Linux Kernel CVE Statistics
11 Linux Kernel CVEs in December 2023
Full month · Source: NIST NVD
In December 2023, 11 Linux kernel CVEs were published, sourced from the NIST National Vulnerability Database. Of these, 6 were rated High severity and 5 Medium. No CVEs from this month have been confirmed as actively exploited via the CISA KEV catalog. December's 11 CVEs represent 4% of all 2023 Linux kernel CVEs , down from November's 16 (a 31% month-over-month decrease) .
11
Total CVEs
0
Critical
6
High
5
Medium
0
Low
0
KEV Exploited
All CVEs — December 2023
11 CVEs
| CVE ID | Package | Severity | CVSS | Published | Description | |
|---|---|---|---|---|---|---|
| CVE-2023-6817 | linux | High | 7.8 | 2023-12-18 | A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local p… | |
| CVE-2023-6606 | linux | High | 7.1 | 2023-12-08 | An out-of-bounds read vulnerability was found in smbCalcSize in fs/smb/client/netmisc.c in the Linux Kernel. This issue… | |
| CVE-2023-6610 | linux | High | 7.1 | 2023-12-08 | An out-of-bounds read vulnerability was found in smb2_dump_detail in fs/smb/client/smb2ops.c in the Linux Kernel. This … | |
| CVE-2023-6546 | linux | High | 7.0 | 2023-12-21 | A race condition was found in the GSM 0710 tty multiplexor in the Linux kernel. This issue occurs when two threads exec… | |
| CVE-2023-6932 | linux | High | 7.0 | 2023-12-19 | A use-after-free vulnerability in the Linux kernel's ipv4: igmp component can be exploited to achieve local privilege e… | |
| CVE-2023-6931 | linux | High | 7.0 | 2023-12-19 | A heap out-of-bounds write vulnerability in the Linux kernel's Performance Events system component can be exploited to … | |
| CVE-2023-7042 | linux | Medium | 5.5 | 2023-12-21 | A null pointer dereference vulnerability was found in ath10k_wmi_tlv_op_pull_mgmt_tx_compl_ev() in drivers/net/wireless… | |
| CVE-2023-6679 | linux | Medium | 5.5 | 2023-12-11 | A null pointer dereference vulnerability was found in dpll_pin_parent_pin_set() in drivers/dpll/dpll_netlink.c in the D… | |
| CVE-2023-6560 | linux | Medium | 5.5 | 2023-12-09 | An out-of-bounds memory access flaw was found in the io_uring SQ/CQ rings functionality in the Linux kernel. This issue… | |
| CVE-2023-50431 | linux | Medium | 5.5 | 2023-12-09 | sec_attest_info in drivers/accel/habanalabs/common/habanalabs_ioctl.c in the Linux kernel through 6.6.5 allows an infor… | |
| CVE-2023-6622 | linux | Medium | 5.5 | 2023-12-08 | A null pointer dereference vulnerability was found in nft_dynset_init() in net/netfilter/nft_dynset.c in nf_tables in t… |