Lucene search

MitreCVELIST:CVE-2023-23006

HistoryMar 01, 2023 - 12:00 a.m.

CVE-2023-23006

2023-03-0100:00:00

mitre

www.cve.org

linux

kernel

vulnerability

mlx5

misinterpretation

return value

5.7 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.2%

JSON

In the Linux kernel before 5.15.13, drivers/net/ethernet/mellanox/mlx5/core/steering/dr_domain.c misinterprets the mlx5_get_uars_page return value (expects it to be NULL in the error case, whereas it is actually an error pointer).

References

cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.15.13

github.com/torvalds/linux/commit/6b8b42585886c59a008015083282aae434349094