PT-2023-2685 · Linux+8 · Linux Kernel+8

Wei Chen

·

Publicado

2022-12-11

·

Atualizado

2025-08-18

·

CVE-2023-2176

CVSS v3.1

7.8

Alta

VetorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux Kernel (affected versions not specified)
Description The issue is related to the Infiniband driver in the Linux Kernel, specifically with the compare netdev and ip function in the drivers/infiniband/core/cma.c module. It involves improper cleanup, resulting in an out-of-boundary read. A local user can exploit this to crash the system or escalate their privileges.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Out of bounds Read

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-125

Identificadores relacionados

ALSA-2024:0897
ALT-PU-2023-4663
ALT-PU-2024-14046
ALT-PU-2024-6818
BDU:2023-02526
CESA-2024_0881
CESA-2024_0897
CVE-2023-2176
DSA-5658-1
OESA-2023-1274
OESA-2023-1275
OESA-2023-1276
OESA-2023-1277
OPENSUSE-SU-2023_2646-1
OPENSUSE-SU-2023_2871-1
OPENSUSE-SU-2023_3630-1
OPENSUSE-SU-2023_3644-1
OPENSUSE-SU-2023_3647-1
OPENSUSE-SU-2023_3671-1
OPENSUSE-SU-2024_2185-1
OPENSUSE-SU-2024_3249-1
RHSA-2024:0439
RHSA-2024:0448
RHSA-2024:0461
RHSA-2024:0724
RHSA-2024:0881
RHSA-2024:0897
RHSA-2024:1250
RHSA-2024:1306
RHSA-2024:1367
RHSA-2024:1382
RHSA-2024:1404
RHSA-2024:3528
RHSA-2024_0461
RHSA-2024_0881
RHSA-2024_0897
SUSE-SU-2023:2140-1
SUSE-SU-2023:2141-1
SUSE-SU-2023:2146-1
SUSE-SU-2023:2147-1
SUSE-SU-2023:2148-1
SUSE-SU-2023:2231-1
SUSE-SU-2023:2501-1
SUSE-SU-2023:2507-1
SUSE-SU-2023:2534-1
SUSE-SU-2023:2537-1
SUSE-SU-2023:2538-1
SUSE-SU-2023:2646-1
SUSE-SU-2023:2809-1
SUSE-SU-2023:2871-1
SUSE-SU-2023:3566-1
SUSE-SU-2023:3576-1
SUSE-SU-2023:3582-1
SUSE-SU-2023:3592-1
SUSE-SU-2023:3594-1
SUSE-SU-2023:3595-1
SUSE-SU-2023:3596-1
SUSE-SU-2023:3603-1
SUSE-SU-2023:3607-1
SUSE-SU-2023:3612-1
SUSE-SU-2023:3623-1
SUSE-SU-2023:3627-1
SUSE-SU-2023:3629-1
SUSE-SU-2023:3630-1
SUSE-SU-2023:3644-1
SUSE-SU-2023:3647-1
SUSE-SU-2023:3668-1
SUSE-SU-2023:3671-1
SUSE-SU-2024:2010-1
SUSE-SU-2024:2183-1
SUSE-SU-2024:2185-1
SUSE-SU-2024:3249-1
SUSE-SU-2024:3251-1
SUSE-SU-2024:3252-1
SUSE-SU-2024:3499-1
SUSE-SU-2025:02846-1
SUSE-SU-2025:02848-1
SUSE-SU-2025_02846-1
SUSE-SU-2025_02848-1
USN-6194-1
USN-6224-1
USN-6228-1
USN-6235-1

Produtos afetados

Alt Linux
Almalinux
Astra Linux
Centos
Linux Kernel
Linuxmint
Red Hat
Suse
Ubuntu