CVE-2023-54216

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.3.0-rc6+ #1

Description The Linux kernel contains a flaw in the mlx5e module related to Traffic Control (TC) and the use of eswitch mapping in nic mode. The issue arises from using an uninitialized eswitch object mapping pool, leading to a slab-use-after-free condition. This can result in a kernel crash as demonstrated by the provided trace. The fix involves using the appropriate object mapping pool (nic or eswitch) based on whether eswitch is enabled.

Recommendations Update to a version newer than 6.3.0-rc6+ #1.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2023-54216

RHSA-2023:6583

RHSA-2023:7077

Affected Products

Centos

Linux Kernel

Red Hat

Mlx5E

CVE-2023-54216

Related Identifiers

Affected Products

References · 14