PT-2023-2067 · Linux+5 · Linux Kernel+5

Butt3Rflyh4Ck

+1

·

Published

2023-03-30

·

Updated

2025-02-13

·

CVE-2023-1611

CVSS v3.1

6.3

Medium

VectorAV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux Kernel (affected versions not specified)
Description The issue is related to a use-after-free flaw in the btrfs file system of the Linux Kernel, specifically in the btrfs search slot function in fs/btrfs/ctree.c. This flaw can be exploited to crash the system and potentially cause a kernel information leak, affecting the confidentiality, integrity, and availability of protected information.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Use After Free

Race Condition

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-416CWE-362

Related Identifiers

ALT-PU-2023-1628
ALT-PU-2024-4263
ALT-PU-2024-4843
BDU:2023-01799
CVE-2023-1611
DLA-3404-1
MGASA-2023-0148
MGASA-2023-0149
OESA-2023-1215
OESA-2023-1216
OESA-2023-1228
OESA-2023-1229
OPENSUSE-SU-2023_2646-1
OPENSUSE-SU-2023_2871-1
SUSE-SU-2023:1894-1
SUSE-SU-2023:1895-1
SUSE-SU-2023:1897-1
SUSE-SU-2023:1992-1
SUSE-SU-2023:2146-1
SUSE-SU-2023:2147-1
SUSE-SU-2023:2148-1
SUSE-SU-2023:2151-1
SUSE-SU-2023:2162-1
SUSE-SU-2023:2163-1
SUSE-SU-2023:2232-1
SUSE-SU-2023:2646-1
SUSE-SU-2023:2805-1
SUSE-SU-2023:2809-1
SUSE-SU-2023:2871-1
SUSE-SU-2023_1895-1
USN-6175-1
USN-6186-1
USN-6252-1
USN-6254-1
USN-6284-1
USN-6300-1
USN-6301-1
USN-6311-1
USN-6312-1
USN-6314-1
USN-6331-1
USN-6332-1
USN-6337-1
USN-6347-1
USN-6385-1

Affected Products

Alt Linux
Astra Linux
Linux Kernel
Linuxmint
Suse
Ubuntu