{"vulnerability": "cve-2023-0458", "sightings": [{"uuid": "f42826fb-3558-4c63-aeb8-d4b66e5de3bf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-0458", "type": "published-proof-of-concept", "source": "https://t.me/RespaldoHackingTeam/1397", "content": "\ud83d\udd25Linux Kernel: Spectre-v1 gadgets( CVE-2023-0458 & CVE-2023-0459, PoC included )\nDetected a few exploitable gadgets that could leak secret memory through a side-channel such as MDS as well as insufficient hardening of the usercopy functions against spectre-v1.\n\n\u26a0\ufe0fThese vulnerabilities could be exploited to leak secret memory", "creation_timestamp": "2023-04-19T08:40:50.000000Z"}, {"uuid": "ce7f3aee-b119-4a08-bb19-7d760866676e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-0458", "type": "seen", "source": "https://t.me/cibsecurity/62929", "content": "\u203c CVE-2023-0458 \u203c\n\nA speculative pointer dereference problem exists in the Linux Kernel on the do_prlimit() function. The resource argument value is controlled and is used in pointer arithmetic for the 'rlim' variable and can be used to leak the contents. We recommend upgrading past version 6.1.8 or commit\u00c2\u00a0739790605705ddcf18f21782b9c99ad7d53a8c11\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-04-26T22:25:47.000000Z"}]}