PT-2023-4753 · Linux+4 · Linux Kernel+4

Published

2023-03-23

Updated

2023-11-14

CVE-2023-35825

CVSS v2.0

5.9

Medium

Vector

AV:L/AC:H/Au:M/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.3.4

Description The issue is related to a use-after-free problem in the r592 remove function of the Linux kernel's r592 device driver. This can lead to a race condition, potentially causing system crashes or other undefined behavior.

Recommendations For Linux kernel versions prior to 6.3.4, update to version 6.3.4 or later to resolve the issue. As a temporary workaround, consider disabling the r592 remove function until a patch is available.

Fix

Race Condition

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-362

Related Identifiers

ALSA-2023:7077

BDU:2023-05190

CESA-2023_6901

CESA-2023_7077

CVE-2023-35825

RHSA-2023:6583

RHSA-2023:6901

RHSA-2023:7077

RHSA-2023_6583

RHSA-2023_6901

RHSA-2023_7077

RHSA-2024:0575

RHSA-2024:0724

Affected Products

Almalinux

Centos

Linux Kernel

Red Hat

Red Os

PT-2023-4753 · Linux+4 · Linux Kernel+4

CVE-2023-35825

Weakness Enumeration

Related Identifiers

Affected Products

References · 124