VulnerableCode Package Details - pkg:rpm/redhat/kernel@4.18.0-147.90.1?arch=el8

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:rpm/redhat/kernel@4.18.0-147.90.1?arch=el8_1

purl	pkg:rpm/redhat/kernel@4.18.0-147.90.1?arch=el8_1

Next non-vulnerable version	None.
Latest non-vulnerable version	None.
Risk	3.5

Vulnerabilities affecting this package (3)

Vulnerability	Summary	Fixed by
VCID-mza3-5d1d-byfs Aliases: CVE-2023-3390	kernel: UAF in nftables when nft_set_lookup_global triggered after handling named and anonymous sets in batch requests	There are no reported fixed by versions.
VCID-n89e-y6eu-4ucf Aliases: CVE-2023-4128	kernel: net/sched: Use-after-free vulnerabilities in the net/sched classifiers: cls_fw, cls_u32 and cls_route	There are no reported fixed by versions.
VCID-zvkd-p15d-7bde Aliases: CVE-2023-35001	kernel: nf_tables: stack-out-of-bounds-read in nft_byteorder_eval()	There are no reported fixed by versions.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-01T13:53:47.174921+00:00	RedHat Importer	Affected by	VCID-mza3-5d1d-byfs	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-3390.json	38.0.0
2026-04-01T13:53:32.317676+00:00	RedHat Importer	Affected by	VCID-zvkd-p15d-7bde	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-35001.json	38.0.0
2026-04-01T13:53:16.722558+00:00	RedHat Importer	Affected by	VCID-n89e-y6eu-4ucf	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-4128.json	38.0.0