

Rewterz Threat Alert – APT-C-35 aka Donot APT Group – Active IOCs
March 2, 2023
Rewterz Threat Advisory –ICS: Multiple Hitachi Products Vulnerabilities
March 2, 2023
Rewterz Threat Alert – APT-C-35 aka Donot APT Group – Active IOCs
March 2, 2023
Rewterz Threat Advisory –ICS: Multiple Hitachi Products Vulnerabilities
March 2, 2023Severity
Medium
Analysis Summary
CVE-2023-1079 CVSS:4.6
Linux Kernel is vulnerable to a denial of service, caused by a use-after-free flaw flaw in the asus_kbd_backlight_set function. By using a specially-crafted USB device, a physical attacker could exploit this vulnerability to cause a denial of service condition.
CVE-2023-1077 CVSS:6.2
Linux Kernel is vulnerable to a denial of service, caused by a type confusion flaw in the pick_next_rt_entity() function in the RT scheduling stack. By sending a specially-crafted request, a local attacker could exploit this vulnerability to cause a denial of service condition.
CVE-2023-1076 CVSS:6.2
Linux Kernel is vulnerable to a denial of service, caused by a type confusion flaw in the initialization of TUN/TAP sockets. By sending a specially-crafted request, a local attacker could exploit this vulnerability to cause a denial of service condition.
CVE-2023-1075 CVSS:6.2
Linux Kernel is vulnerable to a denial of service, caused by a type confusion flaw in the net/tls stack. By sending a specially-crafted request, a local attacker could exploit this vulnerability to cause a denial of service condition.
Impact
- Denial of Service
Indicators Of Compromise
CVE
- CVE-2023-1079
- CVE-2023-1077
- CVE-2023-1076
- CVE-2023-1075
Affected Vendors
Linux
Affected Products
- Linux Kernel
Remediation
Refer to Linux Kernel GIT Repository for patch, upgrade or suggested workaround information.