PT-2023-2763 · Linux+1 · Linux Kernel+1

Publicado

2023-03-20

Atualizado

2024-02-27

CVE-2023-2483

CVSS v2.0

5.9

Média

Vetor

AV:L/AC:H/Au:M/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue is related to a race condition in the Linux kernel's Qualcomm Technologies EMAC Gigabit Ethernet Controller driver due to incorrect synchronization in the emac remove() function within the drivers/net/ethernet/qualcomm/emac/emac.c module. This could potentially allow an attacker to impact the confidentiality, integrity, and availability of data.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Race Condition

Use After Free

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-362CWE-416

Identificadores relacionados

ALT-PU-2023-1944

BDU:2023-02629

CVE-2023-2483

OESA-2023-1284

OPENSUSE-SU-2023_2646-1

OPENSUSE-SU-2023_2871-1

SUSE-SU-2023:2162-1

SUSE-SU-2023:2163-1

SUSE-SU-2023:2232-1

SUSE-SU-2023:2500-1

SUSE-SU-2023:2501-1

SUSE-SU-2023:2502-1

SUSE-SU-2023:2534-1

SUSE-SU-2023:2611-1

SUSE-SU-2023:2646-1

SUSE-SU-2023:2651-1

SUSE-SU-2023:2653-1

SUSE-SU-2023:2782-1

SUSE-SU-2023:2809-1

SUSE-SU-2023:2871-1

Produtos afetados

Linux Kernel

Suse

PT-2023-2763 · Linux+1 · Linux Kernel+1

CVE-2023-2483

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 1411