Description

A flaw use after free in the Linux kernel Xircom 16-bit PCMCIA (PC-card) Ethernet driver was found.A local user could use this flaw to crash the system or potentially escalate their privileges on the system.

Related CPE's

o

linux

linux_kernel

7

References

https://lists.debian.org/debian-lts-announce/2023/05/msg00005.html

Mailing ListThird Party Advisory

https://lists.debian.org/debian-lts-announce/2023/05/msg00006.html

Mailing ListThird Party Advisory

https://lore.kernel.org/all/20230316161526.1568982-1-zyytlz.wz%40163.com/

https://security.netapp.com/advisory/ntap-20230526-0010/

Third Party Advisory

https://lists.debian.org/debian-lts-announce/2023/05/msg00005.html

Mailing ListThird Party Advisory

https://lists.debian.org/debian-lts-announce/2023/05/msg00006.html

Mailing ListThird Party Advisory

https://lore.kernel.org/all/20230316161526.1568982-1-zyytlz.wz%40163.com/

https://security.netapp.com/advisory/ntap-20230526-0010/

Third Party Advisory

Weaknesses

[email protected]

Secondary
CWE-416

[email protected]

Primary
CWE-416

CVSS impact metrics

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.8 · High

  • CVSS V3.1

  • CVSS V3.0

  • CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Modified

Published

2023-03-30T23:15:06.413

2 years ago

Last modified

2025-02-14T16:15:32.807

4 months ago