Lucene search
Redhat.comRH:CVE-2023-2235HistoryMay 02, 2023 - 12:25 p.m.
CVE-2023-2235
2023-05-0212:25:59
redhat.com
access.redhat.com
21
cve-2023-2235
linux kernel
performance events
use-after-free
local user
privilege escalation
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0
Percentile
5.1%
The Linux kernel’s Performance Events subsystem has a use-after-free flaw that occurs when a user triggers the perf_group_detach and remove_on_exec functions simultaneously. This flaw allows a local user to crash or potentially escalate their privileges on the system.
Related
nessus
nessus
Amazon Linux 2 : kernel (ALASKERNEL-5.15-2023-019)
2023-06-06 00:00:00
CBL Mariner 2.0 Security Update: kernel (CVE-2023-2235)
2023-06-02 00:00:00
RHEL 9 : kpatch-patch (RHSA-2023:3705)
2023-06-21 00:00:00
cbl_mariner
cbl_mariner
CVE-2023-2235 affecting package kernel for versions less than 5.15.111.1-1
2023-05-25 09:38:10
prion
prion
Design/Logic Flaw
2023-05-01 13:15:00
nvd
nvd
CVE-2023-2235
2023-05-01 13:15:44
ubuntucve
ubuntucve
CVE-2023-2235
2023-05-01 00:00:00
cve
cve
CVE-2023-2235
2023-05-01 13:15:44
cvelist
cvelist
CVE-2023-2235 Use-after-free in Linux kernel's Performance Events subsystem
2023-05-01 12:51:25
debiancve
debiancve
CVE-2023-2235
2023-05-01 13:15:44
redhat
redhat
(RHSA-2023:3705) Important: kpatch-patch security update
2023-06-21 08:40:42
(RHSA-2023:4517) Important: kernel security and bug fix update
2023-08-08 07:20:55
(RHSA-2023:3723) Important: kernel security and bug fix update
2023-06-21 13:52:16
openvas
openvas
osv
osv
Important: kernel-rt security and bug fix update
2023-10-14 02:07:34
Important: kernel security and bug fix update
2023-06-21 00:00:00
Important: kernel security and bug fix update
2023-08-08 00:00:00
almalinux
almalinux
Important: kernel security and bug fix update
2023-06-21 00:00:00
Important: kernel-rt security and bug fix update
2023-08-08 00:00:00
Important: kernel-rt security and bug fix update
2023-06-21 00:00:00
oraclelinux
oraclelinux
kernel security and bug fix update
2023-08-10 00:00:00
kernel security and bug fix update
2023-07-25 00:00:00
ibm
ibm
rocky
rocky
kernel-rt security and bug fix update
2023-10-14 02:07:34
kernel security and bug fix update
2023-10-06 23:10:01
redos
redos
ROS-20230905-01
2023-09-04 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2023-06-16 00:00:00
Linux kernel vulnerabilities
2023-06-22 00:00:00
Linux kernel vulnerabilities
2023-08-28 00:00:00
slackware
slackware
[slackware-security] Slackware 15.0 kernel
2023-06-22 01:56:18
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0
Percentile
5.1%
Related for RH:CVE-2023-2235