PT-2023-2763 · Linux+1 · Linux Kernel+1

Published

2023-03-20

Updated

2024-02-27

CVE-2023-2483

CVSS v2.0

5.9

Medium

Vector

AV:L/AC:H/Au:M/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue is related to a race condition in the Linux kernel's Qualcomm Technologies EMAC Gigabit Ethernet Controller driver due to incorrect synchronization in the emac remove() function within the drivers/net/ethernet/qualcomm/emac/emac.c module. This could potentially allow an attacker to impact the confidentiality, integrity, and availability of data.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Race Condition

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-362CWE-416

Related Identifiers

ALT-PU-2023-1944

BDU:2023-02629

CVE-2023-2483

OESA-2023-1284

OPENSUSE-SU-2023_2646-1

OPENSUSE-SU-2023_2871-1

SUSE-SU-2023:2162-1

SUSE-SU-2023:2163-1

SUSE-SU-2023:2232-1

SUSE-SU-2023:2500-1

SUSE-SU-2023:2501-1

SUSE-SU-2023:2502-1

SUSE-SU-2023:2534-1

SUSE-SU-2023:2611-1

SUSE-SU-2023:2646-1

SUSE-SU-2023:2651-1

SUSE-SU-2023:2653-1

SUSE-SU-2023:2782-1

SUSE-SU-2023:2809-1

SUSE-SU-2023:2871-1

Affected Products

Linux Kernel

Suse

PT-2023-2763 · Linux+1 · Linux Kernel+1

CVE-2023-2483

Weakness Enumeration

Related Identifiers

Affected Products

References · 1411