CVE-2023-23003

Опубликовано: 18 дек. 2021

Источник: redhat

CVSS3: 4

Описание

In the Linux kernel before 5.16, tools/perf/util/expr.c lacks a check for the hashmap__new return value.

A NULL pointer dereference flaw was found in the Linux kernel’s Linux performance measurement and analysis tool. This flaw allows a local user to crash the system.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 6	kernel	Not affected
Red Hat Enterprise Linux 7	kernel	Not affected
Red Hat Enterprise Linux 7	kernel-rt	Not affected
Red Hat Enterprise Linux 8	kernel	Not affected
Red Hat Enterprise Linux 8	kernel-rt	Not affected
Red Hat Enterprise Linux 9	kernel	Not affected
Red Hat Enterprise Linux 9	kernel-rt	Not affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-252

https://bugzilla.redhat.com/show_bug.cgi?id=2182662kernel: missing check for return value of hashmap__new() in the function expr__ctx_new

4 Medium

CVSS3

Связанные уязвимости

CVE-2023-23003

CVSS3: 4

ubuntu

почти 3 года назад

In the Linux kernel before 5.16, tools/perf/util/expr.c lacks a check for the hashmap__new return value.

CVE-2023-23003

CVSS3: 4

nvd

почти 3 года назад

In the Linux kernel before 5.16, tools/perf/util/expr.c lacks a check for the hashmap__new return value.

CVE-2023-23003

CVSS3: 4

msrc

почти 3 года назад

In the Linux kernel before 5.16 tools/perf/util/expr.c lacks a check for the hashmap__new return value.

CVE-2023-23003

CVSS3: 4

debian

почти 3 года назад

In the Linux kernel before 5.16, tools/perf/util/expr.c lacks a check ...

GHSA-787r-j94j-7wpv

CVSS3: 7.8

github

почти 3 года назад

In the Linux kernel before 5.16, tools/perf/util/expr.c lacks a check for the hashmap__new return value.

4 Medium

CVSS3