RED HAT Red Hat Enterprise Linux 8.4 Telecommunications Update Service v0:4.18.0-305.125.1.rt7.201.el8_4 - 3 CVEs

CVE-2024-0646

An out-of-bounds memory write flaw was found in the Linux kernel’s Transport Layer Security functionality in how a user calls a function splice with a ktls socket as the destination. This flaw allows a local user to crash or potentially escalate their privileges on the system.

UNKNOWN CVSS 7.0 Published Jan 17, 2024

CVE-2023-7192

A memory leak problem was found in ctnetlink_create_conntrack in net/netfilter/nf_conntrack_netlink.c in the Linux Kernel. This issue may allow a local attacker with CAP_NET_ADMIN privileges to cause a denial of service (DoS) attack due to a refcount overflow.

UNKNOWN CVSS 5.5 Published Jan 02, 2024

CVE-2023-4459

A NULL pointer dereference flaw was found in vmxnet3_rq_cleanup in drivers/net/vmxnet3/vmxnet3_drv.c in the networking sub-component in vmxnet3 in the Linux Kernel. This issue may allow a local attacker with normal user privilege to cause a denial of service due to a missing sanity check during cleanup.

UNKNOWN CVSS 5.5 Published Aug 21, 2023

Version 0:4.18.0-305.125.1.rt7.201.el8_4

Known Vulnerabilities

CVE-2024-0646

CVE-2023-7192

CVE-2023-4459