PT-2023-3564 · Linux+9 · Linux Kernel+9

Juan Jose Lopez Jaimez

+4

·

Published

2023-04-19

·

Updated

2025-11-05

·

CVE-2023-2163

CVSS v3.1

10

Critical

VectorAV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:N
Name of the Vulnerable Software and Affected Versions kernel-image-rpi-un version 6.1.77-alt1 Linux Kernel versions >=5.4 kernel-image-std-def version 5.10.179-alt1 Linux Kernel 5.3.18-150200 24 166
Description The Linux kernel is susceptible to a vulnerability stemming from an incorrect verifier pruning in BPF. This flaw allows unsafe code paths to be incorrectly marked as safe, potentially leading to arbitrary read/write access in kernel memory, lateral privilege escalation, and container escape. The vulnerability affects Linux Kernel versions 5.4 and later. The backtrack insn() function within the kernel/bpf/verifier.c module is implicated in this issue.
Recommendations Update kernel-image-rpi-un to version 6.1.77-alt1. Update kernel-image-std-def to version 5.10.179-alt1. Update Linux Kernel 5.3.18-150200 24 166 to a fixed version. Update Linux Kernel to a version greater than or equal to 5.4 with the fix applied.

Fix

Out of bounds Read

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-125CWE-787CWE-682

Related Identifiers

ALSA-2023:7549
ALT-PU-2023-8459
ALT-PU-2024-4263
ALT-PU-2024-4843
AZL-29941
BDU:2023-03785
CESA-2023_7548
CESA-2023_7549
CESA-2023_7554
CVE-2023-2163
OESA-2023-1467
OESA-2023-1468
OESA-2023-1471
OPENSUSE-SU-2023_4343-1
OPENSUSE-SU-2023_4345-1
OPENSUSE-SU-2023_4348-1
OPENSUSE-SU-2023_4351-1
OPENSUSE-SU-2023_4375-1
OPENSUSE-SU-2023_4378-1
OPENSUSE-SU-2023_4414-1
OPENSUSE-SU-2023_4775-1
OPENSUSE-SU-2023_4836-1
OPENSUSE-SU-2023_4839-1
OPENSUSE-SU-2023_4848-1
OPENSUSE-SU-2023_4867-1
OPENSUSE-SU-2023_4871-1
OPENSUSE-SU-2023_4872-1
RHSA-2023:7548
RHSA-2023:7549
RHSA-2023:7554
RHSA-2023_7548
RHSA-2023_7549
RHSA-2024:0376
RHSA-2024:0378
RHSA-2024:0381
RHSA-2024:0402
RHSA-2024:0403
RHSA-2024:0412
RHSA-2024:0439
RHSA-2024:0448
RHSA-2024:0554
RHSA-2024:0562
RHSA-2024:0563
RHSA-2024:0575
RHSA-2024:0593
RHSA-2024:1250
RHSA-2024:1253
RHSA-2024:1306
RLSA-2023:7548
RLSA-2023:7549
RXSA-2023:7549
SUSE-SU-2023:4343-1
SUSE-SU-2023:4345-1
SUSE-SU-2023:4348-1
SUSE-SU-2023:4351-1
SUSE-SU-2023:4358-1
SUSE-SU-2023:4375-1
SUSE-SU-2023:4377-1
SUSE-SU-2023:4378-1
SUSE-SU-2023:4414-1
SUSE-SU-2023:4766-1
SUSE-SU-2023:4775-1
SUSE-SU-2023:4776-1
SUSE-SU-2023:4796-1
SUSE-SU-2023:4801-1
SUSE-SU-2023:4802-1
SUSE-SU-2023:4805-1
SUSE-SU-2023:4817-1
SUSE-SU-2023:4820-1
SUSE-SU-2023:4822-1
SUSE-SU-2023:4833-1
SUSE-SU-2023:4835-1
SUSE-SU-2023:4836-1
SUSE-SU-2023:4839-1
SUSE-SU-2023:4841-1
SUSE-SU-2023:4848-1
SUSE-SU-2023:4849-1
SUSE-SU-2023:4862-1
SUSE-SU-2023:4863-1
SUSE-SU-2023:4866-1
SUSE-SU-2023:4867-1
SUSE-SU-2023:4871-1
SUSE-SU-2023:4872-1
SUSE-SU-2023_4377-1
USN-6300-1
USN-6311-1
USN-6332-1
USN-6340-1
USN-6340-2
USN-6347-1
USN-6349-1
USN-6357-1
USN-6385-1
USN-6397-1

Affected Products

Alt Linux
Almalinux
Astra Linux
Centos
Linux Kernel
Linuxmint
Red Hat
Rocky Linux
Suse
Ubuntu