CVE-2023-52746

LOW Year: 2023
CVSS v3 Score
2.5
Low
Weakness Type
CWE-401
View all →

Vulnerability Description

In the Linux kernel, the following vulnerability has been resolved: xfrm/compat: prevent potential spectre v1 gadget in xfrm_xlate32_attr() int type = nla_type(nla); if (type > XFRMA_MAX) { return -EOPNOTSUPP; } @type is then used as an array index and can be used as a Spectre v1 gadget. if (nla_len(nla) < compat_policy[type].len) { array_index_nospec() can be used to prevent leaking content of kernel memory to malicious users.

Related Vulnerabilities

CVE-2019-20386

LOW
CVSS:2.4(Low)

An issue was discovered in button_open in login/logind-button.c in systemd before 243. When executing the udevadm trigger command, a memory leak may occur.

CWE-4012019

CVE-2020-8991

LOW
CVSS:2.3(Low)

vg_lookup in daemons/lvmetad/lvmetad-core.c in LVM2 2.02 mismanages memory, leading to an lvmetad memory leak, as demonstrated by running pvs. NOTE: RedHat disputes CVE-2020-8991 as not being a vulner...

CWE-4012020

CVE-2025-1148

LOW
CVSS:3.1(Low)

A vulnerability was found in GNU Binutils 2.43 and classified as problematic. Affected by this issue is the function link_order_scan of the file ld/ldelfgen.c of the component ld. The manipulation lea...

CWE-4012025

CVE-2025-1149

LOW
CVSS:3.1(Low)

A vulnerability was found in GNU Binutils 2.43. It has been classified as problematic. This affects the function xstrdup of the file libiberty/xmalloc.c of the component ld. The manipulation leads to ...

CWE-4012025

CVE-2025-1150

LOW
CVSS:3.1(Low)

A vulnerability was found in GNU Binutils 2.43. It has been declared as problematic. This vulnerability affects the function bfd_malloc of the file libbfd.c of the component ld. The manipulation leads...

CWE-4012025

CVE-2025-1151

LOW
CVSS:3.1(Low)

A vulnerability was found in GNU Binutils 2.43. It has been rated as problematic. This issue affects the function xmemdup of the file xmemdup.c of the component ld. The manipulation leads to memory le...

CWE-4012025