Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistLinuxCVELIST:CVE-2023-52801
HistoryMay 21, 2024 - 3:31 p.m.

CVE-2023-52801 iommufd: Fix missing update of domains_itree after splitting iopt_area

2024-05-2115:31:13
Linux
www.cve.org
7
linux kernel
iommufd
iopt_area
domains_itree
uaf

AI Score

6.4

Confidence

Low

EPSS

0

Percentile

15.5%

JSON

In the Linux kernel, the following vulnerability has been resolved:

iommufd: Fix missing update of domains_itree after splitting iopt_area

In iopt_area_split(), if the original iopt_area has filled a domain and is
linked to domains_itree, pages_nodes have to be properly
reinserted. Otherwise the domains_itree becomes corrupted and we will UAF.

CNA Affected

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/iommu/iommufd/io_pagetable.c"
    ],
    "versions": [
      {
        "version": "51fe6141f0f6",
        "lessThan": "836db2e7e456",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "51fe6141f0f6",
        "lessThan": "fcb32111f01d",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "51fe6141f0f6",
        "lessThan": "e7250ab7ca49",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/iommu/iommufd/io_pagetable.c"
    ],
    "versions": [
      {
        "version": "6.2",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "6.2",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.5.13",
        "lessThanOrEqual": "6.5.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.6.3",
        "lessThanOrEqual": "6.6.*",
        "status": "unaffected",
        "versionType": "custom"
      },
      {
        "version": "6.7",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Related

ubuntucve 1
nvd 1
vulnrichment 1
redhatcve 1
debiancve 1
osv 3
cve 1
nessus 6
rocky 2
oraclelinux 1
redhat 1
ubuntucve
ubuntucve
CVE-2023-52801
2024-05-21 00:00:00
nvd
nvd
CVE-2023-52801
2024-05-21 16:15:18
vulnrichment
vulnrichment
CVE-2023-52801 iommufd: Fix missing update of domains_itree after splitting iopt_area
2024-05-21 15:31:13
redhatcve
redhatcve
CVE-2023-52801
2024-05-23 11:11:11
debiancve
debiancve
CVE-2023-52801
2024-05-21 16:15:18
osv
osv
CVE-2023-52801
2024-05-21 16:15:00
Moderate: kernel security update
2024-09-17 00:57:55
Moderate: kernel security update
2024-09-17 00:55:50
cve
cve
CVE-2023-52801
2024-05-21 16:15:18
nessus
nessus
Oracle Linux 9 : kernel (ELSA-2024-6567)
2024-09-12 00:00:00
RHEL 9 : kernel (RHSA-2024:6567)
2024-09-11 00:00:00
Rocky Linux 9 : kernel (RLSA-2024:6567)
2024-09-16 00:00:00
rocky
rocky
kernel security update
2024-09-17 00:57:55
kernel security update
2024-09-17 00:55:50
oraclelinux
oraclelinux
kernel security update
2024-09-11 00:00:00
redhat
redhat
(RHSA-2024:6567) Moderate: kernel security update
2024-09-11 00:05:08

AI Score

6.4

Confidence

Low

EPSS

0

Percentile

15.5%

JSON
Related for CVELIST:CVE-2023-52801
ubuntucve1nvd1vulnrichment1redhatcve1debiancve1osv3cve1nessus6rocky2oraclelinux1redhat1