PT-2023-3303 · Linux+6 · Linux Kernel+6

Zheng Wang

·

Published

2023-04-10

·

Updated

2025-09-29

·

CVE-2023-35829

CVSS v3.1

7.0

High

VectorAV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.3.2
Description The issue is related to a use-after-free vulnerability in the rkvdec remove() function within the Rockchip Video Decoder driver in the Linux kernel. This vulnerability is caused by a race condition due to concurrent access to a resource, allowing an attacker to potentially impact the confidentiality, integrity, and availability of protected information. A proof-of-concept exploit has been discovered, which can silently execute a malicious bash script disguised as a kernel-level process.
Recommendations For Linux kernel versions prior to 6.3.2, update to version 6.3.2 or later to resolve the issue. As a temporary workaround, consider disabling the rkvdec remove() function until a patch is available.

Exploit

Fix

Race Condition

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-362CWE-416

Related Identifiers

ALSA-2024_1607
ALSA-2024_2394
ALSA-2025_12746
ALSA-2025_12752
ALSA-2025_12753
ALSA-2025_16880
ALT-PU-2023-1878
ALT-PU-2023-1881
ALT-PU-2023-2038
ALT-PU-2023-4663
ALT-PU-2024-4263
ALT-PU-2024-4843
AZL-27246
BDU:2023-03444
CVE-2023-35829
MGASA-2023-0201
MGASA-2023-0202
OESA-2023-1381
OESA-2023-1382
OESA-2023-1493
OPENSUSE-SU-2023_2871-1
OPENSUSE-SU-2023_2892-1
SUSE-SU-2023:2809-1
SUSE-SU-2023:2820-1
SUSE-SU-2023:2831-1
SUSE-SU-2023:2871-1
SUSE-SU-2023:2892-1
SUSE-SU-2023_2820-1
SUSE-SU-2023_2831-1
SUSE-SU-2023_2892-1
USN-6283-1
USN-6300-1
USN-6311-1
USN-6332-1
USN-6347-1

Affected Products

Alt Linux
Astra Linux
Linuxmint
Linux Kernel
Red Os
Suse
Ubuntu