PT-2023-4753 · Linux+4 · Linux Kernel+4

Publicado

2023-03-23

Atualizado

2023-11-14

CVE-2023-35825

CVSS v2.0

5.9

Média

Vetor

AV:L/AC:H/Au:M/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.3.4

Description The issue is related to a use-after-free problem in the r592 remove function of the Linux kernel's r592 device driver. This can lead to a race condition, potentially causing system crashes or other undefined behavior.

Recommendations For Linux kernel versions prior to 6.3.4, update to version 6.3.4 or later to resolve the issue. As a temporary workaround, consider disabling the r592 remove function until a patch is available.

Correção

Race Condition

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-362

Identificadores relacionados

ALSA-2023:7077

BDU:2023-05190

CESA-2023_6901

CESA-2023_7077

CVE-2023-35825

RHSA-2023:6583

RHSA-2023:6901

RHSA-2023:7077

RHSA-2023_6583

RHSA-2023_6901

RHSA-2023_7077

RHSA-2024:0575

RHSA-2024:0724

Produtos afetados

Almalinux

Centos

Linux Kernel

Red Hat

Red Os

PT-2023-4753 · Linux+4 · Linux Kernel+4

CVE-2023-35825

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 124