Vuldb Updates

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 6.12.82/6.18.23/6.19.13/7.0.0. Affected by this vulnerability is the function nilfs_mdt_save_to_shadow_map. The manipulation leads to null pointer dereference. This vulnerability is documented as CVE-2026-31577. The attack requires being on the local network. There is not any exploit available. It is advisable to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.12.82/6.18.23/6.19.13/7.0.0. It has been declared as critical. This vulnerability affects unknown code of the component q6apm. Executing a manipulation can lead to use after free. This vulnerability appears as CVE-2026-31587. The attacker needs to be present on the local network. There is no available exploit. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 6.19.12. The affected element is an unknown function of the component mmc. Performing a manipulation results in use after free. This vulnerability is cataloged as CVE-2026-31651. The attack must originate from the local network. There is no exploit available. It is advisable to upgrade the affected component.

A vulnerability classified as critical has been found in Linux Kernel up to 6.19.12. This affects the function batadv_tt_prepare_tvlv_global_data of the component Response Buffer Handler. This manipulation causes heap-based buffer overflow. The identification of this vulnerability is CVE-2026-31659. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 6.2.10. This affects the function __ip6_make_skb in the library arch/x86/include/asm/atomic64_64.h of the component ipv6. The manipulation leads to use of uninitialized variable. This vulnerability is documented as CVE-2023-54265. The attack requires being on the local network. There is not any exploit available. It is advisable to upgrade the affected component.

A vulnerability described as critical has been identified in Linux Kernel up to 6.4.9. The impacted element is the function sb_getblk of the component sysv. The manipulation results in null pointer dereference. This vulnerability is cataloged as CVE-2023-54264. The attack must originate from the local network. There is no exploit available. Upgrading the affected component is recommended.

A vulnerability was found in Linux Kernel up to 6.1.27/6.2.14/6.3.1. It has been declared as critical. This vulnerability affects the function mlx5e_clone_flow_attr_for_post_act. The manipulation results in use after free. This vulnerability is identified as CVE-2023-54262. The attack can only be performed from the local network. There is not any exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.5.3. It has been rated as critical. This issue affects the function mqd_stride of the component amdkfd. This manipulation causes null pointer dereference. This vulnerability is tracked as CVE-2023-54261. The attack is only possible within the local network. No exploit exists. Upgrading the affected component is advised.

A vulnerability identified as critical has been detected in Linux Kernel up to 6.2.2. This issue affects the function smbd_destroy of the component cifs. Performing a manipulation results in allocation of resources. This vulnerability is identified as CVE-2023-54260. The attack can only be performed from the local network. There is not any exploit available. You should upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.15.127/6.1.46/6.4.11 and classified as problematic. Affected by this issue is the function oplock_response of the component cifs. Executing a manipulation can lead to privilege escalation. The identification of this vulnerability is CVE-2023-54258. The attack needs to be done within the local network. There is no exploit available. It is suggested to upgrade the affected component.

A vulnerability labeled as critical has been found in Linux Kernel up to 6.1.29/6.3.3. The impacted element is the function pm_runtime_put. Executing a manipulation can lead to unchecked return value. This vulnerability is registered as CVE-2023-54259. The attack requires access to the local network. No exploit is available. The affected component should be upgraded.

A vulnerability classified as critical has been found in Linux Kernel up to 6.2.11. Affected by this vulnerability is an unknown functionality of the component net. Performing a manipulation results in memory corruption. This vulnerability is cataloged as CVE-2023-54257. The attack must originate from the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.4.3. It has been declared as critical. Affected by this issue is the function dma_base_addr of the component DMAC Module. The manipulation results in denial of service. This vulnerability was named CVE-2023-54255. The attack needs to be approached within the local network. There is no available exploit. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Linux Kernel up to 5.15.123/6.1.42/6.4.4. Affected is an unknown function of the component ttm. Such manipulation leads to memory leak. This vulnerability is uniquely identified as CVE-2023-54254. The attack can only be initiated within the local network. No exploit exists. You should upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.53/6.5.3 and classified as critical. Affected is the function btrfs_read_folio of the file fs/btrfs/subpage.c. Executing a manipulation can lead to reachable assertion. This vulnerability is handled as CVE-2023-54253. The attack can only be done within the local network. There is not any exploit available. It is suggested to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.15.125/6.1.44/6.4.9 and classified as critical. The affected element is the function div_s64_rem. The manipulation results in divide by zero. This vulnerability is identified as CVE-2023-54251. The attack can only be performed from the local network. There is not any exploit available. It is suggested to upgrade the affected component.

A vulnerability has been found in Linux Kernel up to 5.15.106/6.1.23/6.2.10 and classified as critical. Affected by this vulnerability is an unknown functionality. Performing a manipulation results in memory leak. This vulnerability was named CVE-2023-54252. The attack needs to be approached within the local network. There is no available exploit. The affected component should be upgraded.

A vulnerability categorized as critical has been discovered in Linux Kernel up to 5.15.144/6.1.24/6.2.11. This vulnerability affects the function decode_preauth_ctxt of the component ksmbd. Such manipulation leads to out-of-bounds read. This vulnerability is referenced as CVE-2023-54250. The attack needs to be initiated within the local network. No exploit is available. It is advisable to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.15/6.2.2. It has been classified as critical. This affects an unknown part of the component bus. The manipulation leads to null pointer dereference. This vulnerability is referenced as CVE-2023-54249. The attack needs to be initiated within the local network. No exploit is available. Upgrading the affected component is recommended.

A vulnerability was found in Linux Kernel up to 5.15.110/6.1.27/6.2.14/6.3.1. It has been rated as critical. This affects an unknown part of the component ntfs3. This manipulation causes null pointer dereference. The identification of this vulnerability is CVE-2023-54248. The attack needs to be done within the local network. There is no exploit available. Upgrading the affected component is advised.