Lucene search
PRIOn knowledge basePRION:CVE-2023-5717HistoryOct 25, 2023 - 6:17 p.m.
Heap overflow
2023-10-2518:17:00
PRIOn knowledge base
www.prio-n.com
9
linux kernel
heap overflow
local privilege escalation
perf component
out-of-bounds write
vulnerability
nvd
memory locations
upgrading
commit 32671e3799ca2e4590773fd0e63aaa4229e50c06
A heap out-of-bounds write vulnerability in the Linux kernel’s Linux Kernel Performance Events (perf) component can be exploited to achieve local privilege escalation.
If perf_read_group() is called while an event’s sibling_list is smaller than its child’s sibling_list, it can increment or write to memory locations outside of the allocated buffer.
We recommend upgrading past commit 32671e3799ca2e4590773fd0e63aaa4229e50c06.
| CPE | Name | Operator | Version |
|---|---|---|---|
| linux_kernel | eq | 6.6 rc1 | |
| linux_kernel | eq | 6.6 rc2 | |
| linux_kernel | eq | 6.6 rc3 | |
| linux_kernel | eq | 6.6 rc4 | |
| linux_kernel | eq | 6.6 rc5 | |
| linux_kernel | ge | 4.4 | |
| linux_kernel | lt | 6.6 | |
| linux_kernel | eq | 6.6 rc6 |
References
Related
nessus
nessus
ubuntucve
ubuntucve
CVE-2023-5717
2023-10-25 00:00:00
cbl_mariner
cbl_mariner
nvd
nvd
CVE-2023-5717
2023-10-25 18:17:43
cvelist
cvelist
cve
cve
CVE-2023-5717
2023-10-25 18:17:43
debiancve
debiancve
CVE-2023-5717
2023-10-25 18:17:43
redhatcve
redhatcve
CVE-2023-5717
2023-10-30 11:27:08
openvas
openvas
Ubuntu: Security Advisory (USN-6497-1)
2023-11-22 00:00:00
Ubuntu: Security Advisory (USN-6573-1)
2024-01-10 00:00:00
Ubuntu: Security Advisory (USN-6536-1)
2023-12-07 00:00:00
amazon
amazon
Important: kernel
2023-11-09 19:19:00
Important: kernel
2023-11-10 17:32:00
osv
osv
linux-oem-6.1 vulnerabilities
2023-11-21 15:17:23
linux, linux-aws, linux-laptop, linux-lowlatency, linux-oem-6.5, linux-oracle, linux-raspi, linux-starfive vulnerabilities
2023-12-06 13:34:16
linux-azure vulnerabilities
2024-01-09 18:30:25
ubuntu
ubuntu
Linux kernel (OEM) vulnerabilities
2023-11-21 00:00:00
Linux kernel vulnerabilities
2023-12-06 00:00:00
Linux kernel (Azure) vulnerabilities
2024-01-09 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2023-5.0-0130
2023-10-30 00:00:00
Important Photon OS Security Update - PHSA-2023-3.0-0684
2023-11-09 00:00:00
Critical Photon OS Security Update - PHSA-2023-4.0-0510
2023-11-12 00:00:00
ibm
ibm
rocky
rocky
kernel security update
2024-03-27 04:37:19
oraclelinux
oraclelinux
kernel security update
2024-03-15 00:00:00
kernel security update
2024-02-22 00:00:00
kernel security update
2024-03-06 00:00:00
redhat
redhat
(RHSA-2024:1248) Important: kernel security update
2024-03-12 00:03:02
mageia
mageia
Updated kernel-linus packages fix security vulnerabilities
2023-11-30 01:29:41
Updated kernel packages fix security vulnerabilities and other bugs
2023-11-28 20:12:52
debian
debian
[SECURITY] [DSA 5594-1] linux security update
2024-01-02 21:05:08
[SECURITY] [DLA 3711-1] linux-5.10 security update
2024-01-11 17:58:27
almalinux
almalinux
Important: kernel security update
2024-02-20 00:00:00