PT-2023-8119 · Linux+8 · Linux Kernel+8

Rohit Keshri

·

Publicado

2023-12-06

·

Atualizado

2026-02-18

·

CVE-2023-6531

CVSS v3.1

7.0

Alta

VetorAV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux Kernel (affected versions not specified)
Description A use-after-free flaw was found in the Linux Kernel due to a race problem in the unix garbage collector's deletion of SKB races with unix stream read generic() on the socket that the SKB is queued on. This issue is related to the io uring component and the scm fp copy function in the net/core/scm.c module. The exploitation of this flaw may allow an attacker to impact the confidentiality, integrity, and availability of protected information.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

DoS

Race Condition

Use After Free

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-362CWE-416

Identificadores relacionados

ALSA-2024:2394
ALT-PU-2024-10855
ALT-PU-2024-1536
ALT-PU-2024-1867
ALT-PU-2025-12647
AZL-33963
AZL-34867
BDU:2024-00098
CVE-2023-6531
DLA-3711-1
DSA-5593-1
DSA-5594-1
INFSA-2024_2394
OESA-2024-1114
OESA-2024-1140
OESA-2024-1141
OESA-2024-1142
OESA-2024-1143
OESA-2024-1144
OPENSUSE-SU-2024_0156-1
OPENSUSE-SU-2024_0469-1
OPENSUSE-SU-2024_1489-1
OPENSUSE-SU-2024_2185-1
OPENSUSE-SU-2024_2189-1
OPENSUSE-SU-2024_3651-1
OPENSUSE-SU-2024_3798-1
OPENSUSE-SU-2024_4256-1
OPENSUSE-SU-2025_0101-1
OPENSUSE-SU-2025_0244-1
RHSA-2024:2394
RHSA-2024_2394
SUSE-SU-2024:0115-1
SUSE-SU-2024:0129-1
SUSE-SU-2024:0141-1
SUSE-SU-2024:0156-1
SUSE-SU-2024:0160-1
SUSE-SU-2024:0469-1
SUSE-SU-2024:0514-1
SUSE-SU-2024:0516-1
SUSE-SU-2024:0986-1
SUSE-SU-2024:0989-1
SUSE-SU-2024:0991-1
SUSE-SU-2024:0995-1
SUSE-SU-2024:1017-1
SUSE-SU-2024:1023-1
SUSE-SU-2024:1033-1
SUSE-SU-2024:1039-1
SUSE-SU-2024:1040-1
SUSE-SU-2024:1045-1
SUSE-SU-2024:1047-1
SUSE-SU-2024:1053-1
SUSE-SU-2024:1054-1
SUSE-SU-2024:1063-1
SUSE-SU-2024:1072-1
SUSE-SU-2024:1097-1
SUSE-SU-2024:1276-1
SUSE-SU-2024:1454-1
SUSE-SU-2024:1465-1
SUSE-SU-2024:1489-1
SUSE-SU-2024:1708-1
SUSE-SU-2024:1719-1
SUSE-SU-2024:2008-1
SUSE-SU-2024:2010-1
SUSE-SU-2024:2019-1
SUSE-SU-2024:2120-1
SUSE-SU-2024:2135-1
SUSE-SU-2024:2148-1
SUSE-SU-2024:2183-1
SUSE-SU-2024:2185-1
SUSE-SU-2024:2189-1
SUSE-SU-2024:2190-1
SUSE-SU-2024:2343-1
SUSE-SU-2024:2373-1
SUSE-SU-2024:2740-1
SUSE-SU-2024:2755-1
SUSE-SU-2024:3034-1
SUSE-SU-2024:3043-1
SUSE-SU-2024:3642-1
SUSE-SU-2024:3651-1
SUSE-SU-2024:3798-1
SUSE-SU-2024:3803-1
SUSE-SU-2024:4242-1
SUSE-SU-2024:4256-1
SUSE-SU-2025:0101-1
SUSE-SU-2025:01995-1
SUSE-SU-2025:0231-1
SUSE-SU-2025:0244-1
USN-6624-1
USN-6639-1
USN-6652-1

Produtos afetados

Alt Linux
Almalinux
Astra Linux
Linux Kernel
Linuxmint
Red Hat
Red Os
Suse
Ubuntu