CVE-2023-33203

Опубликовано: 18 мая 2023

Источник: debian

Описание

The Linux kernel before 6.2.9 has a race condition and resultant use-after-free in drivers/net/ethernet/qualcomm/emac/emac.c if a physically proximate attacker unplugs an emac based device.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
linux	fixed	6.1.25-1		package
linux	fixed	5.10.178-1	bullseye	package
linux	fixed	4.19.282-1	buster	package

Примечания

https://git.kernel.org/linus/6b6bc5b8bd2d4ca9e1efa9ae0f98a0b0687ace75 (6.3-rc4)

Связанные уязвимости

CVE-2023-33203

CVSS3: 6.4

ubuntu

около 2 лет назад

The Linux kernel before 6.2.9 has a race condition and resultant use-after-free in drivers/net/ethernet/qualcomm/emac/emac.c if a physically proximate attacker unplugs an emac based device.

CVE-2023-33203

CVSS3: 6.4

redhat

больше 2 лет назад

The Linux kernel before 6.2.9 has a race condition and resultant use-after-free in drivers/net/ethernet/qualcomm/emac/emac.c if a physically proximate attacker unplugs an emac based device.

CVE-2023-33203

CVSS3: 6.4

nvd

около 2 лет назад

The Linux kernel before 6.2.9 has a race condition and resultant use-after-free in drivers/net/ethernet/qualcomm/emac/emac.c if a physically proximate attacker unplugs an emac based device.

CVE-2023-33203

CVSS3: 6.4

msrc

около 2 лет назад

Описание отсутствует

GHSA-jh2m-9m55-5q8v

CVSS3: 6.4

github

около 2 лет назад

The Linux kernel before 6.2.9 has a race condition and resultant use-after-free in drivers/net/ethernet/qualcomm/emac/emac.c if a physically proximate attacker unplugs an emac based device.