CVE-2023-26545

MEDIUM Year: 2023
CVSS v3 Score
4.7
Medium
Weakness Type
CWE-415
View all →

Vulnerability Description

In the Linux kernel before 6.1.13, there is a double free in net/mpls/af_mpls.c upon an allocation failure (for registering the sysctl table under a new location) during the renaming of a device.

Related Vulnerabilities

CVE-2019-15212

MEDIUM
CVSS:4.6(Medium)

An issue was discovered in the Linux kernel before 5.1.8. There is a double-free caused by a malicious USB device in the drivers/usb/misc/rio500.c driver.

CWE-4152019

CVE-2021-25477

MEDIUM
CVSS:4.9(Medium)

An improper error handling in Mediatek RRC Protocol stack prior to SMR Oct-2021 Release 1 allows modem crash and remote denial of service.

CWE-4152021

CVE-2023-7256

MEDIUM
CVSS:4.4(Medium)

In affected libpcap versions during the setup of a remote packet capture the internal function sock_initaddress() calls getaddrinfo() and possibly freeaddrinfo(), but does not clearly indicate to the ...

CWE-4152023

CVE-2024-26846

MEDIUM
CVSS:4.4(Medium)

In the Linux kernel, the following vulnerability has been resolved: nvme-fc: do not wait in vain when unloading module The module exit path has race between deleting all controllers and freeing 'left ...

CWE-4152024

CVE-2024-42123

MEDIUM
CVSS:4.4(Medium)

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix double free err_addr pointer warnings In amdgpu_umc_bad_page_polling_timeout, the amdgpu_umc_handle_bad_pages will b...

CWE-4152024

CVE-2018-7523

MEDIUM
CVSS:5.3(Medium)

In Omron CX-Supervisor Versions 3.30 and prior, parsing malformed project files may cause a double free vulnerability.

CWE-4152018