← Retour aux CVEs
CVE-2023-52509
HIGH7.8
Description
In the Linux kernel, the following vulnerability has been resolved: ravb: Fix use-after-free issue in ravb_tx_timeout_work() The ravb_stop() should call cancel_work_sync(). Otherwise, ravb_tx_timeout_work() is possible to use the freed priv after ravb_remove() was called like below: CPU0 CPU1 ravb_tx_timeout() ravb_remove() unregister_netdev() free_netdev(ndev) // free priv ravb_tx_timeout_work() // use priv unregister_netdev() will call .ndo_stop() so that ravb_stop() is called. And, after phy_stop() is called, netif_carrier_off() is also called. So that .ndo_tx_timeout() will not be called after phy_stop().
Details CVE
Score CVSS v3.17.8
SeveriteHIGH
Vecteur CVSSCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Vecteur d'attaqueLOCAL
ComplexiteLOW
Privileges requisLOW
Interaction utilisateurNONE
Publie3/2/2024
Derniere modification12/11/2024
Sourcenvd
Observations honeypot0
Produits affectes
linux:linux_kernel
Faiblesses (CWE)
CWE-416
References
https://git.kernel.org/stable/c/105abd68ad8f781985113aee2e92e0702b133705(416baaa9-dc9f-4396-8d5f-8c081fb06d67)
https://git.kernel.org/stable/c/3971442870713de527684398416970cf025b4f89(416baaa9-dc9f-4396-8d5f-8c081fb06d67)
https://git.kernel.org/stable/c/616761cf9df9af838c0a1a1232a69322a9eb67e6(416baaa9-dc9f-4396-8d5f-8c081fb06d67)
https://git.kernel.org/stable/c/65d34cfd4e347054eb4193bc95d9da7eaa72dee5(416baaa9-dc9f-4396-8d5f-8c081fb06d67)
https://git.kernel.org/stable/c/6f6fa8061f756aedb93af12a8a5d3cf659127965(416baaa9-dc9f-4396-8d5f-8c081fb06d67)
https://git.kernel.org/stable/c/db9aafa19547833240f58c2998aed7baf414dc82(416baaa9-dc9f-4396-8d5f-8c081fb06d67)
https://git.kernel.org/stable/c/105abd68ad8f781985113aee2e92e0702b133705(af854a3a-2127-422b-91ae-364da2661108)
https://git.kernel.org/stable/c/3971442870713de527684398416970cf025b4f89(af854a3a-2127-422b-91ae-364da2661108)
https://git.kernel.org/stable/c/616761cf9df9af838c0a1a1232a69322a9eb67e6(af854a3a-2127-422b-91ae-364da2661108)
https://git.kernel.org/stable/c/65d34cfd4e347054eb4193bc95d9da7eaa72dee5(af854a3a-2127-422b-91ae-364da2661108)
https://git.kernel.org/stable/c/6f6fa8061f756aedb93af12a8a5d3cf659127965(af854a3a-2127-422b-91ae-364da2661108)
https://git.kernel.org/stable/c/db9aafa19547833240f58c2998aed7baf414dc82(af854a3a-2127-422b-91ae-364da2661108)
Correlations IOC
Aucune correlation enregistree
This product uses data from the NVD API but is not endorsed or certified by the NVD.