PT-2022-6433 · Linux+4 · Linux Kernel+4

Matthew Wilcox

Published

2022-01-31

Updated

2025-03-19

CVE-2023-1249

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A use-after-free flaw was found in the Linux kernel’s core dump subsystem, allowing a local user to crash the system. The issue is related to the fill files note() function in the fs/binfmt elf.c file. Exploitation of this flaw can cause a denial of service.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

ALT-PU-2022-2050

ALT-PU-2022-2131

ALT-PU-2022-2152

ALT-PU-2022-2155

ALT-PU-2023-1684

ALT-PU-2023-1741

ALT-PU-2023-1814

ALT-PU-2023-4894

AZL-25740

BDU:2023-01275

CVE-2023-1249

OESA-2023-1188

OESA-2023-1209

OPENSUSE-SU-2023_2859-1

OPENSUSE-SU-2023_2871-1

OPENSUSE-SU-2023_2892-1

RHSA-2023:6583

RHSA-2023_6583

SUSE-SU-2023:2782-1

SUSE-SU-2023:2804-1

SUSE-SU-2023:2805-1

SUSE-SU-2023:2808-1

SUSE-SU-2023:2809-1

SUSE-SU-2023:2810-1

SUSE-SU-2023:2820-1

SUSE-SU-2023:2822-1

SUSE-SU-2023:2830-1

SUSE-SU-2023:2831-1

SUSE-SU-2023:2834-1

SUSE-SU-2023:2859-1

SUSE-SU-2023:2871-1

SUSE-SU-2023:2892-1

Affected Products

Alt Linux

Astra Linux

Linux Kernel

Red Hat

Suse

PT-2022-6433 · Linux+4 · Linux Kernel+4

CVE-2023-1249

Weakness Enumeration

Related Identifiers

Affected Products

References · 679