[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2023-0266":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":20,"aliases":21,"duplicate_of":9,"upstream":22,"downstream":23,"duplicates":158,"related":159,"reserved_at":9,"published_at":183,"modified_at":184,"state":185,"summary":186,"references_raw":197,"kevs":225,"epss":236,"epss_history":239,"metrics":508,"affected":519},"CVE-2023-0266","A use after free vulnerability exists in the ALSA PCM package in the Linux Kernel. SNDRV_CTL_IOCTL_ELEM_{READ|WRITE}32 is missing locks that can be used in a use-after-free that can result in a priviledge escalation to gain ring0 access from the system user. We recommend upgrading past commit 56b88b50565cd8b946a2d00b0c83927b7ebb055e",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-416","Use After Free","The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory \"belongs\" to the code that operates on the new pointer.","weakness","Stable","Variant","High",[],[],[],[],[24,26,28,30,32,34,36,38,40,42,44,46,48,50,52,54,56,58,60,62,64,66,68,70,72,74,76,78,80,82,84,86,88,90,92,94,96,98,100,102,104,106,108,110,112,114,116,118,120,122,124,126,128,130,132,134,136,138,140,142,144,146,148,150,152,154,156],{"_key":25},"SUSE-SU-2023:0406-1",{"_key":27},"SUSE-SU-2023:0485-1",{"_key":29},"SUSE-SU-2023:0618-1",{"_key":31},"SUSE-SU-2023:0634-1",{"_key":33},"SUSE-SU-2023:0779-1",{"_key":35},"SUSE-SU-2023:1576-1",{"_key":37},"SUSE-SU-2023:1591-1",{"_key":39},"SUSE-SU-2023:1592-1",{"_key":41},"SUSE-SU-2023:1595-1",{"_key":43},"SUSE-SU-2023:1602-1",{"_key":45},"SUSE-SU-2023:1619-1",{"_key":47},"SUSE-SU-2023:1639-1",{"_key":49},"SUSE-SU-2023:1640-1",{"_key":51},"SUSE-SU-2023:1647-1",{"_key":53},"SUSE-SU-2023:1649-1",{"_key":55},"SUSE-SU-2023:1653-1",{"_key":57},"SUSE-SU-2023:1708-1",{"_key":59},"SUSE-SU-2023:0152-1",{"_key":61},"SUSE-SU-2023:0394-1",{"_key":63},"SUSE-SU-2023:0433-1",{"_key":65},"SUSE-SU-2023:0488-1",{"_key":67},"RHSA-2023:1469",{"_key":69},"RHSA-2023:1471",{"_key":71},"RHSA-2023:1588",{"_key":73},"RHSA-2023:1590",{"_key":75},"DLA-3349-1",{"_key":77},"DLA-3403-1",{"_key":79},"DSA-5324-1",{"_key":81},"MGASA-2023-0007",{"_key":83},"MGASA-2023-0008",{"_key":85},"RHSA-2023:1470",{"_key":87},"DEBIAN-CVE-2023-0266",{"_key":89},"RHSA-2023:1202",{"_key":91},"RHSA-2023:1203",{"_key":93},"RHSA-2023:1435",{"_key":95},"RHSA-2023:1554",{"_key":97},"RHSA-2023:1556",{"_key":99},"RHSA-2023:1557",{"_key":101},"RHSA-2023:1559",{"_key":103},"RHSA-2023:1560",{"_key":105},"RHSA-2023:1566",{"_key":107},"RHSA-2023:1584",{"_key":109},"RHSA-2023:1659",{"_key":111},"RHSA-2023:1660",{"_key":113},"RHSA-2023:1662",{"_key":115},"RHSA-2023:1666",{"_key":117},"RHSA-2023:1677",{"_key":119},"UBUNTU-CVE-2023-0266",{"_key":121},"USN-5981-1",{"_key":123},"USN-5984-1",{"_key":125},"USN-5991-1",{"_key":127},"USN-6009-1",{"_key":129},"USN-6030-1",{"_key":131},"USN-5915-1",{"_key":133},"USN-5917-1",{"_key":135},"USN-5924-1",{"_key":137},"USN-5927-1",{"_key":139},"USN-5934-1",{"_key":141},"USN-5939-1",{"_key":143},"USN-5940-1",{"_key":145},"USN-5951-1",{"_key":147},"USN-5975-1",{"_key":149},"USN-5979-1",{"_key":151},"USN-5982-1",{"_key":153},"USN-5987-1",{"_key":155},"USN-6000-1",{"_key":157},"USN-6004-1",[],[160,161,162,163,164,165,166,167,168,169,170,171,172,173,174,175,176,177,178,179,180,181,182],{"_key":25},{"_key":27},{"_key":29},{"_key":31},{"_key":33},{"_key":35},{"_key":37},{"_key":39},{"_key":41},{"_key":43},{"_key":45},{"_key":47},{"_key":49},{"_key":51},{"_key":53},{"_key":55},{"_key":57},{"_key":59},{"_key":61},{"_key":63},{"_key":65},{"_key":81},{"_key":83},"2023-01-30T13:09:32.141Z","2025-10-21T23:15:27.844Z","Analyzed",{"cisa_kev":187,"cisa_ransomware":188,"cisa_vendor":189,"epss_severity":190,"epss_score":191,"severity":192,"severity_score":193,"severity_version":194,"severity_source":195,"severity_vector":196,"severity_status":185},true,false,"Linux","low",0.00178,"high",7.9,"v3.1","cve.org","CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:H",[198,204,210,214,219],{"url":199,"sources":200,"tags":202},"https://github.com/torvalds/linux/commit/becf9e5d553c2389d857a3c178ce80fdb34a02e1",[195,201],"nvd",[203],"Patch",{"url":205,"sources":206,"tags":207},"https://git.kernel.org/pub/scm/linux/kernel/git/stable/stable-queue.git/tree/queue-5.10/alsa-pcm-move-rwsem-lock-inside-snd_ctl_elem_read-to-prevent-uaf.patch?id=72783cf35e6c55bca84c4bb7b776c58152856fd4",[195,201],[208,203,209],"Mailing List","Vendor Advisory",{"url":211,"sources":212,"tags":213},"https://github.com/torvalds/linux/commit/56b88b50565cd8b946a2d00b0c83927b7ebb055e",[195,201],[203],{"url":215,"sources":216,"tags":217},"https://lists.debian.org/debian-lts-announce/2023/05/msg00006.html",[195,201],[208,218],"Third Party Advisory",{"url":220,"sources":221,"tags":222},"https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-0266",[195,201],[223,224],"Government Resource","US Government Resource",[226],{"source":227,"vendor":189,"product":228,"date_added":229,"vulnerability_name":230,"short_description":231,"required_action":232,"due_date":233,"known_ransomware_campaign_use":234,"notes":235,"exploitation_type":9},"cisa","Kernel","2023-03-30","Linux Kernel Use-After-Free Vulnerability","Linux kernel contains a use-after-free vulnerability that allows for privilege escalation to gain ring0 access from the system user.","Apply updates per vendor instructions.","2023-04-20","Unknown","https://git.kernel.org/pub/scm/linux/kernel/git/stable/stable-queue.git/tree/queue-5.10/alsa-pcm-move-rwsem-lock-inside-snd_ctl_elem_read-to-prevent-uaf.patch?id=72783cf35e6c55bca84c4bb7b776c58152856fd4;  https://nvd.nist.gov/vuln/detail/CVE-2023-0266",{"date":237,"score":191,"percentile":238},"2026-06-03",0.39103,[240,244,247,250,253,256,259,262,265,268,271,274,276,279,282,286,289,292,295,298,301,304,307,310,313,316,319,322,324,326,328,331,334,337,340,343,345,348,351,354,357,360,363,366,369,372,375,378,381,384,387,390,393,396,399,402,405,408,411,414,417,420,422,425,427,430,433,436,438,441,444,447,450,453,456,458,460,464,468,471,474,478,481,485,488,491,495,498,501,505],{"date":241,"score":242,"percentile":243},"2025-11-04",0.00127,0.32819,{"date":245,"score":242,"percentile":246},"2025-11-05",0.32802,{"date":248,"score":242,"percentile":249},"2025-11-06",0.32804,{"date":251,"score":242,"percentile":252},"2025-11-07",0.32822,{"date":254,"score":242,"percentile":255},"2025-11-08",0.3282,{"date":257,"score":242,"percentile":258},"2025-11-09",0.32795,{"date":260,"score":242,"percentile":261},"2025-11-10",0.32742,{"date":263,"score":242,"percentile":264},"2025-11-11",0.32766,{"date":266,"score":242,"percentile":267},"2025-11-12",0.32812,{"date":269,"score":242,"percentile":270},"2025-11-13",0.32829,{"date":272,"score":242,"percentile":273},"2025-11-14",0.32832,{"date":275,"score":242,"percentile":273},"2025-11-15",{"date":277,"score":242,"percentile":278},"2025-11-16",0.32805,{"date":280,"score":242,"percentile":281},"2025-11-17",0.32778,{"date":283,"score":284,"percentile":285},"2025-11-18",0.01154,0.76697,{"date":287,"score":284,"percentile":288},"2025-11-19",0.76704,{"date":290,"score":284,"percentile":291},"2025-11-20",0.76715,{"date":293,"score":242,"percentile":294},"2025-11-21",0.32821,{"date":296,"score":242,"percentile":297},"2025-11-22",0.32824,{"date":299,"score":242,"percentile":300},"2025-11-23",0.32794,{"date":302,"score":242,"percentile":303},"2025-11-24",0.32768,{"date":305,"score":242,"percentile":306},"2025-11-25",0.32765,{"date":308,"score":242,"percentile":309},"2025-11-26",0.32764,{"date":311,"score":242,"percentile":312},"2025-11-27",0.32772,{"date":314,"score":242,"percentile":315},"2025-11-28",0.32756,{"date":317,"score":242,"percentile":318},"2025-11-29",0.3274,{"date":320,"score":242,"percentile":321},"2025-11-30",0.32713,{"date":323,"score":242,"percentile":278},"2025-12-01",{"date":325,"score":242,"percentile":270},"2025-12-02",{"date":327,"score":242,"percentile":297},"2025-12-03",{"date":329,"score":242,"percentile":330},"2025-12-04",0.32722,{"date":332,"score":242,"percentile":333},"2025-12-05",0.32757,{"date":335,"score":242,"percentile":336},"2025-12-06",0.32761,{"date":338,"score":242,"percentile":339},"2025-12-07",0.32738,{"date":341,"score":242,"percentile":342},"2025-12-08",0.32748,{"date":344,"score":242,"percentile":258},"2025-12-09",{"date":346,"score":242,"percentile":347},"2025-12-10",0.32855,{"date":349,"score":242,"percentile":350},"2025-12-11",0.32882,{"date":352,"score":242,"percentile":353},"2025-12-12",0.32915,{"date":355,"score":242,"percentile":356},"2025-12-13",0.32895,{"date":358,"score":242,"percentile":359},"2025-12-14",0.32874,{"date":361,"score":242,"percentile":362},"2025-12-15",0.32825,{"date":364,"score":242,"percentile":365},"2025-12-16",0.32851,{"date":367,"score":242,"percentile":368},"2025-12-17",0.32909,{"date":370,"score":242,"percentile":371},"2025-12-18",0.32959,{"date":373,"score":242,"percentile":374},"2025-12-19",0.32985,{"date":376,"score":242,"percentile":377},"2025-12-20",0.32967,{"date":379,"score":242,"percentile":380},"2025-12-21",0.32908,{"date":382,"score":242,"percentile":383},"2025-12-22",0.32877,{"date":385,"score":242,"percentile":386},"2025-12-23",0.32869,{"date":388,"score":242,"percentile":389},"2025-12-24",0.32866,{"date":391,"score":242,"percentile":392},"2025-12-25",0.32933,{"date":394,"score":242,"percentile":395},"2025-12-26",0.32919,{"date":397,"score":242,"percentile":398},"2025-12-27",0.32927,{"date":400,"score":242,"percentile":401},"2025-12-28",0.3283,{"date":403,"score":242,"percentile":404},"2025-12-29",0.32796,{"date":406,"score":242,"percentile":407},"2025-12-30",0.32792,{"date":409,"score":242,"percentile":410},"2025-12-31",0.32843,{"date":412,"score":242,"percentile":413},"2026-01-01",0.32989,{"date":415,"score":242,"percentile":416},"2026-01-02",0.32978,{"date":418,"score":242,"percentile":419},"2026-01-03",0.32965,{"date":421,"score":242,"percentile":297},"2026-01-04",{"date":423,"score":242,"percentile":424},"2026-01-05",0.32811,{"date":426,"score":242,"percentile":297},"2026-01-06",{"date":428,"score":242,"percentile":429},"2026-01-07",0.32845,{"date":431,"score":242,"percentile":432},"2026-01-08",0.32872,{"date":434,"score":242,"percentile":435},"2026-01-09",0.32878,{"date":437,"score":242,"percentile":435},"2026-01-10",{"date":439,"score":242,"percentile":440},"2026-01-11",0.32857,{"date":442,"score":242,"percentile":443},"2026-01-12",0.32785,{"date":445,"score":242,"percentile":446},"2026-01-13",0.32769,{"date":448,"score":242,"percentile":449},"2026-01-14",0.32818,{"date":451,"score":242,"percentile":452},"2026-01-15",0.32813,{"date":454,"score":242,"percentile":455},"2026-01-16",0.32834,{"date":457,"score":242,"percentile":243},"2026-01-17",{"date":459,"score":242,"percentile":446},"2026-01-18",{"date":461,"score":462,"percentile":463},"2026-01-19",0.00116,0.31012,{"date":465,"score":466,"percentile":467},"2026-01-20",0.00102,0.28624,{"date":469,"score":466,"percentile":470},"2026-01-21",0.28561,{"date":472,"score":466,"percentile":473},"2026-01-22",0.28535,{"date":475,"score":476,"percentile":477},"2026-01-23",0.00098,0.27664,{"date":479,"score":476,"percentile":480},"2026-01-24",0.27654,{"date":482,"score":483,"percentile":484},"2026-01-25",0.00113,0.30475,{"date":486,"score":483,"percentile":487},"2026-01-26",0.30402,{"date":489,"score":483,"percentile":490},"2026-01-27",0.30388,{"date":492,"score":493,"percentile":494},"2026-01-28",0.00101,0.28214,{"date":496,"score":493,"percentile":497},"2026-01-29",0.28168,{"date":499,"score":493,"percentile":500},"2026-01-30",0.2816,{"date":502,"score":503,"percentile":504},"2026-01-31",0.00092,0.26134,{"date":506,"score":503,"percentile":507},"2026-02-01",0.2619,[509,514],{"source":195,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":510,"cvss_v4_0":9},{"baseScore":193,"baseSeverity":511,"vectorString":196,"impactScore":512,"exploitabilityScore":513},"HIGH",10,3.3,{"source":201,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":515,"cvss_v4_0":9},{"baseScore":4,"baseSeverity":511,"vectorString":516,"impactScore":517,"exploitabilityScore":518},"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",9.8,2.6,[520,529],{"ecosystem":9,"name":521,"vendor":522,"product":523,"cpe_part":524,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":525},"debian linux","debian","debian_linux","o",[526],{"version":527,"is_range":188,"range_type":528,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"10.0","cpe",{"ecosystem":9,"name":530,"vendor":531,"product":532,"cpe_part":524,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":533},"linux kernel","linux","linux_kernel",[534,540,544,548,552,556,560],{"version":535,"is_range":187,"range_type":528,"version_start":536,"version_start_type":537,"version_end":538,"version_end_type":539,"fixed_in":9},"gte4.14_lt4.14.303","4.14","including","4.14.303","excluding",{"version":541,"is_range":187,"range_type":528,"version_start":542,"version_start_type":537,"version_end":543,"version_end_type":539,"fixed_in":9},"gte4.15_lt4.19.270","4.15","4.19.270",{"version":545,"is_range":187,"range_type":528,"version_start":546,"version_start_type":537,"version_end":547,"version_end_type":539,"fixed_in":9},"gte4.20_lt5.4.229","4.20","5.4.229",{"version":549,"is_range":187,"range_type":528,"version_start":550,"version_start_type":537,"version_end":551,"version_end_type":539,"fixed_in":9},"gte5.5_lt5.10.163","5.5","5.10.163",{"version":553,"is_range":187,"range_type":528,"version_start":554,"version_start_type":537,"version_end":555,"version_end_type":539,"fixed_in":9},"gte5.11_lt5.15.88","5.11","5.15.88",{"version":557,"is_range":187,"range_type":528,"version_start":558,"version_start_type":537,"version_end":559,"version_end_type":539,"fixed_in":9},"gte5.16_lt6.1.6","5.16","6.1.6",{"version":561,"is_range":187,"range_type":195,"version_start":536,"version_start_type":537,"version_end":562,"version_end_type":539,"fixed_in":9},">= 4.14, \u003C 56b88b50565cd8b946a2d00b0c83927b7ebb055e","56b88b50565cd8b946a2d00b0c83927b7ebb055e"]