QID 355536

a flaw was found in the x86 kvm subsystem in kvm_steal_time_set_preempted in arch/x86/kvm/x86.c in the linux kernel.
Unprivileged guest users can compromise the guest kernel because tlb flush operations are mishandled in certain kvm_vcpu_preempted situations. (
( CVE-2022-39189) a denial of service problem was found, due to a possible recursive locking scenario, resulting in a deadlock in table_clear in drivers/md/dm-ioctl.c in the linux kernel device mapper-multipathing sub-component. (
( CVE-2023-2269) a use after free vulnerability was found in prepare_to_relocate in fs/btrfs/relocation.c in btrfs in the linux kernel.
This possible flaw can be triggered by calling btrfs_ioctl_balance() before calling btrfs_ioctl_defrag(). (
( CVE-2023-3111) a use-after-free flaw was found in r592_remove in drivers/memstick/host/r592.c in media access in the linux kernel.
This flaw allows a local attacker to crash the system at device disconnect, possibly leading to a kernel information leak. (
( CVE-2023-3141) an out of bounds (oob) memory access flaw was found in the linux kernel in relay_file_read_start_pos in kernel/relay.c in the relayfs.
This flaw could allow a local attacker to crash the system or leak kernel internal information. (
( CVE-2023-3268) an issue was discovered in the linux kernel before 6.3.3.
There is an out-of-bounds read in crc16 in lib/crc16.c when called from fs/ext4/super.c because ext4_group_desc_csum does not properly check an offset. (

Successful exploitation of this vulnerability could lead to a securitybreach or could affect integrity, availability, and confidentiality.