Lucene search

416baaa9-dc9f-4396-8d5f-8c081fb06d67NVD:CVE-2023-52801

HistoryMay 21, 2024 - 4:15 p.m.

CVE-2023-52801

2024-05-2116:15:18

CWE-284

416baaa9-dc9f-4396-8d5f-8c081fb06d67

web.nvd.nist.gov

linux

kernel

vulnerability

resolution

iommufd

iopt_area

domains_itree

uaf

cve-2023-52801

CVSS3

9.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

AI Score

6.5

Confidence

Low

EPSS

Percentile

15.5%

JSON

In the Linux kernel, the following vulnerability has been resolved:

iommufd: Fix missing update of domains_itree after splitting iopt_area

In iopt_area_split(), if the original iopt_area has filled a domain and is
linked to domains_itree, pages_nodes have to be properly
reinserted. Otherwise the domains_itree becomes corrupted and we will UAF.

References

git.kernel.org/stable/c/836db2e7e4565d8218923b3552304a1637e2f28d

git.kernel.org/stable/c/e7250ab7ca4998fe026f2149805b03e09dc32498

git.kernel.org/stable/c/fcb32111f01ddf3cbd04644cde1773428e31de6a

CVSS3

9.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

AI Score

6.5

Confidence

Low

EPSS

Percentile

15.5%

JSON

Related for NVD:CVE-2023-52801