Chengfeng Ye

3 exploits Active since Jun 2023
CVE-2023-3159 WRITEUP MEDIUM WRITEUP
Linux Kernel < 5.18 - Use-After-Free in Firewire Driver
A use after free issue was discovered in driver/firewire in outbound_phy_packet_callback in the Linux Kernel. In this flaw a local attacker with special privilege may cause a use after free problem when queue_event() fails.
CVSS 6.7
CVE-2024-0639 WRITEUP MEDIUM WRITEUP
Linux Kernel < 6.4.16 - Denial of Service via SCTP Auto-ASCONF Deadlock
A denial of service vulnerability due to a deadlock was found in sctp_auto_asconf_init in net/sctp/socket.c in the Linux kernel’s SCTP subsystem. This flaw allows guests with local user privileges to trigger a deadlock and potentially crash the system.
CVSS 5.5
CVE-2024-0641 WRITEUP MEDIUM WRITEUP
Linux Kernel < 6.6 - Denial of Service via TIPC Crypto Key Revocation Deadlock
A denial of service vulnerability was found in tipc_crypto_key_revoke in net/tipc/crypto.c in the Linux kernel’s TIPC subsystem. This flaw allows guests with local user privileges to trigger a deadlock and potentially crash the system.
CVSS 5.5