PT-2023-1706 · Linux+6 · Linux Kernel+6

Pietro Borrello

·

Published

2023-02-06

·

Updated

2024-04-15

·

CVE-2023-1077

CVSS v3.1

7.0

High

VectorAV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description The issue is related to a type confusion in the Linux kernel's pick next rt entity() function, which may return a type confused entry not detected by the BUG ON condition. This can lead to memory corruption as the confused entry is used as a sched rt entity. The exploitation of this issue may allow an attacker to cause a denial of service.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Type Confusion

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-843

Related Identifiers

ALT-PU-2023-8456
ALT-PU-2024-4263
ALT-PU-2024-4843
BDU:2023-01280
CVE-2023-1077
DLA-3404-1
DLA-3710-1
MGASA-2023-0148
MGASA-2023-0149
OPENSUSE-SU-2023_2646-1
OPENSUSE-SU-2023_2859-1
OPENSUSE-SU-2023_2871-1
OPENSUSE-SU-2023_3630-1
OPENSUSE-SU-2023_3644-1
OPENSUSE-SU-2023_3647-1
OPENSUSE-SU-2023_3648-1
OPENSUSE-SU-2023_3657-1
OPENSUSE-SU-2023_3671-1
RHSA-2023:6583
RHSA-2023_6583
SUSE-SU-2023:2534-1
SUSE-SU-2023:2646-1
SUSE-SU-2023:2782-1
SUSE-SU-2023:2804-1
SUSE-SU-2023:2805-1
SUSE-SU-2023:2808-1
SUSE-SU-2023:2809-1
SUSE-SU-2023:2810-1
SUSE-SU-2023:2820-1
SUSE-SU-2023:2822-1
SUSE-SU-2023:2831-1
SUSE-SU-2023:2834-1
SUSE-SU-2023:2859-1
SUSE-SU-2023:2871-1
SUSE-SU-2023:3566-1
SUSE-SU-2023:3576-1
SUSE-SU-2023:3582-1
SUSE-SU-2023:3585-1
SUSE-SU-2023:3592-1
SUSE-SU-2023:3594-1
SUSE-SU-2023:3595-1
SUSE-SU-2023:3596-1
SUSE-SU-2023:3603-1
SUSE-SU-2023:3607-1
SUSE-SU-2023:3612-1
SUSE-SU-2023:3620-1
SUSE-SU-2023:3621-1
SUSE-SU-2023:3623-1
SUSE-SU-2023:3627-1
SUSE-SU-2023:3628-1
SUSE-SU-2023:3629-1
SUSE-SU-2023:3630-1
SUSE-SU-2023:3631-1
SUSE-SU-2023:3644-1
SUSE-SU-2023:3647-1
SUSE-SU-2023:3648-1
SUSE-SU-2023:3657-1
SUSE-SU-2023:3668-1
SUSE-SU-2023:3671-1
SUSE-SU-2023:3675-1
SUSE-SU-2023:4028-1
SUSE-SU-2023_4028-1
USN-6033-1
USN-6171-1
USN-6172-1
USN-6185-1
USN-6187-1
USN-6207-1
USN-6222-1
USN-6223-1
USN-6256-1

Affected Products

Alt Linux
Astra Linux
Linuxmint
Linux Kernel
Red Hat
Suse
Ubuntu