PT-2023-3564 · Linux+9 · Linux Kernel+9

Juan Jose Lopez Jaimez

+4

·

Publicado

2023-04-19

·

Atualizado

2025-11-05

·

CVE-2023-2163

CVSS v3.1

10

Crítica

VetorAV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:N
Name of the Vulnerable Software and Affected Versions kernel-image-rpi-un version 6.1.77-alt1 Linux Kernel versions >=5.4 kernel-image-std-def version 5.10.179-alt1 Linux Kernel 5.3.18-150200 24 166
Description The Linux kernel is susceptible to a vulnerability stemming from an incorrect verifier pruning in BPF. This flaw allows unsafe code paths to be incorrectly marked as safe, potentially leading to arbitrary read/write access in kernel memory, lateral privilege escalation, and container escape. The vulnerability affects Linux Kernel versions 5.4 and later. The backtrack insn() function within the kernel/bpf/verifier.c module is implicated in this issue.
Recommendations Update kernel-image-rpi-un to version 6.1.77-alt1. Update kernel-image-std-def to version 5.10.179-alt1. Update Linux Kernel 5.3.18-150200 24 166 to a fixed version. Update Linux Kernel to a version greater than or equal to 5.4 with the fix applied.

Correção

Out of bounds Read

Memory Corruption

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-125CWE-787CWE-682

Identificadores relacionados

ALSA-2023:7549
ALT-PU-2023-8459
ALT-PU-2024-4263
ALT-PU-2024-4843
AZL-29941
BDU:2023-03785
CESA-2023_7548
CESA-2023_7549
CESA-2023_7554
CVE-2023-2163
OESA-2023-1467
OESA-2023-1468
OESA-2023-1471
OPENSUSE-SU-2023_4343-1
OPENSUSE-SU-2023_4345-1
OPENSUSE-SU-2023_4348-1
OPENSUSE-SU-2023_4351-1
OPENSUSE-SU-2023_4375-1
OPENSUSE-SU-2023_4378-1
OPENSUSE-SU-2023_4414-1
OPENSUSE-SU-2023_4775-1
OPENSUSE-SU-2023_4836-1
OPENSUSE-SU-2023_4839-1
OPENSUSE-SU-2023_4848-1
OPENSUSE-SU-2023_4867-1
OPENSUSE-SU-2023_4871-1
OPENSUSE-SU-2023_4872-1
RHSA-2023:7548
RHSA-2023:7549
RHSA-2023:7554
RHSA-2023_7548
RHSA-2023_7549
RHSA-2024:0376
RHSA-2024:0378
RHSA-2024:0381
RHSA-2024:0402
RHSA-2024:0403
RHSA-2024:0412
RHSA-2024:0439
RHSA-2024:0448
RHSA-2024:0554
RHSA-2024:0562
RHSA-2024:0563
RHSA-2024:0575
RHSA-2024:0593
RHSA-2024:1250
RHSA-2024:1253
RHSA-2024:1306
RLSA-2023:7548
RLSA-2023:7549
RXSA-2023:7549
SUSE-SU-2023:4343-1
SUSE-SU-2023:4345-1
SUSE-SU-2023:4348-1
SUSE-SU-2023:4351-1
SUSE-SU-2023:4358-1
SUSE-SU-2023:4375-1
SUSE-SU-2023:4377-1
SUSE-SU-2023:4378-1
SUSE-SU-2023:4414-1
SUSE-SU-2023:4766-1
SUSE-SU-2023:4775-1
SUSE-SU-2023:4776-1
SUSE-SU-2023:4796-1
SUSE-SU-2023:4801-1
SUSE-SU-2023:4802-1
SUSE-SU-2023:4805-1
SUSE-SU-2023:4817-1
SUSE-SU-2023:4820-1
SUSE-SU-2023:4822-1
SUSE-SU-2023:4833-1
SUSE-SU-2023:4835-1
SUSE-SU-2023:4836-1
SUSE-SU-2023:4839-1
SUSE-SU-2023:4841-1
SUSE-SU-2023:4848-1
SUSE-SU-2023:4849-1
SUSE-SU-2023:4862-1
SUSE-SU-2023:4863-1
SUSE-SU-2023:4866-1
SUSE-SU-2023:4867-1
SUSE-SU-2023:4871-1
SUSE-SU-2023:4872-1
SUSE-SU-2023_4377-1
USN-6300-1
USN-6311-1
USN-6332-1
USN-6340-1
USN-6340-2
USN-6347-1
USN-6349-1
USN-6357-1
USN-6385-1
USN-6397-1

Produtos afetados

Alt Linux
Almalinux
Astra Linux
Centos
Linux Kernel
Linuxmint
Red Hat
Rocky Linux
Suse
Ubuntu