PT-2023-3780 · Linux+5 · Linux Kernel+5

Mauro Matteo Cascella

Published

2023-02-14

Updated

2026-02-25

CVE-2023-33951

CVSS v3.1

6.7

Medium

Vector

AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:L

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A race condition vulnerability was found in the vmwgfx driver in the Linux kernel. The flaw exists within the handling of GEM objects. The issue results from improper locking when performing operations on an object. This flaw allows a local privileged user to disclose information in the context of the kernel.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Race Condition

Information Disclosure

Improper Locking

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-362CWE-911CWE-200CWE-667CWE-413

Related Identifiers

ALSA-2023:7077

ALT-PU-2024-14046

ALT-PU-2024-6818

AZL-27637

AZL-27761

BDU:2023-04069

CESA-2023_6901

CESA-2023_7077

CVE-2023-33951

OPENSUSE-SU-2023_2646-1

OPENSUSE-SU-2023_2871-1

OPENSUSE-SU-2025_0201-1

OPENSUSE-SU-2025_0229-1

RHSA-2023:6583

RHSA-2023:6901

RHSA-2023:7077

RHSA-2023_6583

RHSA-2023_6901

RHSA-2023_7077

RHSA-2024:1404

RHSA-2024:4823

RHSA-2024:4831

SUSE-SU-2023:2646-1

SUSE-SU-2023:2809-1

SUSE-SU-2023:2871-1

SUSE-SU-2025:0201-1

SUSE-SU-2025:0201-2

SUSE-SU-2025:0229-1

SUSE-SU-2025_0201-1

SUSE-SU-2025_0201-2

ZDI-23-707

Affected Products

Alt Linux

Almalinux

Centos

Linux Kernel

Red Hat

Suse

PT-2023-3780 · Linux+5 · Linux Kernel+5

CVE-2023-33951

Weakness Enumeration

Related Identifiers

Affected Products

References · 924