exploitDog

CVE-2023-2430

Опубликовано: 23 июл. 2023

Источник: debian

Описание

A vulnerability was found due to missing lock for IOPOLL flaw in io_cqring_event_overflow() in io_uring.c in Linux Kernel. This flaw allows a local attacker with user privilege to trigger a Denial of Service threat.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
linux	fixed	6.3.7-1		package
linux	not-affected		bullseye	package
linux	not-affected		buster	package

Примечания

https://git.kernel.org/linus/e12d7a46f65ae4b7d58a5e0c1cbfa825cf8d830d (6.2-rc5)

Связанные уязвимости

CVE-2023-2430

CVSS3: 5.5

ubuntu

больше 2 лет назад

A vulnerability was found due to missing lock for IOPOLL flaw in io_cqring_event_overflow() in io_uring.c in Linux Kernel. This flaw allows a local attacker with user privilege to trigger a Denial of Service threat.

CVE-2023-2430

CVSS3: 6.6

redhat

около 3 лет назад

A vulnerability was found due to missing lock for IOPOLL flaw in io_cqring_event_overflow() in io_uring.c in Linux Kernel. This flaw allows a local attacker with user privilege to trigger a Denial of Service threat.

CVE-2023-2430

CVSS3: 5.5

nvd

больше 2 лет назад

A vulnerability was found due to missing lock for IOPOLL flaw in io_cqring_event_overflow() in io_uring.c in Linux Kernel. This flaw allows a local attacker with user privilege to trigger a Denial of Service threat.

CVE-2023-2430

CVSS3: 5.5

msrc

больше 2 лет назад

A vulnerability was found due to missing lock for IOPOLL flaw in io_cqring_event_overflow() in io_uring.c in Linux Kernel. This flaw allows a local attacker with user privilege to trigger a Denial of Service threat.

GHSA-3xvm-4g57-gvj6

CVSS3: 5.5

github

больше 2 лет назад

A vulnerability was found due to missing lock for IOPOLL flaw in io_cqring_event_overflow() in io_uring.c in Linux Kernel. This flaw allows a local attacker with user privilege to trigger a Denial of Service threat.