Debian Linux Kernel Multiple Vulnerabilities

Multiple vulnerabilities were identified in Debian Linux Kernel. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, elevation of privilege and sensitive information disclosure on the targeted system.

Note:

Exploit in the wild has been detected for CVE-2024-36971. The vulnerability potentially allows an attacker with System execution privileges to perform remote code execution in kernel. The risk level is rated to High Risk.

Exploit in the wild has been detected for CVE-2023-0386. Unauthorized access to the execution of the setuid file with capabilities was found in the Linux kernel’s OverlayFS subsystem in how a user copies a capable file from a nosuid mount into another mount. The vulnerability potentially allows a local attacker to escalate the privileges on the targeted system.

[Updated on 2024-07-16]

Updated System / Technologies affected, Solutions, Vulnerability Identifier and Related Links.

[Updated on 2024-07-17]

Updated System / Technologies affected, Solutions, Vulnerability Identifier and Related Links.

[Updated on 2024-08-12] 

Updated Risk Level

[Updated on 2024-08-13] 

Updated System / Technologies affected, Solutions, Vulnerability Identifier and Related Links.

[Updated on 2025-06-18] 

Updated Description and Related Links.