{"schema_version":"1.7.2","id":"OESA-2023-1216","modified":"2023-04-14T11:05:08Z","published":"2023-04-14T11:05:08Z","upstream":["CVE-2023-1611","CVE-2023-1670","CVE-2023-1859"],"summary":"kernel security update","details":"The Linux Kernel, the operating system core itself.\r\n\r\nSecurity Fix(es):\r\n\r\nA use-after-free flaw was found in btrfs_search_slot in fs/btrfs/ctree.c in btrfs in the Linux Kernel.This flaw allows an attacker to crash the system and possibly cause a kernel information lea(CVE-2023-1611)\r\n\r\nA flaw use after free in the Linux kernel Xircom 16-bit PCMCIA (PC-card) Ethernet driver was found.A local user could use this flaw to crash the system or potentially escalate their privileges on the system.(CVE-2023-1670)\r\n\r\nA use-after-free flaw was found in xen_9pfs_front_removet in net/9p/trans_xen.c in Xen transport for 9pfs in the Linux Kernel. This flaw could allow a local attacker to crash the system due to a race problem, possibly leading to a kernel information leak.(CVE-2023-1859)","affected":[{"package":{"ecosystem":"openEuler:22.03-LTS-SP1","name":"kernel","purl":"pkg:rpm/openEuler/kernel\u0026distro=openEuler-22.03-LTS-SP1"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.10.0-136.28.0.104.oe2203sp1"}]}],"ecosystem_specific":{"aarch64":["kernel-tools-devel-5.10.0-136.28.0.104.oe2203sp1.aarch64.rpm","bpftool-5.10.0-136.28.0.104.oe2203sp1.aarch64.rpm","kernel-tools-5.10.0-136.28.0.104.oe2203sp1.aarch64.rpm","python3-perf-debuginfo-5.10.0-136.28.0.104.oe2203sp1.aarch64.rpm","kernel-source-5.10.0-136.28.0.104.oe2203sp1.aarch64.rpm","kernel-debugsource-5.10.0-136.28.0.104.oe2203sp1.aarch64.rpm","kernel-headers-5.10.0-136.28.0.104.oe2203sp1.aarch64.rpm","perf-debuginfo-5.10.0-136.28.0.104.oe2203sp1.aarch64.rpm","bpftool-debuginfo-5.10.0-136.28.0.104.oe2203sp1.aarch64.rpm","kernel-5.10.0-136.28.0.104.oe2203sp1.aarch64.rpm","kernel-tools-debuginfo-5.10.0-136.28.0.104.oe2203sp1.aarch64.rpm","perf-5.10.0-136.28.0.104.oe2203sp1.aarch64.rpm","kernel-devel-5.10.0-136.28.0.104.oe2203sp1.aarch64.rpm","python3-perf-5.10.0-136.28.0.104.oe2203sp1.aarch64.rpm","kernel-debuginfo-5.10.0-136.28.0.104.oe2203sp1.aarch64.rpm"],"src":["kernel-5.10.0-136.28.0.104.oe2203sp1.src.rpm"],"x86_64":["perf-5.10.0-136.28.0.104.oe2203sp1.x86_64.rpm","perf-debuginfo-5.10.0-136.28.0.104.oe2203sp1.x86_64.rpm","kernel-debugsource-5.10.0-136.28.0.104.oe2203sp1.x86_64.rpm","python3-perf-debuginfo-5.10.0-136.28.0.104.oe2203sp1.x86_64.rpm","kernel-tools-devel-5.10.0-136.28.0.104.oe2203sp1.x86_64.rpm","python3-perf-5.10.0-136.28.0.104.oe2203sp1.x86_64.rpm","kernel-headers-5.10.0-136.28.0.104.oe2203sp1.x86_64.rpm","kernel-tools-5.10.0-136.28.0.104.oe2203sp1.x86_64.rpm","bpftool-debuginfo-5.10.0-136.28.0.104.oe2203sp1.x86_64.rpm","kernel-5.10.0-136.28.0.104.oe2203sp1.x86_64.rpm","bpftool-5.10.0-136.28.0.104.oe2203sp1.x86_64.rpm","kernel-source-5.10.0-136.28.0.104.oe2203sp1.x86_64.rpm","kernel-devel-5.10.0-136.28.0.104.oe2203sp1.x86_64.rpm","kernel-debuginfo-5.10.0-136.28.0.104.oe2203sp1.x86_64.rpm","kernel-tools-debuginfo-5.10.0-136.28.0.104.oe2203sp1.x86_64.rpm"]}}],"references":[{"type":"ADVISORY","url":"https://www.openeuler.org/en/security/safety-bulletin/detail.html?id=openEuler-SA-2023-1216"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-1611"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-1670"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-1859"}],"database_specific":{"severity":"High"}}