Lucene search

[email protected]NVD:CVE-2023-1611

HistoryApr 03, 2023 - 10:15 p.m.

CVE-2023-1611

2023-04-0322:15:06

CWE-416

[email protected]

web.nvd.nist.gov

btrfs

use-after-free

linux kernel

system crash

kernel information leakage

CVSS3

6.3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H

AI Score

7.3

Confidence

High

EPSS

Percentile

14.4%

JSON

A use-after-free flaw was found in btrfs_search_slot in fs/btrfs/ctree.c in btrfs in the Linux Kernel.This flaw allows an attacker to crash the system and possibly cause a kernel information lea

Affected configurations

Nvd

Node

fedoraprojectfedoraMatch36

fedoraprojectfedoraMatch37

Node

linuxlinux_kernelRange2.6.13–5.10.177

linuxlinux_kernelRange5.15–5.15.106

linuxlinux_kernelRange6.1–6.1.23

linuxlinux_kernelRange6.2–6.2.10

linuxlinux_kernelMatch2.6.12rc2

linuxlinux_kernelMatch2.6.12rc3

linuxlinux_kernelMatch2.6.12rc4

linuxlinux_kernelMatch2.6.12rc5

linuxlinux_kernelMatch2.6.12rc6

linuxlinux_kernelMatch6.3-

linuxlinux_kernelMatch6.3rc1

linuxlinux_kernelMatch6.3rc2

linuxlinux_kernelMatch6.3rc3

linuxlinux_kernelMatch6.3rc4

linuxlinux_kernelMatch6.3rc5

VendorProductVersionCPE
fedoraprojectfedora36cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*
fedoraprojectfedora37cpe:2.3:o:fedoraproject:fedora:37:*:*:*:*:*:*:*
linuxlinux_kernel*cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
linuxlinux_kernel2.6.12cpe:2.3:o:linux:linux_kernel:2.6.12:rc2:*:*:*:*:*:*
linuxlinux_kernel2.6.12cpe:2.3:o:linux:linux_kernel:2.6.12:rc3:*:*:*:*:*:*
linuxlinux_kernel2.6.12cpe:2.3:o:linux:linux_kernel:2.6.12:rc4:*:*:*:*:*:*
linuxlinux_kernel2.6.12cpe:2.3:o:linux:linux_kernel:2.6.12:rc5:*:*:*:*:*:*
linuxlinux_kernel2.6.12cpe:2.3:o:linux:linux_kernel:2.6.12:rc6:*:*:*:*:*:*
linuxlinux_kernel6.3cpe:2.3:o:linux:linux_kernel:6.3:-:*:*:*:*:*:*
linuxlinux_kernel6.3cpe:2.3:o:linux:linux_kernel:6.3:rc1:*:*:*:*:*:*

Vendor	Product	Version	CPE
fedoraproject	fedora	36	cpe:2.3:o:fedoraproject:fedora:36:::::::*
fedoraproject	fedora	37	cpe:2.3:o:fedoraproject:fedora:37:::::::*
linux	linux_kernel	*	cpe:2.3:o:linux:linux_kernel::::::::
linux	linux_kernel	2.6.12	cpe:2.3:o:linux:linux_kernel:2.6.12:rc2::::::
linux	linux_kernel	2.6.12	cpe:2.3:o:linux:linux_kernel:2.6.12:rc3::::::
linux	linux_kernel	2.6.12	cpe:2.3:o:linux:linux_kernel:2.6.12:rc4::::::
linux	linux_kernel	2.6.12	cpe:2.3:o:linux:linux_kernel:2.6.12:rc5::::::
linux	linux_kernel	2.6.12	cpe:2.3:o:linux:linux_kernel:2.6.12:rc6::::::
linux	linux_kernel	6.3	cpe:2.3:o:linux:linux_kernel:6.3:-::::::
linux	linux_kernel	6.3	cpe:2.3:o:linux:linux_kernel:6.3:rc1::::::