PT-2021-7682 · Linux+5 · Linux Kernel+5

Yangerkun

Published

2021-10-29

Updated

2023-11-14

CVE-2023-1252

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A use-after-free flaw was found in the Linux kernel’s Ext4 File System related to the overlay FS usage. This issue allows a local user to crash or potentially escalate their privileges on the system. The flaw is associated with the ovl write iter() function of the overlayfs file system and the use of memory after it has been freed.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

ALSA-2023:7077

ALT-PU-2021-3304

ALT-PU-2021-3305

ALT-PU-2021-3306

ALT-PU-2021-3330

ALT-PU-2021-3337

ALT-PU-2021-3341

ALT-PU-2021-3451

ALT-PU-2021-3458

ALT-PU-2021-3468

ALT-PU-2021-3469

ALT-PU-2021-3485

ALT-PU-2021-3563

ALT-PU-2021-3573

ALT-PU-2021-3618

ALT-PU-2022-1428

ALT-PU-2023-1627

ALT-PU-2023-4894

AZL-25741

BDU:2023-01273

CESA-2023_6901

CESA-2023_7077

CVE-2023-1252

RHSA-2023:6583

RHSA-2023:6901

RHSA-2023:7077

RHSA-2023_6583

RHSA-2023_6901

RHSA-2023_7077

RHSA-2024:0724

RHSA-2024:8107

RHSA-2024:8613

RHSA-2024:8614

Affected Products

Alt Linux

Almalinux

Astra Linux

Centos

Linux Kernel

Red Hat

PT-2021-7682 · Linux+5 · Linux Kernel+5

CVE-2023-1252

Weakness Enumeration

Related Identifiers

Affected Products

References · 129