PT-2024-1382 · Linux+8 · Linux Kernel+8

Shanzhulig

Published

2023-07-21

Updated

2025-07-24

CVE-2023-51043

CVSS v3.1

7.0

High

Vector

AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.4.5

Description The issue is related to a use-after-free condition in the Linux kernel, specifically in the drm atomic state init function within drivers/gpu/drm/drm atomic.c. This occurs due to a race condition between a nonblocking atomic commit and a driver unload, potentially allowing an attacker to execute arbitrary code.

Recommendations For Linux kernel versions prior to 6.4.5, update to version 6.4.5 or later to resolve the issue. As a temporary workaround, consider restricting access to the drm atomic state init function until a patch is available.

Fix

Race Condition

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-362CWE-416

Related Identifiers

ALSA-2024:2394

ALT-PU-2024-14046

ALT-PU-2024-6818

AZL-33970

BDU:2024-00837

CESA-2023_7077

CVE-2023-51043

INFSA-2024_2394

OESA-2024-1140

OESA-2024-1141

OESA-2024-1142

OESA-2024-1143

OESA-2024-1144

OPENSUSE-SU-2024_0469-1

OPENSUSE-SU-2024_0515-1

RHSA-2023:7077

RHSA-2023_7077

RHSA-2024:1018

RHSA-2024:1019

RHSA-2024:1188

RHSA-2024:1404

RHSA-2024:2394

RHSA-2024_2394

SUSE-SU-2024:0463-1

SUSE-SU-2024:0468-1

SUSE-SU-2024:0469-1

SUSE-SU-2024:0474-1

SUSE-SU-2024:0476-1

SUSE-SU-2024:0478-1

SUSE-SU-2024:0483-1

SUSE-SU-2024:0484-1

SUSE-SU-2024:0514-1

SUSE-SU-2024:0515-1

SUSE-SU-2024:0516-1

USN-6739-1

USN-6740-1

Affected Products

Alt Linux

Almalinux

Astra Linux

Centos

Linux Kernel

Red Hat

Red Os

Suse

Ubuntu

PT-2024-1382 · Linux+8 · Linux Kernel+8

CVE-2023-51043

Weakness Enumeration

Related Identifiers

Affected Products

References · 310