all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

USN-6465-2: Linux kernel (Raspberry Pi) vulnerabilities

Add to bookmarks
Nov. 1, 2023, 12:39 p.m. |

Ubuntu security notices ubuntu.com

Yu Hao and Weiteng Chen discovered that the Bluetooth HCI UART driver in
the Linux kernel contained a race condition, leading to a null pointer
dereference vulnerability. A local attacker could use this to cause a
denial of service (system crash). (CVE-2023-31083)

Lin Ma discovered that the Netlink Transformation (XFRM) subsystem in the
Linux kernel contained a null pointer dereference vulnerability in some
situations. A local privileged attacker could use this to cause a denial of
service (system crash). (CVE-2023-3772)

attacker bluetooth chen crash cve denial of service driver hci kernel linux linux kernel local netlink race race condition raspberry service subsystem system transformation usn vulnerabilities vulnerability

Visit resource

More from ubuntu.com / Ubuntu security notices

USN-6754-1: nghttp2 vulnerabilities 1 day, 15 hours ago | ubuntu.com
attacker cve denial of service http +10
USN-6753-1: CryptoJS vulnerability 1 day, 16 hours ago | ubuntu.com
attacker configuration cryptographic default +11
USN-6751-1: Zabbix vulnerabilities 1 day, 17 hours ago | ubuntu.com
attacker attacks cross-site cross-site scripting (xss) attacks +11
USN-6752-1: FreeRDP vulnerabilities 1 day, 23 hours ago | ubuntu.com
attacker crash denial of service issue +7
USN-6750-1: Thunderbird vulnerabilities 2 days, 10 hours ago | ubuntu.com
arbitrary code attacker browsing bypass +19
USN-6743-3: Linux kernel (Azure) vulnerabilities 2 days, 14 hours ago | ubuntu.com
attacker azure bpf compromise +16
USN-6657-2: Dnsmasq vulnerabilities 2 days, 17 hours ago | ubuntu.com
advisory attacker dnsmasq dnssec +10
USN-6749-1: FreeRDP vulnerabilities 2 days, 20 hours ago | ubuntu.com
arbitrary code attacker code context +12
USN-6748-1: Sanitize vulnerabilities 3 days, 8 hours ago | ubuntu.com
attack attacker cross-site cve +9

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Open-Source Intelligence (OSINT) Policy Analyst (TS/SCI)

@ WWC Global | Reston, Virginia, United States
View on infosec-jobs.com

Security Architect (DevSecOps)

@ EUROPEAN DYNAMICS | Brussels, Brussels, Belgium
View on infosec-jobs.com

Infrastructure Security Architect

@ Ørsted | Kuala Lumpur, MY
View on infosec-jobs.com

Contract Penetration Tester

@ Evolve Security | United States - Remote
View on infosec-jobs.com

Senior Penetration Tester

@ DigitalOcean | Canada
View on infosec-jobs.com
View more jobs