PT-2023-6928 · Linux+6 · Linux Kernel+6

Rohit Keshri

Published

2023-07-26

Updated

2026-03-13

CVE-2023-6039

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux Kernel (affected versions not specified)

Description A use-after-free flaw was found in the lan78xx disconnect function in drivers/net/usb/lan78xx.c in the network sub-component net/usb/lan78xx of the Linux Kernel. This issue allows a local attacker to crash the system when the LAN78XX USB device detaches.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

ALT-PU-2024-14046

ALT-PU-2024-6818

AZL-31958

BDU:2023-07947

CVE-2023-6039

ECHO-7093-57A5-9181

OPENSUSE-SU-2023_4730-1

OPENSUSE-SU-2023_4731-1

OPENSUSE-SU-2023_4732-1

OPENSUSE-SU-2023_4734-1

OPENSUSE-SU-2023_4782-1

SUSE-SU-2023:4730-1

SUSE-SU-2023:4731-1

SUSE-SU-2023:4732-1

SUSE-SU-2023:4734-1

SUSE-SU-2023:4782-1

SUSE-SU-2023:4810-1

USN-6534-1

USN-6534-2

USN-6534-3

USN-6626-1

USN-6626-2

USN-6626-3

USN-6628-1

USN-6628-2

USN-6706-1

Affected Products

Alt Linux

Astra Linux

Debian

Linux Kernel

Linuxmint

Suse

Ubuntu

PT-2023-6928 · Linux+6 · Linux Kernel+6

CVE-2023-6039

Weakness Enumeration

Related Identifiers

Affected Products

References · 145