CVEFinder.io

CVE-2023-4134

đŸ”ļ medium
Summary

A use-after-free vulnerability was found in the cyttsp4_core driver in the Linux kernel. This issue occurs in the device cleanup routine due to a possible rearming of the watchdog_timer from the workqueue. This could allow a local user to crash the system, causing a denial of service.

CVSS Score
5.5
Medium
EPSS Score
0.0
Exploit Probability
Published Date
2024-11-14
First Seen: 2026-01-05
Last Modified 2024-11-18
Source NVD 🔗
CVSS Vector 3.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CWE IDs (Weakness Types)
CWE-416

🔗 References 2

https://access.redhat.com/security/cve/CVE-2023-4134
Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2221700
Issue Tracking Patch Third Party Advisory

đŸ“Ļ Affected Products 2

Vendor Product Status Affected Versions
linux linux_kernel Affected
< 6.5
fedoraproject fedora Affected
v38

🔗 Related CVEs 6

CVE ID Severity CVSS EPSS Summary Published
CVE-2025-39966 đŸ”ļ medium 4.7 0.0 In the Linux kernel, the following vulnerability has been resolved: iommufd: Fix race during abort for file descriptors... 2025-10-15
CVE-2025-39967 đŸ”ļ medium 5.5 0.0 In the Linux kernel, the following vulnerability has been resolved: fbcon: fix integer overflow in fbcon_do_set_font F... 2025-10-15
CVE-2025-39964 ℹī¸ low 3.3 0.0 In the Linux kernel, the following vulnerability has been resolved: crypto: af_alg - Disallow concurrent writes in af_a... 2025-10-13
CVE-2025-39965 ⚠ī¸ high 7.8 0.0 In the Linux kernel, the following vulnerability has been resolved: xfrm: xfrm_alloc_spi shouldn't use 0 as SPI x->id.... 2025-10-13
CVE-2025-39954 đŸ”ļ medium 5.5 0.0 In the Linux kernel, the following vulnerability has been resolved: clk: sunxi-ng: mp: Fix dual-divider clock rate read... 2025-10-09
CVE-2025-39955 ⚠ī¸ high 7.8 0.0 In the Linux kernel, the following vulnerability has been resolved: tcp: Clear tcp_sk(sk)->fastopen_rsk in tcp_disconne... 2025-10-09
These CVEs affect the same products