory
- https://lists.suse.com/pipermail/sle-security-updates/2023-July/015467.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2023-July/015466.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2023-July/015468.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2023-July/015470.html advisory
…and 124 more