Lucene search
LinuxVULNRICHMENT:CVE-2023-52801HistoryMay 21, 2024 - 3:31 p.m.
CVE-2023-52801 iommufd: Fix missing update of domains_itree after splitting iopt_area
2024-05-2115:31:13
Linux
github.com
5
linux kernel
vulnerability
iopt_area_split
domains_itree
uaf
cve
AI Score
6.9
Confidence
Low
EPSS
0
Percentile
15.5%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
In the Linux kernel, the following vulnerability has been resolved:
iommufd: Fix missing update of domains_itree after splitting iopt_area
In iopt_area_split(), if the original iopt_area has filled a domain and is
linked to domains_itree, pages_nodes have to be properly
reinserted. Otherwise the domains_itree becomes corrupted and we will UAF.
ADP Affected
[
{
"cpes": [
"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
],
"vendor": "linux",
"product": "linux_kernel",
"versions": [
{
"status": "affected",
"version": "51fe6141f0f6",
"lessThan": "836db2e7e456",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
],
"vendor": "linux",
"product": "linux_kernel",
"versions": [
{
"status": "affected",
"version": "51fe6141f0f6",
"lessThan": "fcb32111f01d",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
],
"vendor": "linux",
"product": "linux_kernel",
"versions": [
{
"status": "affected",
"version": "51fe6141f0f6",
"lessThan": "e7250ab7ca49",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*"
],
"vendor": "linux",
"product": "linux_kernel",
"versions": [
{
"status": "affected",
"version": "6..2"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
],
"vendor": "linux",
"product": "linux_kernel",
"versions": [
{
"status": "unaffected",
"version": "0",
"lessThan": "6.2",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
],
"vendor": "linux",
"product": "linux_kernel",
"versions": [
{
"status": "unaffected",
"version": "6.5.13",
"versionType": "custom",
"lessThanOrEqual": "6.5.*"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
],
"vendor": "linux",
"product": "linux_kernel",
"versions": [
{
"status": "unaffected",
"version": "6.6.3",
"versionType": "custom",
"lessThanOrEqual": "6.6.*"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
],
"vendor": "linux",
"product": "linux_kernel",
"versions": [
{
"status": "unaffected",
"version": "6.7"
}
],
"defaultStatus": "unknown"
}
]Related
ubuntucve
ubuntucve
CVE-2023-52801
2024-05-21 00:00:00
nvd
nvd
CVE-2023-52801
2024-05-21 16:15:18
debiancve
debiancve
CVE-2023-52801
2024-05-21 16:15:18
osv
osv
CVE-2023-52801
2024-05-21 16:15:00
Moderate: kernel security update
2024-09-17 00:55:50
Moderate: kernel security update
2024-09-17 00:57:55
cvelist
cvelist
redhatcve
redhatcve
CVE-2023-52801
2024-05-23 11:11:11
cve
cve
CVE-2023-52801
2024-05-21 16:15:18
nessus
nessus
Oracle Linux 9 : kernel (ELSA-2024-6567)
2024-09-12 00:00:00
RHEL 9 : kernel (RHSA-2024:6567)
2024-09-11 00:00:00
Rocky Linux 9 : kernel (RLSA-2024:6567)
2024-09-16 00:00:00
rocky
rocky
kernel security update
2024-09-17 00:57:55
kernel security update
2024-09-17 00:55:50
oraclelinux
oraclelinux
kernel security update
2024-09-11 00:00:00
redhat
redhat
(RHSA-2024:6567) Moderate: kernel security update
2024-09-11 00:05:08
AI Score
6.9
Confidence
Low
EPSS
0
Percentile
15.5%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Related for VULNRICHMENT:CVE-2023-52801